CVE-2026-26233 | Mattermost up to 10.11.11/11.2.3/11.3.1/11.4.0/11.4.x HTTP/2 resource consumption

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability described as problematic has been identified in Mattermost up to 10.11.11/11.2.3/11.3.1/11.4.0/11.4.x. This affects an unknown function of the component HTTP2 Handler. Such manipulation leads to resource consumption.

This vulnerability is uniquely identified as CVE-2026-26233. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is recommended.

CVE-2026-26233 | Mattermost up to 10.11.11/11.2.3/11.3.1/11.4.0/11.4.x HTTP/2 resource consumption

Post correlati

CVE-2024-20436 | Cisco IOS XE up to 17.12.1a HTTP Server Telephony Service null pointer dereference (cisco-sa-httpsrvr-dos-yOZThut)

CVE-2025-64616 | Adobe Experience Manager up to 6.5.23 cross site scripting (apsb25-115)

CVE-2022-32204 | Huawei CV81-WDM FW 01.70.49.29.46 denial of service (sa-20220608-01)

CVE-2024-37392 | SMSEagle up to 5.x SMS Message cross site scripting