Vulnerability Details CVE-2022-27240
scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer overflow associated with a webauthn assertion.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2022-27240
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.0.0
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.1.0
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.1.1
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.2.0
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.3.0
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.3.1
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.3.2
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.3.3
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.4.0
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.5.0
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.5.1
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.5.2
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.5.3
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.5.4
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.6.0
-
cpe:2.3:a:glewlwyd_sso_server_project:glewlwyd_sso_server:2.6.1