CyberRota
← Ana sayfaya dön

CVE-2026-6517

MEDIUM · CVSS 6.3 EPSS %0.19

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-15T14:16:37.910 · Çekilme zamanı: 2026-06-30T12:19:46.289765+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-6517
Severity
MEDIUM
CVSS
6.3
EPSS
%0.19

Orijinal NVD Açıklaması

Mattermost Desktop App versions <=6.1 5.5.13.0 fail to restrict the allow list of domains to which NTLM credentials were forwarded to in the Mattermost Desktop App which allows any user on a server without the image proxy enabled to intercept other users credentials via embedding an image that routes to an external web server. Mattermost Advisory ID: MMSA-2026-00651