Accounts in the decentralized social networking platform Mastodon could be remotely impersonated and taken over through the exploitation of a new critical origin validation error vulnerability, tracked as CVE-2024-23832, The Hacker News reports. Mastodon has called on users of versions before 3.5.17, 4.0.13, 4.1.13, and 4.2.5 to immediately apply updates to prevent any potential compromise.

Source: SC Magazine