Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2021-3637

Опубликовано: 14 дек. 2020
Источник: redhat
CVSS3: 7.5
EPSS Низкий

Описание

A flaw was found in keycloak-model-infinispan in keycloak versions before 14.0.0 where authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly which could lead to a DoS attack.

A flaw was found in keycloak-model-infinispan where the authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly. This issue leads to a denial of service.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-770
https://bugzilla.redhat.com/show_bug.cgi?id=1979638keycloak-model-infinispan: authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly could lead to a DoS attack

EPSS

Процентиль: 64%
0.00468
Низкий

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2021-3637

CVSS3: 7.5
nvd
больше 4 лет назад

A flaw was found in keycloak-model-infinispan in keycloak versions before 14.0.0 where authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly which could lead to a DoS attack.

debian логотип

CVE-2021-3637

CVSS3: 7.5
debian
больше 4 лет назад

A flaw was found in keycloak-model-infinispan in keycloak versions bef ...

github логотип

GHSA-2vp8-jv5v-6qh6

CVSS3: 7.5
github
больше 4 лет назад

Allocation of resources without limits or throttling in keycloak-model-infinispan

EPSS

Процентиль: 64%
0.00468
Низкий

7.5 High

CVSS3