Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mobile app freezes when receiving a post with hundreds of emojis
Vulnerability Description
Mattermost Mobile fails to limit the maximum number of Markdown elements in a post allowing an attacker to send a post with hundreds of emojis to a channel and freeze the mobile app of users when viewing that particular channel.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Mattermost 安全漏洞
Vulnerability Description
Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost Mobile存在安全漏洞,该漏洞源于未能限制帖子中 Markdown 元素的最大数量,从而允许攻击者将包含数百个表情符号的帖子发送到某个频道,并在用户查看该特定频道时冻结用户的移动应用。
CVSS Information
N/A
Vulnerability Type
N/A