First published: Thu Nov 02 2023(Updated: )
Mattermost fails to properly validate a RegExp built off the server URL path, allowing an attacker in control of an enrolled server to mount a Denial Of Service.
Credit: responsibledisclosure@mattermost.com
Affected Software | Affected Version | How to fix |
---|---|---|
<5.5.1 |
Update Mattermost Desktop to versions v5.5.1 or higher.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-5876 is a vulnerability in Mattermost Desktop that allows an attacker in control of an enrolled server to mount a Denial of Service attack.
CVE-2023-5876 impacts Mattermost Desktop by allowing an attacker to launch a Denial of Service attack.
The severity of CVE-2023-5876 is Medium.
Mattermost Desktop version up to and excluding 5.5.1 is affected by CVE-2023-5876.
To fix CVE-2023-5876, update your Mattermost Desktop to a version higher than 5.5.1.