Mastodon · Mastodon · CVE-2018-21018
**Name of the Vulnerable Software and Affected Versions**
Mastodon versions prior to 2.6.3
**Description**
The issue arises from the mishandling of timeouts for incompletely established sessions.
**Recommendations**
For versions prior to 2.6.3, update to version 2.6.3 or later to resolve the issue.