Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.6
Mattermost Desktop App: Malicious Server Can Run Executable Code
CVE-2026-1046
Summary
If you use the Mattermost Desktop App, a malicious Mattermost server can trick you into running arbitrary code on your computer if you click on certain help links. This is a serious security risk. Update to the latest version of the app to protect your system.
Original title
Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate help links which allows a malicious Mattermost server to execute arbitrary executables on a user’s system via the user clicking...
Original description
Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate help links which allows a malicious Mattermost server to execute arbitrary executables on a user’s system via the user clicking on certain items in the Help menu Mattermost Advisory ID: MMSA-2026-00577
nvd CVSS3.1
7.6
Vulnerability type
CWE-939
Published: 16 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026