Vulnerability-Lookup

CVE-2026-2454 (GCVE-0-2026-2454)

Vulnerability from cvelistv5 – Published: 2026-03-16 20:10 – Updated: 2026-03-17 13:37

Title

DoS in Calls plugin via malformed msgpack in websocket request.

Summary

Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail to handle incorrectly reported array lengths which allows malicious user to cause OOM errors and crash the server via sending corrupted msgpack frames within websocket messages to calls plugin. Mattermost Advisory ID: MMSA-2025-00537

Severity ?

5.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

CWE

CWE-1287 - Improper Validation of Specified Type of Input

Assigner

Mattermost

References

URL

Tags

https://mattermost.com/security-updates

vendor-advisory

Impacted products

	Vendor	Product	Version
	Mattermost	Mattermost	Affected: 11.3.0 , ≤ 11.3.0 (semver) Affected: 11.2.0 , ≤ 11.2.2 (semver) Affected: 10.11.0 , ≤ 10.11.10 (semver) Unaffected: 11.4.0 Unaffected: 11.3.1 Unaffected: 11.2.3 Unaffected: 10.11.11

Credits

National Security Agency

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-2454",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-03-17T13:37:37.264945Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-03-17T13:37:43.947Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Mattermost",
          "vendor": "Mattermost",
          "versions": [
            {
              "lessThanOrEqual": "11.3.0",
              "status": "affected",
              "version": "11.3.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "11.2.2",
              "status": "affected",
              "version": "11.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "10.11.10",
              "status": "affected",
              "version": "10.11.0",
              "versionType": "semver"
            },
            {
              "status": "unaffected",
              "version": "11.4.0"
            },
            {
              "status": "unaffected",
              "version": "11.3.1"
            },
            {
              "status": "unaffected",
              "version": "11.2.3"
            },
            {
              "status": "unaffected",
              "version": "10.11.11"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "National Security Agency"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Mattermost versions 11.3.x \u003c= 11.3.0, 11.2.x \u003c= 11.2.2, 10.11.x \u003c= 10.11.10 fail to handle incorrectly reported array lengths which allows malicious user to cause OOM errors and crash the server via sending corrupted msgpack frames within websocket messages to calls plugin. Mattermost Advisory ID: MMSA-2025-00537"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-1287",
              "description": "CWE-1287: Improper Validation of Specified Type of Input",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-03-16T20:10:16.644Z",
        "orgId": "9302f53e-dde5-4bf3-b2f2-a83f91ac0eee",
        "shortName": "Mattermost"
      },
      "references": [
        {
          "name": "MMSA-2025-00537",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://mattermost.com/security-updates"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Update Mattermost to versions 11.4.0, 11.3.1, 11.2.3, 10.11.11 or higher."
        }
      ],
      "source": {
        "advisory": "MMSA-2025-00537",
        "defect": [
          "https://mattermost.atlassian.net/browse/MM-66166"
        ],
        "discovery": "EXTERNAL"
      },
      "title": "DoS in Calls plugin via malformed msgpack in websocket request."
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9302f53e-dde5-4bf3-b2f2-a83f91ac0eee",
    "assignerShortName": "Mattermost",
    "cveId": "CVE-2026-2454",
    "datePublished": "2026-03-16T20:10:16.644Z",
    "dateReserved": "2026-02-13T10:11:47.778Z",
    "dateUpdated": "2026-03-17T13:37:43.947Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-2454\",\"sourceIdentifier\":\"responsibledisclosure@mattermost.com\",\"published\":\"2026-03-16T21:16:33.890\",\"lastModified\":\"2026-03-18T13:56:03.590\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Mattermost versions 11.3.x \u003c= 11.3.0, 11.2.x \u003c= 11.2.2, 10.11.x \u003c= 10.11.10 fail to handle incorrectly reported array lengths which allows malicious user to cause OOM errors and crash the server via sending corrupted msgpack frames within websocket messages to calls plugin. Mattermost Advisory ID: MMSA-2025-00537\"},{\"lang\":\"es\",\"value\":\"Las versiones de Mattermost 11.3.x \u0026lt;= 11.3.0, 11.2.x \u0026lt;= 11.2.2, 10.11.x \u0026lt;= 10.11.10 fallan al manejar longitudes de array reportadas de forma incorrecta, lo que permite a un usuario malicioso causar errores OOM y colapsar el servidor mediante el env\u00edo de tramas msgpack corruptas dentro de mensajes websocket al plugin de llamadas. ID de Aviso de Mattermost: MMSA-2025-00537\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"responsibledisclosure@mattermost.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L\",\"baseScore\":5.8,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":4.0}]},\"weaknesses\":[{\"source\":\"responsibledisclosure@mattermost.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1287\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.11.0\",\"versionEndExcluding\":\"10.11.11\",\"matchCriteriaId\":\"B6E5F368-358C-429B-8F04-3C8DF4A71A91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.0\",\"versionEndExcluding\":\"11.2.3\",\"matchCriteriaId\":\"7F64C167-943D-4F3F-9374-BCC8DECB3881\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.3.0\",\"versionEndExcluding\":\"11.3.1\",\"matchCriteriaId\":\"945A6E29-209F-4992-8692-BEF63DCB6B98\"}]}]}],\"references\":[{\"url\":\"https://mattermost.com/security-updates\",\"source\":\"responsibledisclosure@mattermost.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-2454\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-03-17T13:37:37.264945Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-03-17T13:37:40.901Z\"}}], \"cna\": {\"title\": \"DoS in Calls plugin via malformed msgpack in websocket request.\", \"source\": {\"defect\": [\"https://mattermost.atlassian.net/browse/MM-66166\"], \"advisory\": \"MMSA-2025-00537\", \"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"National Security Agency\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 5.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Mattermost\", \"product\": \"Mattermost\", \"versions\": [{\"status\": \"affected\", \"version\": \"11.3.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"11.3.0\"}, {\"status\": \"affected\", \"version\": \"11.2.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"11.2.2\"}, {\"status\": \"affected\", \"version\": \"10.11.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"10.11.10\"}, {\"status\": \"unaffected\", \"version\": \"11.4.0\"}, {\"status\": \"unaffected\", \"version\": \"11.3.1\"}, {\"status\": \"unaffected\", \"version\": \"11.2.3\"}, {\"status\": \"unaffected\", \"version\": \"10.11.11\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Update Mattermost to versions 11.4.0, 11.3.1, 11.2.3, 10.11.11 or higher.\"}], \"references\": [{\"url\": \"https://mattermost.com/security-updates\", \"name\": \"MMSA-2025-00537\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Mattermost versions 11.3.x \u003c= 11.3.0, 11.2.x \u003c= 11.2.2, 10.11.x \u003c= 10.11.10 fail to handle incorrectly reported array lengths which allows malicious user to cause OOM errors and crash the server via sending corrupted msgpack frames within websocket messages to calls plugin. Mattermost Advisory ID: MMSA-2025-00537\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1287\", \"description\": \"CWE-1287: Improper Validation of Specified Type of Input\"}]}], \"providerMetadata\": {\"orgId\": \"9302f53e-dde5-4bf3-b2f2-a83f91ac0eee\", \"shortName\": \"Mattermost\", \"dateUpdated\": \"2026-03-16T20:10:16.644Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-2454\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-17T13:37:43.947Z\", \"dateReserved\": \"2026-02-13T10:11:47.778Z\", \"assignerOrgId\": \"9302f53e-dde5-4bf3-b2f2-a83f91ac0eee\", \"datePublished\": \"2026-03-16T20:10:16.644Z\", \"assignerShortName\": \"Mattermost\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

GHSA-3CX3-RW7F-7Q37

Vulnerability from github – Published: 2026-03-16 21:34 – Updated: 2026-03-16 21:34

Details

Severity ?

