CVE-2026-2454 | Mattermost up to 10.11.10/11.2.2/11.3.0 Websocket Message improper validation of specified type of input

Inserito da Angelo Barbosa | Mar 16, 2026 | CVE

A vulnerability was found in Mattermost up to 10.11.10/11.2.2/11.3.0 and classified as problematic. Impacted is an unknown function of the component Websocket Message Handler. Executing a manipulation can lead to improper validation of specified type of input.

The identification of this vulnerability is CVE-2026-2454. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-2454 | Mattermost up to 10.11.10/11.2.2/11.3.0 Websocket Message improper validation of specified type of input

Post correlati

CVE-2024-8528 | Automated Logic WebCTRL up to 9.0 GET Parameter cross site scripting

CVE-2025-5799 | Tenda AC8 16.03.34.09 /goform/WifiExtraSet fromSetWirelessRepeat wpapsk_crypto stack-based overflow

CVE-2026-2962 | D-Link DWR-M960 1.01.07 Scheduled Reboot Configuration Endpoint /boafrm/formDateReboot sub_460F30 submit-url stack-based overflow

CVE-2024-12289 | HashiCorp Boundary Community Edition/Boundary Enterprise up to 0.18.1 cleanup