Vulnerabilities > Glewlwyd SSO Server Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-11 | CVE-2024-25715 | Open Redirect vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server Glewlwyd SSO server 2.x through 2.7.6 allows open redirection via redirect_uri. | 6.1 |
2023-11-23 | CVE-2023-49208 | Classic Buffer Overflow vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server scheme/webauthn.c in Glewlwyd SSO server before 2.7.6 has a possible buffer overflow during FIDO2 credentials validation in webauthn registration. | 9.8 |
2022-03-18 | CVE-2022-27240 | Classic Buffer Overflow vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer overflow associated with a webauthn assertion. | 9.8 |
2021-09-08 | CVE-2021-40818 | Classic Buffer Overflow vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration. | 9.8 |