Описание
A flaw was found in Keycloak’s CIBA feature where insufficient validation of client-configured backchannel notification endpoints could allow blind server-side requests to internal services.
EPSS
Процентиль: 6%
0.00024
Низкий
2.7 Low
CVSS3
Дефекты
CWE-918
Связанные уязвимости
CVSS3: 2.7
debian
5 дней назад
A flaw was found in Keycloak\u2019s CIBA feature where insufficient va ...
CVSS3: 2.7
github
5 дней назад
Keycloak Server-Side Request Forgery (SSRF) vulnerability
EPSS
Процентиль: 6%
0.00024
Низкий
2.7 Low
CVSS3
Дефекты
CWE-918