CVE-2024-47401

🗓️ 29 Oct 2024 08:11:17Reported by MattermostType

Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1 and 9.5.x <= 9.5.9 failed to prevent detailed error messages in Playbooks, allowing an attacker to crash the application with a specially crafted request

Reporter	Title	Published	Views	Family All 76
Chainguard	CVE-2024-47401 vulnerabilities	1 May 202507:14	–	cgr
Circl	CVE-2024-47401	29 Oct 202410:35	–	circl
CNNVD	Mattermost 安全漏洞	29 Oct 202400:00	–	cnnvd
Cvelist	CVE-2024-47401 DoS via Amplified GraphQL Response in Playbooks	29 Oct 202408:11	–	cvelist
EUVD	EUVD-2024-2973	3 Oct 202520:07	–	euvd
Github Security Blog	Mattermost Server vulnerable to application crash from attacker-generated large response	29 Oct 202409:30	–	github
Tenable Nessus	Mattermost Server 9.5.x < 9.5.9 / 9.10.x < 9.10.2 / 9.11.x < 9.11.1 Multiple Vulnerabilities	31 Oct 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : govulncheck-vulndb (SUSE-SU-2024:3950-1)	9 Nov 202400:00	–	nessus
NVD	CVE-2024-47401	29 Oct 202409:15	–	nvd
OPENSUSE Linux	Security update for govulncheck-vulndb (important)	5 Nov 202400:00	–	opensuse

NVD

Node

mattermost mattermost_serverRange9.5.0–9.5.10

mattermost mattermost_serverRange9.10.0–9.10.3

mattermost mattermost_serverRange9.11.0–9.11.2

[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "lessThanOrEqual": "9.10.2",
        "status": "affected",
        "version": "9.10.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.11.1",
        "status": "affected",
        "version": "9.11.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.5.9",
        "status": "affected",
        "version": "9.5.0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "10.0.0"
      },
      {
        "status": "unaffected",
        "version": "9.10.3"
      },
      {
        "status": "unaffected",
        "version": "9.11.2"
      },
      {
        "status": "unaffected",
        "version": "9.5.10"
      }
    ]
  }
]

Source	Link
mattermost	www.mattermost.com/security-updates

17 Jun 2026 07:57Current

4.3Medium risk

Vulners AI Score4.3

CVSS 3.14.3 - 7.5

EPSS0.00442

SSVC

CWE-770