CVE-2022-4044: Denial of service in Mattermost

November 23, 2022

A denial-of-service vulnerability in Mattermost allows an authenticated user to crash the server via multiple large autoresponder messages.

References

github.com/advisories/GHSA-5jph-wrq7-v9hf
hackerone.com/reports/1680241
mattermost.com/security-updates/
nvd.nist.gov/vuln/detail/CVE-2022-4044

Code Behaviors & Features

Detect and mitigate CVE-2022-4044 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →