VYPR
Moderate severityNVD Advisory· Published Nov 27, 2023· Updated Aug 2, 2024

Log Flooding due to specially crafted requests in different endpoints

CVE-2023-48369

Description

Mattermost fails to limit the log size of server logs allowing an attacker sending specially crafted requests to different endpoints to potentially overflow the log.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/mattermost/mattermost/server/v8Go
>= 9.1.0, < 9.1.19.1.1
github.com/mattermost/mattermost/server/v8Go
>= 9.0.0, < 9.0.29.0.2
github.com/mattermost/mattermost/server/v8Go
< 8.1.48.1.4
github.com/mattermost/mattermost-server/v6Go
< 7.8.137.8.13

Affected products

41

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.