Unrated severityNVD Advisory· Published Jan 18, 2022· Updated Dec 6, 2024
Server-side Denial of Service while processing a specifically crafted GIF file
CVE-2021-37865
Description
Mattermost 6.2 and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=6.2+ 1 more
- (no CPE)range: <=6.2
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
2- hackerone.com/reports/1428260mitrex_refsource_MISC
- mattermost.com/security-updates/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.