Primary

Context

Mattermost Shared Channel Membership Sync Vulnerability Allowing Unauthorized Membership Removal

Vulnerability

Patched

A vulnerability exists in Mattermost versions 11.5.x through 11.5.1, 10.11.x through 10.11.13, and 11.4.x through 11.4.3. The issue arises because these versions do not properly verify whether a remote cluster has the right to access a channel before processing requests to remove membership during synchronization of shared channel memberships. This flaw enables a malicious remote cluster to remove any user from any channel, including private ones, by sending crafted membership synchronization messages targeting channels that the remote cluster is not authorized to access.

Impact

Exploitation of this vulnerability allows for unauthorized removal of users from channels, including private channels, potentially disrupting communication and collaboration.

Remediation

Users can upgrade to Mattermost versions 11.7.0, 11.6.0, or 10.11.15 to address this vulnerability.

Added: May 18, 2026, 8:23 AM

Updated: May 18, 2026, 8:23 AM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

0.6

exploitability

7.0

remediation

7.7

relevance

8.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

0.6

exploitability

7.0

remediation

7.7

relevance

8.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mattermost Shared Channel Membership Sync Vulnerability Allowing Unauthorized Membership Removal

Vulnerability

Impact

Remediation

Affected Products

Mattermost

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating