Unrated severityNVD Advisory· Published Jul 11, 2022· Updated Dec 6, 2024
Incorrect defaults can cause attackers to bypass rate limitations
CVE-2022-2366
Description
Incorrect default configuration for trusted IP header in Mattermost version 6.7.0 and earlier allows attacker to bypass some of the rate limitations in place or use manipulated IPs for audit logging via manipulating the request headers.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<=6.7.0+ 1 more
- (no CPE)range: <=6.7.0
- (no CPE)range: 6.7.x 6.7.0
Patches
Vulnerability mechanics
References
1- mattermost.com/security-updates/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.