CVE-2024-23832 | Mastodon up to 3.5.16/4.0.12/4.1.12/4.2.4 LDAP Authentication authentication spoofing

Inserito da Angelo Barbosa | Feb 1, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Mastodon up to 3.5.16/4.0.12/4.1.12/4.2.4. This issue affects some unknown processing of the component LDAP Authentication. The manipulation leads to authentication bypass by spoofing.

The identification of this vulnerability is CVE-2024-23832. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23832 | Mastodon up to 3.5.16/4.0.12/4.1.12/4.2.4 LDAP Authentication authentication spoofing

Post correlati

CVE-2023-6070 | Trellix Enterprise Security Manager up to 11.6.8 API server-side request forgery

CVE-2023-32424 | Apple watchOS Kernel Memory memory corruption

CVE-2024-5117 | SourceCodester Event Registration System 1.0 portal.php username/password sql injection

CVE-2024-28242 | Discourse up to 3.2.0/3.3.0.beta1 Category information disclosure