CVE-2026-3109 in Pluginsinformação

Sumário

de MITRE • 26/03/2026

Mattermost Plugins versions <=11.4 10.11.11.0 fail to validate webhook request timestamps which allows an attacker to corrupt Zoom meeting state in Mattermost via replayed webhook requests. Mattermost Advisory ID: MMSA-2026-00584

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

Mattermost

Reservar

24/02/2026

Divulgação

26/03/2026

Moderação

aceite

Entrada

VDB-353696

CPE

pronto

CWE

CWE-754 (confirmado)

CVSS

2.2 (CNA)

EPSS

0.00016

KEV

não

Atividades

muito baixo

Sector

Insurance, Lawfirm, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-3109
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-3109
CVE Details	https://www.cvedetails.com/cve/CVE-2026-3109/

◂ Voltar Visão Geral Próximo ▸

Interested in the pricing of exploits?

See the underground prices here!