5.8 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2026-2454"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-1287"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-03-16T21:16:33Z",
    "severity": "MODERATE"
  },
  "details": "Mattermost versions 11.3.x \u003c= 11.3.0, 11.2.x \u003c= 11.2.2, 10.11.x \u003c= 10.11.10 fail to handle incorrectly reported array lengths which allows malicious user to cause OOM errors and crash the server via sending corrupted msgpack frames within websocket messages to calls plugin. Mattermost Advisory ID: MMSA-2025-00537",
  "id": "GHSA-3cx3-rw7f-7q37",
  "modified": "2026-03-16T21:34:32Z",
  "published": "2026-03-16T21:34:32Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2454"
    },
    {
      "type": "WEB",
      "url": "https://mattermost.com/security-updates"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2026-0422

Vulnerability from csaf_certbund - Published: 2026-02-15 23:00 - Updated: 2026-03-19 23:00

Summary

Mattermost: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Mattermost ist ein webbasierter Instant-Messaging-Dienst.

Angriff: Ein authentisierter Angreifer kann mehrere Schwachstellen in Mattermost ausnutzen, um falsche Informationen anzuzeigen, Informationen offenzulegen, Sicherheitskontrollen zu umgehen und eine Denial-of-Service-Situation zu erzeugen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2026-1629

