Ossi Väänänen

**Name of the Vulnerable Software and Affected Versions** Mattermost (affected versions not specified) **Description** The issue allows a low-privileged authenticated user to link a Board to a private channel they don't have access to, due to a failure in verifying channel membership when linking a board to a channel. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mattermost Boards (affected versions not specified) **Description** The issue is related to the improper validation of a board link in Mattermost Boards, which allows an attacker to crash a channel by posting a specially crafted boards link. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.