CVE-2023-5330

🗓️ 09 Oct 2023 10:38:39Reported by MattermostType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 58 Views

Mattermost fails to enforce cache entry size limit, causing server unavailabilit

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2023-5330	9 Oct 202314:15	–	circl
CNNVD	Mattermost Security Vulnerabilities	9 Oct 202300:00	–	cnnvd
Cvelist	CVE-2023-5330 Denial of Service via Opengraph Data Cache	9 Oct 202310:38	–	cvelist
EUVD	EUVD-2023-57647	3 Oct 202520:07	–	euvd
NVD	CVE-2023-5330	9 Oct 202311:15	–	nvd
OSV	BIT-MATTERMOST-2023-5330	6 Mar 202410:57	–	osv
Prion	Design/Logic Flaw	9 Oct 202311:15	–	prion
Positive Technologies	PT-2023-32049 · Unknown · Mattermost	9 Oct 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-5330	23 May 202505:06	–	redhatcve
Veracode	Denial Of Service Attack	26 Oct 202307:25	–	veracode

NVD

Node

mattermost mattermost_serverRange<7.8.11

mattermost mattermost_serverRange8.0.0–8.0.3

mattermost mattermost_serverRange8.1.0–8.1.2

[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "lessThanOrEqual": "7.8.10",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.0.2",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.1.1",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "7.8.11"
      },
      {
        "status": "unaffected",
        "version": "8.0.3"
      },
      {
        "status": "unaffected",
        "version": "8.1.2"
      }
    ]
  }
]

Source	Link
mattermost	www.mattermost.com/security-updates

21 Nov 2024 08:41Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.14.3 - 7.5

EPSS0.00118

SSVC