Security Advisory

CVE-2026-2461

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-16 11:16:32

Last updated 2026-03-16 13:49:57

Assigner Mattermost

State PUBLISHED

Description

Mattermost Plugins versions <=11.3 11.0.3 11.2.2 10.10.11.0 fail to implement authorisation checks on comment block modifications, which allows an authorised attacker with editor permission to modify comments created by other board members. Mattermost Advisory ID: MMSA-2025-00559

← Browse all CVEs View on cve.org ↗