A vulnerability identified as problematic has been detected in Mattermost up to 10.11.17/11.7.0/11.7.x . This impacts an unknown function of the component User Active Status Endpoint . The manipulation leads to incorrect authorization. This vulnerability is traded as CVE-2026-8074 . It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.