https://isitpatched.com/mastodon Security alerts for Mastodon: newly-exploited CVEs and end-of-life events from IsItPatched. en Compiled by IsItPatched (isitpatched.com) from NVD, CISA KEV, EPSS and endoflife.date. IsItPatched (https://isitpatched.com) https://www.rssboard.org/rss-specification 15 https://isitpatched.com/icon-192.png https://isitpatched.com/mastodon Tue, 16 Jun 2026 22:43:51 GMT https://isitpatched.com/mastodon mastodon:4.3:eol Mastodon 4.3 reached end of life on 2026-05-06 — no more security updates. Plan your upgrade. End of life IsItPatched Wed, 06 May 2026 00:00:00 GMT https://isitpatched.com/cve/CVE-2026-33868 mastodon|CVE-2026-33868 Severity: Medium (CVSS 4.3) · CWE-601 · EPSS 1% Medium IsItPatched Fri, 27 Mar 2026 20:16:34 GMT https://isitpatched.com/cve/CVE-2026-23962 mastodon|CVE-2026-23962 Severity: High (CVSS 7.5) · Resource exhaustion · EPSS 0% High IsItPatched Thu, 22 Jan 2026 03:15:46 GMT https://isitpatched.com/cve/CVE-2025-54879 mastodon|CVE-2025-54879 Severity: Medium (CVSS 5.3) · Resource exhaustion · EPSS 1% Medium IsItPatched Wed, 06 Aug 2025 00:15:31 GMT https://isitpatched.com/cve/CVE-2024-37903 mastodon|CVE-2024-37903 Severity: High (CVSS 8.2) · Missing authorization · EPSS 1% High IsItPatched Fri, 05 Jul 2024 18:15:32 GMT https://isitpatched.com/cve/CVE-2024-25623 mastodon|CVE-2024-25623 Severity: High (CVSS 8.5) · Unrestricted file upload · EPSS 1% High IsItPatched Mon, 19 Feb 2024 16:15:51 GMT https://isitpatched.com/cve/CVE-2024-25618 mastodon|CVE-2024-25618 Severity: Medium (CVSS 4.2) · Improper authentication · EPSS 0% Medium IsItPatched Wed, 14 Feb 2024 21:15:08 GMT https://isitpatched.com/cve/CVE-2024-23832 mastodon|CVE-2024-23832 Severity: Critical (CVSS 9.4) · CWE-290 · EPSS 2% Critical IsItPatched Thu, 01 Feb 2024 17:15:10 GMT https://isitpatched.com/cve/CVE-2023-42451 mastodon|CVE-2023-42451 Severity: High (CVSS 7.4) · CWE-706 · EPSS 1% High IsItPatched Tue, 19 Sep 2023 16:15:13 GMT https://isitpatched.com/cve/CVE-2023-36462 mastodon|CVE-2023-36462 Severity: Medium (CVSS 5.4) · Improper input validation · EPSS 1% Medium IsItPatched Thu, 06 Jul 2023 20:15:09 GMT https://isitpatched.com/cve/CVE-2023-36461 mastodon|CVE-2023-36461 Severity: High (CVSS 7.5) · Resource exhaustion · EPSS 1% High IsItPatched Thu, 06 Jul 2023 19:15:10 GMT https://isitpatched.com/cve/CVE-2023-36460 mastodon|CVE-2023-36460 Severity: Critical (CVSS 9.9) · Path traversal · EPSS 37% Critical IsItPatched Thu, 06 Jul 2023 19:15:10 GMT https://isitpatched.com/cve/CVE-2023-36459 mastodon|CVE-2023-36459 Severity: Critical (CVSS 9.3) · Cross-site scripting (XSS) · EPSS 1% Critical IsItPatched Thu, 06 Jul 2023 19:15:10 GMT https://isitpatched.com/cve/CVE-2023-28853 mastodon|CVE-2023-28853 Severity: High (CVSS 7.7) · CWE-90 · EPSS 1% High IsItPatched Tue, 04 Apr 2023 22:15:08 GMT https://isitpatched.com/cve/CVE-2022-48364 mastodon|CVE-2022-48364 Severity: Medium (CVSS 4.3) · Improper authentication · EPSS 1% Medium IsItPatched Mon, 06 Mar 2023 14:15:09 GMT https://isitpatched.com/cve/CVE-2022-46405 mastodon|CVE-2022-46405 Severity: High (CVSS 7.5) · CWE-674 · EPSS 1% High IsItPatched Sun, 04 Dec 2022 04:15:09 GMT https://isitpatched.com/cve/CVE-2022-2166 mastodon|CVE-2022-2166 Severity: Critical (CVSS 9.8) · CWE-307 · EPSS 1% Critical IsItPatched Wed, 16 Nov 2022 01:15:10 GMT https://isitpatched.com/cve/CVE-2022-31263 mastodon|CVE-2022-31263 Severity: Medium (CVSS 5.3) · EPSS 1% Medium IsItPatched Tue, 24 May 2022 04:15:08 GMT https://isitpatched.com/cve/CVE-2022-24307 mastodon|CVE-2022-24307 Severity: Critical (CVSS 9.8) · Incorrect authorization · EPSS 1% Critical IsItPatched Thu, 03 Feb 2022 20:15:07 GMT https://isitpatched.com/cve/CVE-2022-0432 mastodon|CVE-2022-0432 Severity: Medium (CVSS 6.1) · Prototype pollution · EPSS 4% Medium IsItPatched Wed, 02 Feb 2022 22:15:07 GMT https://isitpatched.com/cve/CVE-2018-21018 mastodon|CVE-2018-21018 Severity: Critical (CVSS 9.8) · CWE-613 · EPSS 3% Critical IsItPatched Sun, 22 Sep 2019 15:15:13 GMT