Lucene search
PRIOn knowledge basePRION:CVE-2023-5330HistoryOct 09, 2023 - 11:15 a.m.
Design/Logic Flaw
2023-10-0911:15:00
PRIOn knowledge base
www.prio-n.com
6
mattermost
cache limit
opengraph
server unavailability
logic flaw
security issue
0.0005 Low
EPSS
Percentile
17.1%
Mattermost fails toΒ enforce a limit for the size of the cache entry for OpenGraph data allowing an attacker to send a specially crafted request to the /api/v4/opengraph filling the cache and turning the server unavailable.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mattermost_server | ge | 8.1.0 | |
| mattermost_server | lt | 8.1.2 | |
| mattermost_server | ge | 8.0.0 | |
| mattermost_server | lt | 8.0.3 | |
| mattermost_server | lt | 7.8.11 |
References
Related
cve
cve
CVE-2023-5330
2023-10-09 11:15:11
veracode
veracode
Denial Of Service Attack
2023-10-26 07:25:30
osv
osv
BIT-mattermost-2023-5330
2024-03-06 10:57:35
CVE-2023-5330
2023-10-09 11:15:11
cvelist
cvelist
CVE-2023-5330 Denial of Service via Opengraph Data Cache
2023-10-09 10:38:39
nvd
nvd
CVE-2023-5330
2023-10-09 11:15:11