Цены Enterprise

CVE-2024-34535

5.9MEDIUM

In Mastodon 4.1.6, API endpoint rate limiting can be bypassed by setting a crafted HTTP request header.

Опубликовано: 10/3/2024Обновлено: 5/6/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

In Mastodon 4.1.6, API endpoint rate limiting can be bypassed by setting a crafted HTTP request header.

ИИ-АнализНа базе ИИ

Затронутые продукты

joinmastodonmastodon

joinmastodonmastodon

Ссылки

https://github.com/mastodon/mastodon/security/advisories/GHSA-q3rg-xx5v-4mxh
Third Party Advisory
https://github.com/mastodon/mastodon/tags
Release Notes