CVE-2023-5969
EUVD-2023-304806.11.2023, 16:15
Mattermost fails to properly sanitize the request to /api/v4/redirect_location allowing an attacker, sending a specially crafted request to /api/v4/redirect_location, to fill up the memory due to caching large items.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| mattermost | mattermost | 𝑥 ≤ 7.8.11 |
| mattermost | mattermost | 8.0.0 ≤ 𝑥 ≤ 8.0.3 |
| mattermost | mattermost | 8.1.0 ≤ 𝑥 ≤ 8.1.2 |
| mattermost | mattermost | 9.0.0 |
𝑥
= Vulnerable software versions