Runup

**Name of the Vulnerable Software and Affected Versions** Mattermost version 11.6.0 Mattermost version 11.5.3 Mattermost version 11.4.4 Mattermost version 10.11.14 **Description** Insufficient sanitization of team member data returned via API endpoints allows users without elevated permissions to obtain unauthorized information regarding the roles of team members. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.