{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "5.0.0" }, { "fixed": "5.37.8" }, { "introduced": "6.0.0" }, { "fixed": "6.1.3" }, { "introduced": "6.2.0" }, { "fixed": "6.2.3" }, { "introduced": "6.3.0" }, { "fixed": "6.3.3" } ] }, "events": [ { "introduced": "85a75526c7c03fca1d14a39cfb3f2638d98d3fe1" }, { "fixed": "7869cff72dda8eadbf0fc707d214fda071a2ed7e" }, { "introduced": "c9b959e58a660fbc928dd91b062d7bcbb5657017" }, { "fixed": "35c5010df1802887ce589b215a2777f71556fc16" }, { "introduced": "7dcc03f1a215faaa5ded6592fb06420a8d87f439" }, { "fixed": "1742d1790f2383a1f10634cd0c595bae2a0e87be" }, { "introduced": "f5a7bfe1ad29be0094ea657f8ccfbe79a11f7430" }, { "fixed": "a141e82d934524070a98161414092d8b74e26aa1" } ], "repo": "https://github.com/mattermost/mattermost-server", "type": "GIT" } ] } ], "details": "A stack overflow bug in the document extractor in Mattermost Server in versions up to and including 6.3.2 allows an attacker to crash the server via submitting a maliciously crafted Apple Pages document.", "id": "CVE-2022-0904", "modified": "2026-03-13T21:48:14.010403324Z", "published": "2022-03-10T17:45:00.833Z", "references": [ { "type": "ADVISORY", "url": "https://mattermost.com/security-updates/" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ] }