CVE-2026-4286 | Mattermost up to 10.11.13/11.5.1 PUT Api team_id authorization

A vulnerability was found in Mattermost up to 10.11.13/11.5.1. It has been rated as problematic. This vulnerability affects unknown code of the component PUT Api. Performing a manipulation of the argument team_id results in incorrect authorization.

This vulnerability is known as CVE-2026-4286. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More