CVE-2024-25619 | Mastodon up to 3.5.17/4.0.13/4.1.13/4.2.5 OAuth Application operation after expiration (GHSA-7w3c-p9j8-mq3x)

Inserito da Angelo Barbosa | Feb 15, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Mastodon up to 3.5.17/4.0.13/4.1.13/4.2.5. Affected is an unknown function of the component OAuth Application. The manipulation leads to operation on a resource after expiration.

This vulnerability is traded as CVE-2024-25619. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-25619 | Mastodon up to 3.5.17/4.0.13/4.1.13/4.2.5 OAuth Application operation after expiration (GHSA-7w3c-p9j8-mq3x)

Post correlati

CVE-2024-7849 | D-Link DNS-1550-04 up to 20240814 photocenter_mgr.cgi cgi_create_album current_path buffer overflow (SAP10383)

CVE-2024-5849 | Pepperl+Fuchs MOD-16RJ45 cross site scripting (VDE-2024-033)

CVE-2023-43545 | Qualcomm Snapdragon Auto integer overflow

CVE-2024-0961 | SiteOrigin Widgets Bundle Plugin up to 1.58.1 on WordPress cross site scripting