GHSA-v42f-hq78-8c5m

Source

https://github.com/advisories/GHSA-v42f-hq78-8c5m

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/11/GHSA-v42f-hq78-8c5m/GHSA-v42f-hq78-8c5m.json

Aliases

CVE-2022-4045

Published

2022-11-23T09:30:24Z

Modified

2023-11-08T04:10:24.015943Z

Details

A denial-of-service vulnerability in the Mattermost allows an authenticated user to crash the server via multiple requests to one of the API endpoints which could fetch a large amount of data.

References

Affected packages

Go / github.com/mattermost/mattermost-server

Package

Name: github.com/mattermost/mattermost-server

Affected ranges

Type: SEMVER
Events: Introduced

0The exact introduced commit is unknown

Fixed

7.1.4

Go / github.com/mattermost/mattermost-server

Package

Name: github.com/mattermost/mattermost-server

Affected ranges

Type: SEMVER
Events: Introduced

7.2.0

Fixed

7.2.1

Go / github.com/mattermost/mattermost-server

Package

Name: github.com/mattermost/mattermost-server

Affected ranges

Type: SEMVER
Events: Introduced

7.3.0

Fixed

7.3.1