Primary

Context

Mattermost Improper Channel Archive Access Vulnerability

Vulnerability

Patched

A vulnerability exists in Mattermost versions prior to 11.0, where the application fails to properly enforce the setting that allows users to view archived channels. This oversight enables regular users to access content and files from archived channels through the 'Open in Channel' feature within followed threads.

Impact

Exploitation of this vulnerability allows unauthorized access to archived channel content and files, potentially leading to the disclosure of sensitive information.

Remediation

Users can upgrade to Mattermost version 11.1.011.0.310.12.210.11.510.5.13 to address this vulnerability.

Added: Nov 14, 2025, 9:08 AM

Updated: Nov 14, 2025, 9:08 AM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

0.6

exploitability

5.2

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

0.6

exploitability

5.2

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mattermost Improper Channel Archive Access Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Mattermost

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating