A vulnerability marked as problematic has been reported in Mattermost up to 10.11.17/11.5.5/11.6.2/11.7.0/11.7.x . Affected by this vulnerability is an unknown functionality of the component Subscription Edit Endpoint . This manipulation causes authorization bypass. This vulnerability is handled as CVE-2026-6062 . The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.