Out-of-bounds Write
CVE-2022-0903
Summary
A call stack overflow bug in the SAML login feature in Mattermost server prior to 5.37.8, 6.0.x, 6.1.x prior to 6.1.3, 6.2.x prior to 6.2.3, and 6.3.x prior to 6.3.3, allows an attacker to crash the server via submitting a maliciously crafted POST body.
- LOW
- NETWORK
- NONE
- UNCHANGED
- NONE
- NONE
- NONE
- HIGH
CWE-787 - Out-of-Bounds Write
Out-of-bounds write vulnerability is a memory access bug that allows software to write data past the end or before the beginning of the intended buffer. This may result in the corruption of data, a crash, or arbitrary code execution.
References
Advisory Timeline
- Published