Bitnami package
mastodon
pkg:bitnami/mastodon
Vulnerabilities (42)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-24307 | — | < 3.3.2 | 3.3.2 | Feb 3, 2022 | Mastodon before 3.3.2 and 3.4.x before 3.4.6 has incorrect access control because it does not compact incoming signed JSON-LD activities. (JSON-LD signing has been supported since version 1.6.0.) | ||
| CVE-2022-0432 | — | < 3.5.0 | 3.5.0 | Feb 2, 2022 | Prototype Pollution in GitHub repository mastodon/mastodon prior to 3.5.0. |
- CVE-2022-24307Feb 3, 2022affected < 3.3.2fixed 3.3.2
Mastodon before 3.3.2 and 3.4.x before 3.4.6 has incorrect access control because it does not compact incoming signed JSON-LD activities. (JSON-LD signing has been supported since version 1.6.0.)
- CVE-2022-0432Feb 2, 2022affected < 3.5.0fixed 3.5.0
Prototype Pollution in GitHub repository mastodon/mastodon prior to 3.5.0.
Page 3 of 3