CVE-2024-34535

Published October 3rd, 2024

View on NVD ↗

CVSS v3

5.9

MEDIUM

CVSS v2

N/A

Affected

1

PROJECT

Description

In Mastodon 4.1.6, API endpoint rate limiting can be bypassed by setting a crafted HTTP request header.

mastodon/mastodon

Your self-hosted, globally interconnected microblogging community

GitHub

50.1K