The version of Mattermost Server running on the remote host is prior to 7.4.0. It is, therefore, affected by a denial of service (DoS) vulnerability. An authenticated, remote attacker can crash the server via multiple requests to one of the API endpoints which could fetch a large amount of data.

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.Read More