CVE-2022-1333
A specifically drafted Playbook could trigger large amount of webhook requests leading to Denial of Service
Mattermost Playbooks plugin v1.24.0 and earlier fails to properly check the limit on the number of webhooks, which allows authenticated and authorized users to create a specifically drafted Playbook which could trigger a large amount of webhook requests leading to Denial of Service.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
Produtos afetados
Mattermost · Mattermost PlaybooksQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://mattermost.com/security-updates/