First published: Fri Mar 18 2022(Updated: )
scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer overflow associated with a webauthn assertion.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Glewlwyd Sso Server Project Glewlwyd Sso Server | >=2.0.0<2.6.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2022-27240.
CVE-2022-27240 has a severity rating of critical (9.8).
The affected software for CVE-2022-27240 is Glewlwyd SSO server 2.x before 2.6.2.
The CWE ID associated with CVE-2022-27240 is CWE-119 and CWE-120.
To fix CVE-2022-27240, upgrade Glewlwyd SSO server to version 2.6.2 or newer.