Mastodon 4.1.x before 4.1.17 and 4.2.x before 4.2.9 allows a bypass of rate limiting via a crafted HTTP request header.
Metrics
Affected Vendors & Products
References
History
Tue, 19 Nov 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Joinmastodon
Joinmastodon mastodon |
|
Weaknesses | CWE-79 | |
CPEs | cpe:2.3:a:joinmastodon:mastodon:-:*:*:*:*:*:*:* | |
Vendors & Products |
Joinmastodon
Joinmastodon mastodon |
|
Metrics |
cvssV3_1
|
Mon, 18 Nov 2024 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Mastodon 4.1.x before 4.1.17 and 4.2.x before 4.2.9 allows a bypass of rate limiting via a crafted HTTP request header. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-18T00:00:00
Updated: 2024-11-19T15:39:43.146Z
Reserved: 2023-12-03T00:00:00
Link: CVE-2023-49952
Vulnrichment
Updated: 2024-11-19T15:35:15.153Z
NVD
Status : Awaiting Analysis
Published: 2024-11-18T18:15:05.927
Modified: 2024-11-19T21:57:56.293
Link: CVE-2023-49952
Redhat
No data.