A vulnerability was found in Mattermost up to 10.11.14/11.4.4/11.5.3/11.6.0 and classified as problematic . This affects an unknown part of the component API . Such manipulation leads to information disclosure. This vulnerability is referenced as CVE-2026-3636 . It is possible to launch the attack remotely. No exploit is available. It is suggested to upgrade the affected component.