Unrated severityNVD Advisory· Published Sep 9, 2022· Updated Dec 6, 2024
Server-side Denial of Service while processing a specifically crafted JPEG file
CVE-2022-3147
Description
Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of concurrently uploaded JPEG images, which allows authenticated users to cause resource exhaustion on specific system configurations, resulting in server-side Denial of Service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<=7.0.x+ 1 more
- (no CPE)range: <=7.0.x
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
2- hackerone.com/reports/1549513mitrex_refsource_MISC
- mattermost.com/security-updates/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.