Security Advisory

CVE-2026-1046

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-16 12:10:38

Last updated 2026-02-17 17:05:58

Assigner Mattermost

State PUBLISHED

Description

Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate help links which allows a malicious Mattermost server to execute arbitrary executables on a user’s system via the user clicking on certain items in the Help menu Mattermost Advisory ID: MMSA-2026-00577

← Browse all CVEs View on cve.org ↗