Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial of Service via crashing the Calls Plugin
Vulnerability Description
Mattermost fails to properly validate requests to the Calls plugin, allowing an attacker sending a request without a User Agent header to cause a panic and crash the Calls plugin
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
对因果或异常条件的不恰当检查
Vulnerability Title
Mattermost 代码问题漏洞
Vulnerability Description
Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost存在安全漏洞,该漏洞源于没有正确验证Calls插件的请求,导致攻击者可以在发送没有User Agent标头的请求时使Calls插件崩溃。
CVSS Information
N/A
Vulnerability Type
N/A