BIT-mattermost-2024-28053

BIT-mattermost-2024-28053 PUBLISHED CVSS 6.5 MEDIUM

Resource Exhaustion in Mattermost Server versions 8.1.x before 8.1.10 fails to limit the size of the payload that can be read and parsed allowing an attacker to send a very large email payload and crash the server.

Risk Scores

CVSS v3.1

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Bitnami	mattermost	8.1.0, 8.1.0, 8.1.0

Timeline

Dec 16, 2024 CVE Published
Apr 3, 2025 CVE Updated

References

https://mattermost.com/security-updates url
https://nvd.nist.gov/vuln/detail/CVE-2024-28053 url

Open in Interactive Console →