CVE-2026-21386

CVE-2026-22545

CVE-2026-24458

CVE-2026-2454

CVE-2026-2455

CVE-2026-2456

CVE-2026-2457

CVE-2026-2458

CVE-2026-2461

CVE-2026-2462

CVE-2026-2463

CVE-2026-24692

CVE-2026-2476

CVE-2026-25780

CVE-2026-25783

CVE-2026-26230

CVE-2026-26246

CVE-2026-26304

References

URL

Category

	https://wid.cert-bund.de/.well-known/csaf/white/2…	self
	https://wid.cert-bund.de/portal/wid/securityadvis…	self
	https://mattermost.com/security-updates/#desktop	external
	https://mattermost.com/security-updates/#plugins	external
	https://mattermost.com/security-updates/#server	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Mattermost ist ein webbasierter Instant-Messaging-Dienst.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein authentisierter Angreifer kann mehrere Schwachstellen in Mattermost ausnutzen, um falsche Informationen anzuzeigen, Informationen offenzulegen, Sicherheitskontrollen zu umgehen und eine Denial-of-Service-Situation zu erzeugen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-0422 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0422.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-0422 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0422"
      },
      {
        "category": "external",
        "summary": "Mattermost Security Updates vom 2026-02-15",
        "url": "https://mattermost.com/security-updates/#desktop"
      },
      {
        "category": "external",
        "summary": "Mattermost Security Updates vom 2026-02-15",
        "url": "https://mattermost.com/security-updates/#plugins"
      },
      {
        "category": "external",
        "summary": "Mattermost Security Updates vom 2026-02-15",
        "url": "https://mattermost.com/security-updates/#server"
      }
    ],
    "source_lang": "en-US",
    "title": "Mattermost: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-03-19T23:00:00.000+00:00",
      "generator": {
        "date": "2026-03-20T08:33:09.017+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2026-0422",
      "initial_release_date": "2026-02-15T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-02-15T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-03-02T23:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: EUVD-2026-9174"
        },
        {
          "date": "2026-03-16T23:00:00.000+00:00",
          "number": "3",
          "summary": "Referenz(en) aufgenommen: EUVD-2026-12411, EUVD-2026-12409, EUVD-2026-12385, EUVD-2026-12430, EUVD-2026-12405, EUVD-2026-12516, EUVD-2026-12510, EUVD-2026-12443, EUVD-2026-12439, EUVD-2026-12416, EUVD-2026-12518, EUVD-2026-12512, EUVD-2026-12441, EUVD-2026-12437, EUVD-2026-12383, EUVD-2026-12417, EUVD-2026-12413, EUVD-2026-12407"
        },
        {
          "date": "2026-03-18T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Informationen von Mattermost aufgenommen"
        },
        {
          "date": "2026-03-19T23:00:00.000+00:00",
          "number": "5",
          "summary": "CVE-2026-2476, CVE-2026-2461 erg\u00e4nzt"
        }
      ],
      "status": "final",
      "version": "5"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Plugins \u003c2.3.1.0",
                "product": {
                  "name": "Mattermost Mattermost Plugins \u003c2.3.1.0",
                  "product_id": "T050924"
                }
              },
              {
                "category": "product_version",
                "name": "Plugins 2.3.1.0",
                "product": {
                  "name": "Mattermost Mattermost Plugins 2.3.1.0",
                  "product_id": "T050924-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:plugins__2.3.1.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Plugins \u003c10.11.11",
                "product": {
                  "name": "Mattermost Mattermost Plugins \u003c10.11.11",
                  "product_id": "T050925"
                }
              },
              {
                "category": "product_version",
                "name": "Plugins 10.11.11",
                "product": {
                  "name": "Mattermost Mattermost Plugins 10.11.11",
                  "product_id": "T050925-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:plugins__10.11.11"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Desktop \u003c5.13.3.0",
                "product": {
                  "name": "Mattermost Mattermost Desktop \u003c5.13.3.0",
                  "product_id": "T050926"
                }
              },
              {
                "category": "product_version",
                "name": "Desktop 5.13.3.0",
                "product": {
                  "name": "Mattermost Mattermost Desktop 5.13.3.0",
                  "product_id": "T050926-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:desktop__5.13.3.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Desktop \u003c5.13.4.0",
                "product": {
                  "name": "Mattermost Mattermost Desktop \u003c5.13.4.0",
                  "product_id": "T050927"
