BIT-mattermost-2022-1982

Import Source

https://github.com/bitnami/vulndb/tree/main/data/mattermost/BIT-mattermost-2022-1982.json

Aliases

CVE-2022-1982
GHSA-gwpf-95jc-63rv

Published

2024-03-06T11:03:45.686Z

Modified

2024-03-06T11:25:28.861Z

Details

Uncontrolled resource consumption in Mattermost version 6.6.0 and earlier allows an authenticated attacker to crash the server via a crafted SVG attachment on a post.

References

https://mattermost.com/security-updates/

Affected packages

Bitnami / mattermost

Package

Name: mattermost

Affected ranges

Type: SEMVER
Events: Introduced

5.0.0

Fixed

6.3.8

Introduced

6.4.0

Fixed

6.4.3

Type: SEMVER
Events: Introduced

6.5.0

Last affected

6.5.0

Introduced

6.6.0

Last affected

6.6.0