CVE-2026-3108 in Mattermostالمعلومات

الملخص

بحسب MITRE • 26/03/2026

Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 11.4.0, 11.3.x <= 11.3.1 fail to sanitize user-controlled post content in the mmctl commands terminal output which allows attackers to manipulate administrator terminals via crafted messages containing ANSI and OSC escape sequences that enable screen manipulation, fake prompts, and clipboard hijacking.. Mattermost Advisory ID: MMSA-2026-00599

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

مسؤول

Mattermost

حجز

24/02/2026

إفشاء

26/03/2026

الاعتدال

تمت الموافقة

إدخال

VDB-353680

EPSS

0.00268

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you know our Splunk app?

Download it now for free!