Описание
A flaw was found in Keycloak. Certain endpoints in Keycloak's admin REST API allow low-privilege users to access administrative functionalities. This flaw allows users to perform actions reserved for administrators, potentially leading to data breaches or system compromise.
Ссылки
EPSS
8.1 High
CVSS3
Дефекты
Связанные уязвимости
A flaw was found in Keycloak. Certain endpoints in Keycloak's admin REST API allow low-privilege users to access administrative functionalities. This flaw allows users to perform actions reserved for administrators, potentially leading to data breaches or system compromise.
A flaw was found in Keycloak. Certain endpoints in Keycloak's admin RE ...
Keycloak's admin API allows low privilege users to use administrative functions
Уязвимость прикладного программного интерфейса программного средства для управления идентификацией и доступом Keycloak, позволяющая нарушителю повысить свои привилегии
EPSS
8.1 High
CVSS3