CVE-2026-28732 | Mattermost up to 10.11.13/11.4.3/11.5.1 Command Update API authorization

A vulnerability was found in Mattermost up to 10.11.13/11.4.3/11.5.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Command Update API. The manipulation results in incorrect authorization.

This vulnerability is reported as CVE-2026-28732. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More