Количество 4
Количество 4
CVE-2019-10169
A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running application.
CVE-2019-10169
A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running application.
CVE-2019-10169
A flaw was found in Keycloak\u2019s user-managed access interface, whe ...
GHSA-9c24-43p5-fv82
Keycloak code execution via UMA policy abuse
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-10169 A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running application. | CVSS3: 6.6 | 1% Низкий | почти 6 лет назад |
 | CVE-2019-10169 A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running application. | CVSS3: 6.6 | 1% Низкий | почти 6 лет назад |
| CVE-2019-10169 A flaw was found in Keycloak\u2019s user-managed access interface, whe ... | CVSS3: 6.6 | 1% Низкий | почти 6 лет назад |
| GHSA-9c24-43p5-fv82 Keycloak code execution via UMA policy abuse | CVSS3: 7.2 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу