5 matches found
CVE-2022-3257
Mattermost version 7.1.x and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service...
Mattermost Server 7.1.0 DoS (MMSA-2022-00115)
The version of Mattermost Server running on the remote host is 7.1.0. It is, therefore, affected by a denial of service DoS vulnerability. An authenticated, remote attacker can upload a specially crafted GIF file when creating a post which causes resource exhaustion on the host. Note that Nessus...
CVE-2022-3257 Server-side Denial of Service while processing a specifically crafted GIF file
Mattermost version 7.1.x and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service...
CVE-2022-3257 Server-side Denial of Service while processing a specifically crafted GIF file
Mattermost version 7.1.x and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service...
CVE-2022-3257
Mattermost 7.1.x and earlier is affected by a Denial of Service vulnerability when uploading a specifically crafted GIF during post drafting. The issue arises from insufficient processing of the GIF, allowing an authenticated user to cause resource exhaustion on the server (availability impact). ...