Mattermost fails to properly sanitize the request to /api/v4/redirect_location allowing an attacker, sending a specially crafted request to /api/v4/redirect_location, to fill up the memory due to caching large items.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://mattermost.com/security-updates |
History
No history.
MITRE
Status: PUBLISHED
Assigner: Mattermost
Published: 2023-11-06T15:48:23.590Z
Updated: 2024-09-17T13:07:28.847Z
Reserved: 2023-11-06T15:45:39.602Z
Link: CVE-2023-5969
Vulnrichment
Updated: 2024-08-02T08:14:25.131Z
NVD
Status : Analyzed
Published: 2023-11-06T16:15:42.987
Modified: 2023-11-14T17:13:54.790
Link: CVE-2023-5969
Redhat
No data.