CNNVD-202508-415 Information
CNNVD ID
CNNVD-202508-415
Related CVE
- CNNVD Published: 2025-08-06
Description (Chinese)
Mastodon是Mastodon开源的一款基于ActivityPub的开源社交网络服务器。 Mastodon 4.2.24及之前版本、4.3.11及之前版本和4.4.3及之前版本存在安全漏洞,该漏洞源于速率限制配置错误,可能导致拒绝服务攻击。
Description (English)
Mastodon is an open-source social network server based on ActivityPub. There is a security loophole in Mastodon 4.2.24 and previous versions, 4.3.11 and previous versions and 4.4.3 and earlier versions, which stems from the misconfiguration of speed limits and may lead to denial of service attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mastodon
Published
2025-08-06
Last Modified
2026-02-24
References
https://github.com/mastodon/mastodon/security/advisories/GHSA-84ch-6436-c7mg https://github.com/mastodon/mastodon/releases/tag/v4.4.3 https://github.com/mastodon/mastodon/commit/e2592419d93fb41be03c2f3ff6a122fecb0e0952 https://nvd.nist.gov/vuln/detail/CVE-2025-54879 https://access.redhat.com/security/cve/cve-2025-54879
Patch
https://github.com/mastodon/mastodon/releases
Share on: