Teamplus Pro Community Discussion Function Memory Allocation Vulnerability

Teamplus Pro Community Discussion Function Memory Allocation Vulnerability

CVE-2022-35220 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Teamplus Pro community discussion function has an ‘allocation of resource without limits or throttling’ vulnerability. A remote attacker with general user privilege posting a thread with large content can cause the receiving client device to allocate too much memory, leading to abnormal termination of this client’s Teamplus Pro application.

Learn more about our User Device Pen Test.