4 matches found
BIT-MATTERMOST-2024-24988
Mattermost fails to properly validate the length of the emoji value in the custom user status, allowing an attacker to send multiple times a very long string as an emoji value causing high resource consumption and possibly crashing the server...
Denial Of Service (DOS)
github.com/mattermost/mattermost-server is vulnerable to a Denial of Service DoS. The vulnerability is due to improper validation of the length of the emoji value in the custom user status, allowing an attacker to send a very long string as an emoji value multiple times, causing high resource...
Code injection
Mattermost fails to properly validate the length of the emoji value in the custom user status, allowing an attacker to send multiple times a very long string as an emoji value causing high resource consumption and possibly crashing the server...
CVE-2024-24988 Excessive resource consumption when sending long emoji names in user custom status
Mattermost fails to properly validate the length of the emoji value in the custom user status, allowing an attacker to send multiple times a very long string as an emoji value causing high resource consumption and possibly crashing the server...