Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2026/03/28 6:26 p.m.4 views

SUSE CVE-2026-21386

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.9AI score0.00184EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/16 3:30 p.m.4 views

EUVD-2026-12437

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.4 views

Mattermost fails to use consistent error responses when handling the /mute command

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2026/03/16 3:16 p.m.3 views

CVE-2026-21386

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.9AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/16 2:51 p.m.3 views

CVE-2026-21386

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/16 2:51 p.m.13 views

CVE-2026-21386

CVE-2026-21386 (Mattermost): The Mattermost server variants 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, and 10.11.x

4.3CVSS5.8AI score0.00184EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/16 2:51 p.m.19 views

CVE-2026-21386 Private channel enumeration via /mute slash command

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS0.00184EPSS
Exploits0References1
Rows per page
Query Builder