CVE-2026-5740

creationtimestamp| type| source ---|---|--- 2026-05-22 12:45:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmgxnwxwvc2p...

CVE-2026-5740

Mattermost versions 11.6.x = 11.6.0, 11.5.x = 11.5.3, 11.4.x = 11.4.4, 10.11.x = 10.11.14 fail to properly validate msgpack-encoded WebSocket frames before memory allocation which allows an unauthenticated remote attacker to crash the server process and cause a full service outage for all users v...