CVE-2024-48872
Bypass of "Max failed attempts" restriction via race conditionMattermost versions 10.1.x <= 10.1.2, 10.0.x <= 10.0.2, 9.11.x <= 9.11.4, and 9.5.x <= 9.5.12 fail to prevent concurrently checking and updating the failed login attempts. which allows an attacker to bypass of "Max failed attempts" restriction and send a big number of login attempts before being blocked via simultaneously sending multiple login requests
We have discovered 32 live websites that are affected by CVE-2024-48872.
Affected Software
| Product |  Mattermost |
| Category | Message Boards |
| Vulnerable Domains | 32 live websites (8.00% of Mattermost install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 9 versions ( 13% of all versions) |
Common Weakness Enumeration
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')Details
- Published - Dec 16, 2024
- Updated - Dec 16, 2024
Credits
- Roman Shchekin (qtros) (finder)
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2024-48872 United States | 12 websites |
 Germany | 6 websites |
 France | 4 websites |
 Japan | 2 websites |
 Canada | 1 websites |
 Greece | 1 websites |
 Iran | 1 websites |
 Italy | 1 websites |
 Netherlands | 1 websites |
 Russia | 1 websites |
Website Distribution by TLD
Number of websites using CVE-2024-48872| .com | 9 websites |
| .net | 4 websites |
| .org | 3 websites |
| .de | 2 websites |
| .at | 1 websites |
| .dk | 1 websites |
| .fr | 1 websites |
| .info | 1 websites |
| .pl | 1 websites |
| .ru | 1 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-48872
Top websites that are affected by CVE-2024-48872. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ****.**************.org | Germany | *,***,*** | |
| ****.******.com | United States | *,***,*** | |
| *********.com | Iran | *,***,*** | |
| *****.****.to | Japan | **,***,*** | |
| **.****.net | Germany | **,***,*** | |
| ****.***********.com | United States | **,***,*** | |
| **********.******.***.gr | Greece | **,***,*** | |
| ******.****.info | Germany | **,***,*** | |
| **.********.com | United States | **,***,*** | |
| ******.pl | France | **,***,*** |
FAQ
CVE-2024-48872 is Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in Mattermost
A total of 32 websites have been identified as vulnerable to CVE-2024-48872, based on global website indexing conducted by WebTechSurvey.
The Mattermost is affected by the CVE-2024-48872 vulnerability.
Mattermost versions up to and including 10.1.2 are vulnerable to CVE-2024-48872.