CVE-2022-1982
published 2022-06-02CVE-2022-1982: Uncontrolled resource consumption in Mattermost version 6.6.0 and earlier allows an authenticated attacker to crash the server via a crafted SVG attachment on…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
Uncontrolled resource consumption in Mattermost version 6.6.0 and earlier allows an authenticated attacker to crash the server via a crafted SVG attachment on a post.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | mattermost_mattermost-server | >= 5.0.0 < 6.3.8 | 6.3.8 |
| github.com | mattermost_mattermost-server | >= 6.4.0 < 6.4.3 | 6.4.3 |
| github.com | mattermost_mattermost-server | >= 6.5.0 < 6.5.1 | 6.5.1 |
| github.com | mattermost_mattermost-server | >= 6.6.0 < 6.6.1 | 6.6.1 |
| mattermost | mattermost | — | — |
| mattermost | mattermost | — | — |
| mattermost | mattermost | 5.x – 5.39 | — |
| mattermost | mattermost | 6.4.x – 6.4.2 | — |
| mattermost | mattermost | 6.x – 6.3.7 | — |
| mattermost | mattermost_server | — | — |
| mattermost | mattermost_server | — | — |
| mattermost | mattermost_server | >= 5.0.0 < 6.3.8 | 6.3.8 |
| mattermost | mattermost_server | >= 6.4.0 < 6.4.3 | 6.4.3 |