VYPR
Unrated severityNVD Advisory· Published Oct 9, 2023· Updated Sep 5, 2024

Denial of Service via multiple identical User IDs in /api/v4/users/ids

CVE-2023-5333

Description

Mattermost fails to deduplicate input IDs allowing a simple user to cause the application to consume excessive resources and possibly crash by sending a specially crafted request to /api/v4/users/ids with multiple identical IDs.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.