CVE-2024-24988

Published: 2024-02-29T08:15Z

Last Modified: 2025-01-10T15:38Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Mattermost fails to properly validate the length of the emoji value in the custom user status, allowing an attacker to send multiple times a very long string as an emoji value causing high resource consumption and possibly crashing the server. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt