| CVE |
Severity |
CVSS |
Risk |
Published |
Description |
Impact |
| CVE-2026-24661 |
medium |
— |
5.5 |
2mo ago |
Mattermost MS Teams plugin doesn't limit the request body size on the /changes webhook endpoint |
|
| CVE-2026-21388 |
low |
— |
2.5 |
2mo ago |
Mattermost MS Teams plugin doesn't limit the request body size on the /lifecycle webhook endpoint |
|
| CVE-2026-2476 |
unknown |
— |
— |
2mo ago |
Mattermost Microsoft Teams Plugin fails to properly mask sensitive configuration values in github.com/mattermost/mattermost-plugin-msteams |
|
| CVE-2025-27936 |
unknown |
— |
— |
1y ago |
Mattermost vulnerable to Observable Timing Discrepancy in github.com/mattermost/mattermost-plugin-msteams |
|