CVE-2022-2406

The legacy Slack import feature in Mattermost version 6.7.0 and earlier fails to properly limit the sizes of imported files, which allows an authenticated attacker to crash the server by importing large files via the Slack import REST API.

CVSS v3 6.5 MEDIUM
CVSS v2.0 4.0 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://mattermost.com/security-updates/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mattermost:mattermost::::::::
	cpe:2.3:a:mattermost:mattermost::::::::
	cpe:2.3:a:mattermost:mattermost:6.6.0:::::::*
	cpe:2.3:a:mattermost:mattermost:6.6.1:::::::*
	cpe:2.3:a:mattermost:mattermost:6.7.0:::::::*

History

30 Jun 2023, 18:49

Type	Values Removed	Values Added
CWE	~~CWE-400~~	CWE-770

25 Jul 2022, 18:08

Type	Values Removed	Values Added
CPE		cpe:2.3:a:mattermost:mattermost:6.6.1:::::::* cpe:2.3:a:mattermost:mattermost:::::::: cpe:2.3:a:mattermost:mattermost:6.7.0:::::::* cpe:2.3:a:mattermost:mattermost:6.6.0:::::::*
First Time		Mattermost mattermost Mattermost
CWE		CWE-400
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 4.0 v3 : 6.5
References	~~(MISC) https://mattermost.com/security-updates/ -~~	(MISC) https://mattermost.com/security-updates/ - Vendor Advisory

14 Jul 2022, 18:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-07-14 18:15

Updated : 2023-12-10 14:35

NVD link : CVE-2022-2406

Mitre link : CVE-2022-2406

CVE.ORG link : CVE-2022-2406

JSON object : View

Products Affected

mattermost

mattermost

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

CWE-400

Uncontrolled Resource Consumption

{"id": "CVE-2022-2406", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "responsibledisclosure@mattermost.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2022-07-14T18:15:08.367", "references": [{"url": "https://mattermost.com/security-updates/", "tags": ["Vendor Advisory"], "source": "responsibledisclosure@mattermost.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-770"}]}, {"type": "Secondary", "source": "responsibledisclosure@mattermost.com", "description": [{"lang": "en", "value": "CWE-400"}]}], "descriptions": [{"lang": "en", "value": "The legacy Slack import feature in Mattermost version 6.7.0 and earlier fails to properly limit the sizes of imported files, which allows an authenticated attacker to crash the server by importing large files via the Slack import REST API."}, {"lang": "es", "value": "La funci\u00f3n de importaci\u00f3n de Slack heredada en Mattermost versiones 6.7.0 y anteriores, no limita apropiadamente el tama\u00f1o de los archivos importados, lo que permite a un atacante autenticado bloquear el servidor importando archivos grandes por medio de la API REST de importaci\u00f3n de Slack"}], "lastModified": "2023-06-30T18:49:51.597", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mattermost:mattermost:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96B6BD54-39E8-46D0-9CF5-952C104881AA", "versionEndIncluding": "6.3.8"}, {"criteria": "cpe:2.3:a:mattermost:mattermost:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54574FF7-8E64-4C4A-855D-716CB79C1B81", "versionEndIncluding": "6.5.1", "versionStartIncluding": "6.4.0"}, {"criteria": "cpe:2.3:a:mattermost:mattermost:6.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6DB27A25-5C62-4DEF-8CE5-BFD0605D60F3"}, {"criteria": "cpe:2.3:a:mattermost:mattermost:6.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3CCC890-55C7-40B8-9FF8-F80811BD60A4"}, {"criteria": "cpe:2.3:a:mattermost:mattermost:6.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E7308C7-2774-49E3-8136-EF304DBDB110"}], "operator": "OR"}]}], "sourceIdentifier": "responsibledisclosure@mattermost.com"}