Описание
Mattermost fails to limit the amount of data extracted from compressed archives during board import in Mattermost Boards allowing an attacker to consume excessive resources, possibly leading to Denial of Service, by importing a board using a specially crafted zip (zip bomb).
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| mattermost-server | itp | package |
EPSS
Процентиль: 26%
0.00087
Низкий
Связанные уязвимости
CVSS3: 4.3
nvd
больше 1 года назад
Mattermost fails to limit the amount of data extracted from compressed archives during board import in Mattermost Boards allowing an attacker to consume excessive resources, possibly leading to Denial of Service, by importing a board using a specially crafted zip (zip bomb).
CVSS3: 4.3
github
больше 1 года назад
Mattermost Uncontrolled Resource Consumption vulnerability
EPSS
Процентиль: 26%
0.00087
Низкий