exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2021-20195

почти 5 лет назад

A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete account takeover is possible due to user-supplied data fields not being properly encoded and Javascript code being used to process the data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS3: 8.3

EPSS: Низкий

CVE-2021-20195

больше 4 лет назад

A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete account takeover is possible due to user-supplied data fields not being properly encoded and Javascript code being used to process the data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS3: 9.6

EPSS: Низкий

CVE-2021-20195

больше 4 лет назад

A flaw was found in keycloak in versions before 13.0.0. A Self Stored ...

CVSS3: 9.6

EPSS: Низкий

GHSA-q6w2-89hq-hq27

больше 4 лет назад

keycloak Self Stored Cross-site Scripting vulnerability

CVSS3: 9.6

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2021-20195 A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete account takeover is possible due to user-supplied data fields not being properly encoded and Javascript code being used to process the data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.	CVSS3: 8.3	0% Низкий	почти 5 лет назад
CVE-2021-20195 A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete account takeover is possible due to user-supplied data fields not being properly encoded and Javascript code being used to process the data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.	CVSS3: 9.6	0% Низкий	больше 4 лет назад
CVE-2021-20195 A flaw was found in keycloak in versions before 13.0.0. A Self Stored ...	CVSS3: 9.6	0% Низкий	больше 4 лет назад
GHSA-q6w2-89hq-hq27 keycloak Self Stored Cross-site Scripting vulnerability	CVSS3: 9.6	0% Низкий	больше 4 лет назад

Уязвимостей на страницу