                }
              },
              {
                "category": "product_version",
                "name": "Desktop 5.13.4.0",
                "product": {
                  "name": "Mattermost Mattermost Desktop 5.13.4.0",
                  "product_id": "T050927-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:desktop__5.13.4.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Server \u003c11.2.3",
                "product": {
                  "name": "Mattermost Mattermost Server \u003c11.2.3",
                  "product_id": "T050929"
                }
              },
              {
                "category": "product_version",
                "name": "Server 11.2.3",
                "product": {
                  "name": "Mattermost Mattermost Server 11.2.3",
                  "product_id": "T050929-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:server__11.2.3"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Server \u003c11.3.1",
                "product": {
                  "name": "Mattermost Mattermost Server \u003c11.3.1",
                  "product_id": "T050930"
                }
              },
              {
                "category": "product_version",
                "name": "Server 11.3.1",
                "product": {
                  "name": "Mattermost Mattermost Server 11.3.1",
                  "product_id": "T050930-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:server__11.3.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Server \u003c11.4.0",
                "product": {
                  "name": "Mattermost Mattermost Server \u003c11.4.0",
                  "product_id": "T050931"
                }
              },
              {
                "category": "product_version",
                "name": "Server 11.4.0",
                "product": {
                  "name": "Mattermost Mattermost Server 11.4.0",
                  "product_id": "T050931-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:server__11.4.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Server \u003c10.11.11",
                "product": {
                  "name": "Mattermost Mattermost Server \u003c10.11.11",
                  "product_id": "T050932"
                }
              },
              {
                "category": "product_version",
                "name": "Server 10.11.11",
                "product": {
                  "name": "Mattermost Mattermost Server 10.11.11",
                  "product_id": "T050932-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mattermost:mattermost_server:server__10.11.11"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Mattermost"
          }
        ],
        "category": "vendor",
        "name": "Mattermost"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-1629",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-1629"
    },
    {
      "cve": "CVE-2026-21386",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-21386"
    },
    {
      "cve": "CVE-2026-22545",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-22545"
    },
    {
      "cve": "CVE-2026-24458",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-24458"
    },
    {
      "cve": "CVE-2026-2454",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2454"
    },
    {
      "cve": "CVE-2026-2455",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2455"
    },
    {
      "cve": "CVE-2026-2456",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2456"
    },
    {
      "cve": "CVE-2026-2457",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2457"
    },
    {
      "cve": "CVE-2026-2458",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2458"
    },
    {
      "cve": "CVE-2026-2461",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2461"
    },
    {
      "cve": "CVE-2026-2462",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2462"
    },
    {
      "cve": "CVE-2026-2463",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2463"
    },
    {
      "cve": "CVE-2026-24692",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-24692"
    },
    {
      "cve": "CVE-2026-2476",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-2476"
    },
    {
      "cve": "CVE-2026-25780",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-25780"
    },
    {
      "cve": "CVE-2026-25783",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-25783"
    },
    {
      "cve": "CVE-2026-26230",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-26230"
    },
    {
      "cve": "CVE-2026-26246",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-26246"
    },
    {
      "cve": "CVE-2026-26304",
      "product_status": {
        "known_affected": [
          "T050925",
          "T050924",
          "T050927",
          "T050926",
          "T050932",
          "T050931",
          "T050930",
          "T050929"
        ]
      },
      "release_date": "2026-02-15T23:00:00.000+00:00",
      "title": "CVE-2026-26304"
    }
  ]
}

