CNNVD-202602-544 Information
Feb 04, 2026
cve
CNNVD ID
CNNVD-202602-544
Related CVE
- CNNVD Published: 2026-02-04
Description (Chinese)
Mastodon是Mastodon开源的一款基于ActivityPub的开源社交网络服务器。 Mastodon 4.3.19之前版本、4.4.13之前版本和4.5.6之前版本存在安全漏洞,该漏洞源于Web缓存投毒,可能导致缓存内容被错误复用。
Description (English)
Mastodon is an open-source social network server based on ActivityPub. There was a security loophole in the previous versions of Mastodon 4.3.19, 4.4.13 and 4.5.6, which originated from the Web cache poisoning, which could lead to the misuse of the cache content.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mastodon
Published
2026-02-04
Last Modified
2026-02-24
References
https://github.com/mastodon/mastodon/security/advisories/GHSA-ccpr-m53r-mfwr
Patch
https://github.com/mastodon/mastodon/releases
Share on: