Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-3424

Опубликовано: 01 июн. 2021
Источник: debian

Описание

A flaw was found in keycloak as shipped in Red Hat Single Sign-On 7.4 where IDN homograph attacks are possible. A malicious user can register himself with a name already registered and trick admin to grant him extra privileges.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
keycloakitppackage

Связанные уязвимости

redhat логотип

CVE-2021-3424

CVSS3: 5.3
redhat
почти 5 лет назад

A flaw was found in keycloak as shipped in Red Hat Single Sign-On 7.4 where IDN homograph attacks are possible. A malicious user can register himself with a name already registered and trick admin to grant him extra privileges.

nvd логотип

CVE-2021-3424

CVSS3: 5.3
nvd
больше 4 лет назад

A flaw was found in keycloak as shipped in Red Hat Single Sign-On 7.4 where IDN homograph attacks are possible. A malicious user can register himself with a name already registered and trick admin to grant him extra privileges.

github логотип

GHSA-pf38-cw3p-22q9

CVSS3: 5.3
github
почти 4 года назад

Keycloak is vulnerable to IDN homograph attack