CVE-2024-47401

CVSS V2 None CVSS V3 None
Description
Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1 and 9.5.x <= 9.5.9 fail to prevent detailed error messages from being displayed in Playbooks which allows an attacker to generate a large response and cause an amplified GraphQL response which in turn could cause the application to crash by sending a specially crafted request to Playbooks.
Overview
  • CVE ID
  • CVE-2024-47401
  • Assigner
  • Mattermost
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-10-29T08:11:17.553Z
  • Last Modified Date
  • 2024-10-29T12:52:04.161Z
References
Reference URL Reference Tags
https://mattermost.com/security-updates
History
Created Old Value New Value Data Type Notes
2024-10-30 13:34:28 Added to TrackCVE