Mattermost: >> Mattermost Server >> 10.10.1 Security Vulnerabilities
Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.10.x <= 10.10.1, 10.9.x <= 10.9.3 fail to properly validate cache keys for link metadata which allows authenticated users to access unauthorized posts and poison link previews via hash collision attacks on FNV-1 hashing
CVSS Score
4.3
EPSS Score
0.0
Published
2025-09-15
Page 2