CVE-2023-5522

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Oct 17, 2023

Updated: Oct 24, 2023

CWE ID 400

Summary

CVE-2023-5522 refers to a vulnerability in Mattermost Mobile where the application fails to impose a limit on the number of Markdown elements in a post. This issue enables an attacker to send a message containing hundreds of emojis to a channel, resulting in the mobile app freezing when users attempt to view that particular channel. This can lead to disrupted communication and productivity for users. It is recommended that users update their Mattermost Mobile applications to the latest version to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Mattermost

Affected Vendors

Mattermost, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s9-0Bf
https://www.cve.org/CVERecord?id=CVE-2023-5522
https://nvd.nist.gov/vuln/detail/CVE-2023-5522

Back to Vulnerability Database