Mastodon Vulnerability Allows Hackers to Hijack Any Decentralized Account

February 4, 2024 at 12:19PM Mastodon, a decentralized social network, has revealed a significant security flaw, CVE-2024-23832, with a severity rating of 9.4. Vulnerable versions include those before 3.5.17 and specific 4.0.x, 4.1.x, and 4.2.x versions. Mastodon plans to disclose technical details on February 15, 2024, urging administrators to update server instances promptly to prevent … Read more

Mastodon vulnerability allows attackers to take over accounts

February 3, 2024 at 11:21AM Mastodon, a decentralized social networking platform, has resolved a critical vulnerability, CVE-2024-23832, allowing account impersonation and takeover. The flaw affects earlier versions and is rated 9.4 in CVSS v3.1. Server admins are urged to update to version 4.2.5 to protect users by mid-February. The impact on user security and platform … Read more