4 matches found
CVE-2023-5333
Mattermost fails to deduplicate input IDs allowing a simple user to cause the application to consume excessive resources and possibly crash by sending a specially crafted request to /api/v4/users/ids with multiple identical IDs...
CVE-2023-5333
creationtimestamp| type| source ---|---|--- 2023-10-09 14:15:53+00:00| seen| https://t.me/cibsecurity/71821...
CVE-2023-5333
Mattermost’s /api/v4/users/ids endpoint is vulnerable to Denial of Service due to failure to deduplicate multiple identical IDs in a request. This can allow an authenticated user to cause high resource usage or a potential crash by submitting a crafted payload with many identical IDs. Root cause:...
CVE-2023-5333 Denial of Service via multiple identical User IDs in /api/v4/users/ids
Mattermost fails to deduplicate input IDs allowing a simple user to cause the application to consume excessive resources and possibly crash by sending a specially crafted request to /api/v4/users/ids with multiple identical IDs...