CVE-2026-6961: Path traversal via unsanitized FileInfo.Name in Mattermost federation sync
CVE-2026-6961

7.6HIGH

Key Information:

Vendor: Mattermost
Status: Mattermost
Vendor: CVE Published:; 12 June 2026

What is CVE-2026-6961?

Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x <= 10.11.15, 10.11.x <= 10.11.16 Mattermost fails to sanitize FileInfo.Name received from federated peers during shared channel file sync, which allows an attacker who controls a federated server to write files to arbitrary locations within the target server's filestore via path traversal sequences in the filename field.. Mattermost Advisory ID: MMSA-2026-00661

Affected Version(s)

Mattermost 11.6.0 <= 11.6.1

Mattermost 11.5.0 <= 11.5.4

Mattermost 10.11.0 <= 10.11.15

References

https://mattermost.com/security-updates

vendor-advisory

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 12, 2026
Vulnerability Reserved
Apr 24, 2026

Credit

Hassan Mohammed

CVE-2026-6961 Data

JSON