Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MS Teams plugin sensitive config values not properly masked in support packets
Vulnerability Description
Mattermost Plugins versions <=2.0.3.0 fail to properly mask sensitive configuration values which allows an attacker with access to support packets to obtain original plugin settings via exported configuration data. Mattermost Advisory ID: MMSA-2026-00606
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Mattermost Plugins 安全漏洞
Vulnerability Description
Mattermost Plugins是美国Mattermost公司的一个插件,提供强大的功能延伸和与服务器和网络/桌面应用程序都紧密整合。 Mattermost Plugins 2.0.3.0及之前版本存在安全漏洞,该漏洞源于未能正确屏蔽敏感配置值,可能导致能够访问支持数据包的攻击者通过导出的配置数据获取原始插件设置。
CVSS Information
N/A
Vulnerability Type
N/A