CVE-2022-31122

Name of the Vulnerable Software and Affected Versions Wire versions prior to 2022-07-12/Chart 4.19.0

Description The issue allows an attacker to delete all SAML authenticated accounts of a targeted team, authenticate as a user of the attacked team, and create arbitrary accounts in the context of the team if it is not managed by SCIM. This can be achieved if the attacker has certain details of SAML IdP metadata and configures their own SAML on the same backend.

Recommendations For versions prior to 2022-07-12/Chart 4.19.0, update to version 2022-07-12/Chart 4.19.0 to resolve the issue. As a temporary workaround, consider disabling SAML configuration for teams by setting galley.config.settings.featureFlags.sso to false, which can reduce the risk of an attack. Note that the ability to configure SAML SSO as a team is disabled by default for on-premise installations.