CVE-2021-37865 - CERT CVE
ID CVE-2021-37865
Sažetak Mattermost 6.2 and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service.
Reference
CVSS
Base: 3.5
Impact: 2.9
Exploitability:6.8
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE PARTIAL
CVSS vektor AV:N/AC:M/Au:S/C:N/I:N/A:P
Zadnje važnije ažuriranje 24-01-2022 - 17:58
Objavljeno 18-01-2022 - 17:15