FKIE_CVE-2026-2454

Vulnerability from fkie_nvd - Published: 2026-03-16 21:16 - Updated: 2026-03-18 13:56

Severity ?

5.8 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
8.6 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Summary

References

	URL	Tags
	responsibledisclosure@mattermost.com	https://mattermost.com/security-updates	Vendor Advisory

Impacted products

Vendor	Product	Version
mattermost	mattermost_server	*
mattermost	mattermost_server	*
mattermost	mattermost_server	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6E5F368-358C-429B-8F04-3C8DF4A71A91",
              "versionEndExcluding": "10.11.11",
              "versionStartIncluding": "10.11.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F64C167-943D-4F3F-9374-BCC8DECB3881",
              "versionEndExcluding": "11.2.3",
              "versionStartIncluding": "11.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "945A6E29-209F-4992-8692-BEF63DCB6B98",
              "versionEndExcluding": "11.3.1",
              "versionStartIncluding": "11.3.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Mattermost versions 11.3.x \u003c= 11.3.0, 11.2.x \u003c= 11.2.2, 10.11.x \u003c= 10.11.10 fail to handle incorrectly reported array lengths which allows malicious user to cause OOM errors and crash the server via sending corrupted msgpack frames within websocket messages to calls plugin. Mattermost Advisory ID: MMSA-2025-00537"
    },
    {
      "lang": "es",
      "value": "Las versiones de Mattermost 11.3.x \u0026lt;= 11.3.0, 11.2.x \u0026lt;= 11.2.2, 10.11.x \u0026lt;= 10.11.10 fallan al manejar longitudes de array reportadas de forma incorrecta, lo que permite a un usuario malicioso causar errores OOM y colapsar el servidor mediante el env\u00edo de tramas msgpack corruptas dentro de mensajes websocket al plugin de llamadas. ID de Aviso de Mattermost: MMSA-2025-00537"
    }
  ],
  "id": "CVE-2026-2454",
  "lastModified": "2026-03-18T13:56:03.590",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "responsibledisclosure@mattermost.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.6,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 4.0,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2026-03-16T21:16:33.890",
  "references": [
    {
      "source": "responsibledisclosure@mattermost.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://mattermost.com/security-updates"
    }
  ],
  "sourceIdentifier": "responsibledisclosure@mattermost.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-1287"
        }
      ],
      "source": "responsibledisclosure@mattermost.com",
      "type": "Secondary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-2454 (GCVE-0-2026-2454)

GHSA-3CX3-RW7F-7Q37

WID-SEC-W-2026-0422

FKIE_CVE-2026-2454

Tags

Sightings

Nomenclature