Lucene search
K

4 matches found

Cvelist
Cvelist
added 2022/09/09 2:39 p.m.22 views

CVE-2022-3147 Server-side Denial of Service while processing a specifically crafted JPEG file

Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of concurrently uploaded JPEG images, which allows authenticated users to cause resource exhaustion on specific system configurations, resulting in server-side Denial of Service...

3.1CVSS6.5AI score0.00874EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/09 2:39 p.m.12 views

CVE-2022-3147 Server-side Denial of Service while processing a specifically crafted JPEG file

Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of concurrently uploaded JPEG images, which allows authenticated users to cause resource exhaustion on specific system configurations, resulting in server-side Denial of Service...

3.1CVSS6.6AI score0.00874EPSS
Exploits0References2
OSV
OSV
added 2022/09/09 2:39 p.m.15 views

CVE-2022-3147 Server-side Denial of Service while processing a specifically crafted JPEG file

Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of concurrently uploaded JPEG images, which allows authenticated users to cause resource exhaustion on specific system configurations, resulting in server-side Denial of Service...

3.1CVSS6.6AI score0.00874EPSS
Exploits0References4
CVE
CVE
added 2022/09/09 2:39 p.m.71 views

CVE-2022-3147

Mattermost 7.0.x and earlier suffer a Denial of Service due to inadequate control of in-memory sizes for concurrently uploaded JPEG images. The issue allows authenticated users to exhaust server resources on certain configurations. Reported across multiple sources (NVD, Red Hat, OSV, CNNVD, PT Se...

6.5CVSS5AI score0.00874EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder