4 matches found
CVE-2022-3147 Server-side Denial of Service while processing a specifically crafted JPEG file
Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of concurrently uploaded JPEG images, which allows authenticated users to cause resource exhaustion on specific system configurations, resulting in server-side Denial of Service...
CVE-2022-3147 Server-side Denial of Service while processing a specifically crafted JPEG file
Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of concurrently uploaded JPEG images, which allows authenticated users to cause resource exhaustion on specific system configurations, resulting in server-side Denial of Service...
CVE-2022-3147 Server-side Denial of Service while processing a specifically crafted JPEG file
Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of concurrently uploaded JPEG images, which allows authenticated users to cause resource exhaustion on specific system configurations, resulting in server-side Denial of Service...
CVE-2022-3147
Mattermost 7.0.x and earlier suffer a Denial of Service due to inadequate control of in-memory sizes for concurrently uploaded JPEG images. The issue allows authenticated users to exhaust server resources on certain configurations. Reported across multiple sources (NVD, Red Hat, OSV, CNNVD, PT Se...