Mattermost version 7.1.x and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service.
Metrics
Affected Vendors & Products
References
History
Sat, 07 Dec 2024 00:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Mattermost
Published: 2022-09-23T14:13:39
Updated: 2024-12-06T23:07:48.369Z
Reserved: 2022-09-21T00:00:00
Link: CVE-2022-3257
Vulnrichment
Updated: 2024-08-03T01:07:05.657Z
NVD
Status : Modified
Published: 2022-09-23T15:15:13.857
Modified: 2024-11-21T07:19:09.480
Link: CVE-2022-3257
Redhat
No data.