CVE-2026-3108 in Mattermostinformazioni

Riassunto

di MITRE • 26/03/2026

Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 11.4.0, 11.3.x <= 11.3.1 fail to sanitize user-controlled post content in the mmctl commands terminal output which allows attackers to manipulate administrator terminals via crafted messages containing ANSI and OSC escape sequences that enable screen manipulation, fake prompts, and clipboard hijacking.. Mattermost Advisory ID: MMSA-2026-00599

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsabile

Mattermost

Prenotare

24/02/2026

Divulgazione

26/03/2026

Moderazione

accettato

CPE

pronto

EPSS

0.00268

KEV

no

Attività

molto basso

Fonti

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!