Описание
Improper Authentication for Keycloak
A flaw was found in the reset credential flow in all Keycloak versions before 8.0.0. This flaw allows an attacker to gain unauthorized access to the application.
Пакеты
Наименование
org.keycloak:keycloak-parent
maven
Затронутые версииВерсия исправления
< 8.0.0
8.0.0
Связанные уязвимости
CVSS3: 8.8
redhat
больше 5 лет назад
A flaw was found in the reset credential flow in all Keycloak versions before 8.0.0. This flaw allows an attacker to gain unauthorized access to the application.
CVSS3: 7.1
nvd
больше 5 лет назад
A flaw was found in the reset credential flow in all Keycloak versions before 8.0.0. This flaw allows an attacker to gain unauthorized access to the application.
CVSS3: 7.1
debian
больше 5 лет назад
A flaw was found in the reset credential flow in all Keycloak versions ...