CVE-2024-28053
published 2024-03-15CVE-2024-28053: Resource Exhaustion in Mattermost Server versions 8.1.x before 8.1.10 fails to limit the size of the payload that can be read and parsed allowing an attacker…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
Resource Exhaustion in Mattermost Server versions 8.1.x before 8.1.10 fails to limit the size of the payload that can be read and parsed allowing an attacker to send a very large email payload and crash the server.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | mattermost_mattermost-server | >= 0 < 0.0.0-20240209181221-674f549daf0e | 0.0.0-20240209181221-674f549daf0e |
| github.com | mattermost_mattermost-server_v5 | >= 0 < 0.0.0-20240209181221-674f549daf0e | 0.0.0-20240209181221-674f549daf0e |
| github.com | mattermost_mattermost-server_v6 | >= 0 < 0.0.0-20240209181221-674f549daf0e | 0.0.0-20240209181221-674f549daf0e |
| github.com | mattermost_mattermost_server_v8 | >= 0 < 0.0.0-20240209181221-674f549daf0e | 0.0.0-20240209181221-674f549daf0e |
| mattermost | mattermost | 8.1.0 – 8.1.9 | — |
| mattermost | mattermost_server | >= 8.1.0 < 8.1.10 | 8.1.10 |