CVE-2024-39810 | Mattermost up to 9.5.7/9.10.0/9.11.0 ElasticSearch Configuration /dev/zero CA path resource consumption

Inserito da Angelo Barbosa | Ago 22, 2024 | CVE

A vulnerability classified as problematic was found in Mattermost up to 9.5.7/9.10.0/9.11.0. Affected by this vulnerability is an unknown functionality of the file /dev/zero of the component ElasticSearch Configuration Handler. The manipulation of the argument CA path leads to resource consumption.

This vulnerability is known as CVE-2024-39810. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39810 | Mattermost up to 9.5.7/9.10.0/9.11.0 ElasticSearch Configuration /dev/zero CA path resource consumption

Post correlati

CVE-2024-1234 | Exclusive Addons for Elementor Plugin up to 2.6.9 on WordPress cross site scripting

CVE-2024-8864 | composiohq composio up to 0.5.6 calculator.py Calculator code injection

CVE-2024-5600 | happymonkeyagency SCSS Happy Compiler Plugin up to 1.3.10 on WordPress Setting import_settings authorization

CVE-2024-38366 | CocoaPods injection