Vulnerabilities > Glewlwyd SSO Server Project

DATE CVE VULNERABILITY TITLE RISK
2024-02-11 CVE-2024-25715 Open Redirect vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server
Glewlwyd SSO server 2.x through 2.7.6 allows open redirection via redirect_uri.
network
low complexity
glewlwyd-sso-server-project CWE-601
6.1
2023-11-23 CVE-2023-49208 Classic Buffer Overflow vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server
scheme/webauthn.c in Glewlwyd SSO server before 2.7.6 has a possible buffer overflow during FIDO2 credentials validation in webauthn registration.
network
low complexity
glewlwyd-sso-server-project CWE-120
critical
9.8
2022-03-18 CVE-2022-27240 Classic Buffer Overflow vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server
scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer overflow associated with a webauthn assertion.
network
low complexity
glewlwyd-sso-server-project CWE-120
critical
9.8
2021-09-08 CVE-2021-40818 Classic Buffer Overflow vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server
scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.
network
low complexity
glewlwyd-sso-server-project CWE-120
critical
9.8