A vulnerability was found in Mattermost up to 10.11.13/11.4.3/11.5.1 . It has been classified as problematic . Impacted is an unknown function of the component Run Creation API . The manipulation leads to incorrect authorization. This vulnerability is referenced as CVE-2026-4055 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.