Skip to main content

Out-of-bounds Write

CVE-2022-0903

Severity High
Score 7.5/10

Summary

A call stack overflow bug in the SAML login feature in Mattermost server prior to 5.37.8, 6.0.x, 6.1.x prior to 6.1.3, 6.2.x prior to 6.2.3, and 6.3.x prior to 6.3.3, allows an attacker to crash the server via submitting a maliciously crafted POST body.

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-787 - Out-of-Bounds Write

Out-of-bounds write vulnerability is a memory access bug that allows software to write data past the end or before the beginning of the intended buffer. This may result in the corruption of data, a crash, or arbitrary code execution.

Advisory Timeline

  • Published