Описание
A flaw was found in Keycloak Admin REST (Representational State Transfer) API. This vulnerability allows information disclosure of sensitive role metadata via insufficient authorization checks on the /admin/realms/{realm}/roles endpoint.
EPSS
Процентиль: 9%
0.00033
Низкий
2.7 Low
CVSS3
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 2.7
debian
около 2 месяцев назад
A flaw was found in Keycloak Admin REST (Representational State Transf ...
CVSS3: 2.7
github
около 2 месяцев назад
Keycloak Admin REST (Representational State Transfer) API does not properly enforce permissions
EPSS
Процентиль: 9%
0.00033
Низкий
2.7 Low
CVSS3
Дефекты
CWE-284