CVE-2023-2793

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jun 16, 2023

Updated: Jun 26, 2023

Summary

CVE-2023-2793 is a vulnerability affecting Mattermost, an open-source team communication platform. This issue arises from Mattermost's failure to validate links on external websites when generating previews for linked webpages. An attacker can exploit this vulnerability by crafting a denial-of-service (DoS) webpage and sharing it as a link within a message. Upon previewing the link, Mattermost processes the malicious webpage, resulting in a DoS condition for the affected system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/qjaH4h
https://www.cve.org/CVERecord?id=CVE-2023-2793
https://nvd.nist.gov/vuln/detail/CVE-2023-2793

Back to Vulnerability Database

CVE-2023-2793

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations