Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glewlwyd project glewlwyd vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-29967
static_compressed_inmemory_website_callback.c in Glewlwyd up to and including 2.6.2 allows directory traversal.
Glewlwyd Project Glewlwyd
8.8
CVSSv3
CVE-2021-45379
Glewlwyd 2.0.0, fixed in 2.6.1 is affected by an incorrect access control vulnerability. One user can attempt to log in as another user without its password.
Glewlwyd Project Glewlwyd
9.8
CVSSv3
CVE-2023-49208
scheme/webauthn.c in Glewlwyd SSO server prior to 2.7.6 has a possible buffer overflow during FIDO2 credentials validation in webauthn registration.
Glewlwyd Sso Server Project Glewlwyd Sso Server
6.1
CVSSv3
CVE-2024-25715
Glewlwyd SSO server 2.x up to and including 2.7.6 allows open redirection via redirect_uri.
Glewlwyd Sso Server Project Glewlwyd Sso Server
9.8
CVSSv3
CVE-2022-27240
scheme/webauthn.c in Glewlwyd SSO server 2.x prior to 2.6.2 has a buffer overflow associated with a webauthn assertion.
Glewlwyd Sso Server Project Glewlwyd Sso Server
9.8
CVSSv3
CVE-2021-40818
scheme/webauthn.c in Glewlwyd SSO server up to and including 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.
Glewlwyd Sso Server Project Glewlwyd Sso Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started