Mattermost versions 8.1.x before... CVE-2024-4183

- AV AC AU C I A
发布: 2024-04-26
修订: 2024-04-26

Mattermost versions 8.1.x before 8.1.12, 9.6.x before 9.6.1, 9.5.x before 9.5.3, 9.4.x before 9.4.5 fail to limit the number of active sessions, which allows an authenticated attacker to crash the server via repeated requests to the getSessions API after flooding the sessions table.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息