A vulnerability described as critical has been identified in Mattermost up to 10.11.19/11.6.4/11.7.2. Affected by this issue is some unknown functionality of the component Shared Channel Inbound Sync Handler. The manipulation results in improper synchronization.

This vulnerability was named CVE-2026-10103. The attack may be performed from remote. There is no available exploit.