Security Advisory

CVE-2022-1337

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-13 17:06:00

Last updated 2024-12-06 23:10:06

Assigner Mattermost

State PUBLISHED

Description

The image proxy component in Mattermost version 6.4.1 and earlier allocates memory for multiple copies of a proxied image, which allows an authenticated attacker to crash the server via links to very large image files.

← Browse all CVEs View on cve.org ↗