CVE-2022-28205

Description

An issue was discovered in MediaWiki through 1.37.1. The CentralAuth extension mishandles a ttl issue for groups expiring in the future.

Affected packages (1)

• Bitnami/mediawikifrom 0, < 1.37.2

CVSS scores

References (4)

• WEBhttps://gerrit.wikimedia.org/r/q/Ic6ba1a37b78df5b342ceeba4c1493dbde583b81f
• WEBhttps://nvd.nist.gov/vuln/detail/CVE-2022-28205
• WEBhttps://phabricator.wikimedia.org/T302248
• WEBhttps://security.gentoo.org/glsa/202305-24