CVE-2026-4273

LOW3.7EPSS 0.03%

Mattermost doesn't validate that the RefreshedToken differs from the original invite token during remote cluster invite confirmation

發布日:2026/5/18修改日:2026/6/1

描述

Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to validate that the RefreshedToken differs from the original invite token during remote cluster invite confirmation which allows an authenticated attacker to bypass token rotation and reuse the original invite token via sending a crafted invite confirmation with a RefreshedToken matching the original token. Mattermost Advisory ID: MMSA-2026-00575

受影響套件(2)

Go/github.com/mattermost/mattermost-serverfrom 0, < 5.3.2-0.20260313190740-742e0be95074
Go/github.com/mattermost/mattermost/server/v8>= 11.5.0, < 11.5.2

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	LOW3.7	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

參考連結(4)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-4273
PATCHhttps://github.com/mattermost/mattermost
WEBhttps://github.com/mattermost/mattermost/commit/742e0be9507454a7e662668e1d9ec1b94b636e9b
WEBhttps://mattermost.com/security-updates