CVE-2021-3461

Опубликовано: 01 апр. 2022

Источник: debian

EPSS Низкий

Описание

A flaw was found in keycloak where keycloak may fail to logout user session if the logout request comes from external SAML identity provider and Principal Type is set to Attribute [Name].

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
keycloak	itp			package

EPSS

Процентиль: 16%

0.00052

Низкий

Связанные уязвимости

CVE-2021-3461

CVSS3: 7.1

redhat

почти 5 лет назад

A flaw was found in keycloak where keycloak may fail to logout user session if the logout request comes from external SAML identity provider and Principal Type is set to Attribute [Name].

CVE-2021-3461

CVSS3: 7.1

nvd

почти 4 года назад

A flaw was found in keycloak where keycloak may fail to logout user session if the logout request comes from external SAML identity provider and Principal Type is set to Attribute [Name].

GHSA-cm29-6wx7-p874

CVSS3: 7.1

github

почти 4 года назад

Keycloak insufficient session expiration

EPSS

Процентиль: 16%

0.00052

Низкий