VYPR
Unrated severityNVD Advisory· Published Jul 11, 2022· Updated Dec 6, 2024

Incorrect defaults can cause attackers to bypass rate limitations

CVE-2022-2366

Description

Incorrect default configuration for trusted IP header in Mattermost version 6.7.0 and earlier allows attacker to bypass some of the rate limitations in place or use manipulated IPs for audit logging via manipulating the request headers.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.