| TVN ID | TVN-202207004 |
|---|---|
| CVE ID | CVE-2022-35220 |
| CVSS | 7.7 (High) CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H |
| Affected Products | Teamplus Pro (Android 、iOS) <= v3.011.6.0.1 |
| Description | Teamplus Pro community discussion function has an ‘allocation of resource without limits or throttling’ vulnerability. A remote attacker with general user privilege posting a thread with large content can cause the receiving client device to allocate too much memory, leading to abnormal termination of this client’s Teamplus Pro application. |
| Solution | Contact tech support from TEAMPLUS. |
| Credit | RayHong (CCoE) |
| Public Date | 2022-07-29 |
:::