cbcvebase.
CVE-2022-4045
published 2022-11-23

CVE-2022-4045: A denial-of-service vulnerability in the Mattermost allows an authenticated user to crash the server via multiple requests to one of the API endpoints which…

PriorityP430medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
EPSS
0.60%
44.2th percentile
A denial-of-service vulnerability in the Mattermost allows an authenticated user to crash the server via multiple requests to one of the API endpoints which could fetch a large amount of data.

Affected

4 ranges
VendorProductVersion rangeFixed in
github.commattermost_mattermost-server>= 0 < 7.1.47.1.4
github.commattermost_mattermost-server>= 7.2.0 < 7.2.17.2.1
github.commattermost_mattermost-server>= 7.3.0 < 7.3.17.3.1
mattermostmattermost< 7.3.*7.3.*
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.