Описание
Allocation of Resources Without Limits or Throttling in Keycloak
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value that exceeds the actual byte count of the request body.
Пакеты
org.keycloak:keycloak-parent
< 11.0.1
11.0.1
Связанные уязвимости
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value that exceeds the actual byte count of the request body.
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value that exceeds the actual byte count of the request body.
A vulnerability was found in Keycloak before 11.0.1 where DoS attack i ...
Уязвимость программного средства для управления идентификацией и доступом Keycloak, связанная с выделением неограниченной памяти, позволяющая нарушителю вызвать отказ в обслуживании