Go modules package
github.com/mattermost/mattermost-plugin-msteams-meetings
pkg:golang/github.com/mattermost/mattermost-plugin-msteams-meetings
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-2325 | Med | 4.3 | < 1.1.1-0.20260213105619-c5892dd169de | 1.1.1-0.20260213105619-c5892dd169de | May 18, 2026 | Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to limit the size of the request body on the start meeting API endpoint, which allows an authenticated attacker to cause resource exhaustion or denial of service via a crafted oversized HTTP POST req |
- affected < 1.1.1-0.20260213105619-c5892dd169defixed 1.1.1-0.20260213105619-c5892dd169de
Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to limit the size of the request body on the start meeting API endpoint, which allows an authenticated attacker to cause resource exhaustion or denial of service via a crafted oversized HTTP POST req