Mediawiki · Mediawiki · CVE-2022-28205
**Name of the Vulnerable Software and Affected Versions**
MediaWiki versions through 1.37.1
**Description**
An issue was discovered in the CentralAuth extension, which mishandles a ttl issue for groups expiring in the future.
**Recommendations**
For MediaWiki versions through 1.37.1, update to a version that addresses the CentralAuth extension's mishandling of ttl issues for groups expiring in the future.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.