Количество 3
Количество 3
CVE-2022-1970
[REJECTED CVE] An open redirection vulnerability (open redirect) exists in keycloak auth endpoint. URL can be mentioned as the value of redirect_uri query parameter and it successfully redirects to it.
CVE-2022-1970
Rejected reason: The originally reported issue in https://github.com/syedsohaibkarim/OpenRedirect-Keycloak18.0.0 is a known misconfiguration, and recommendation already exists in the Keycloak documentation to mitigate the issue: https://www.keycloak.org/docs/latest/server_admin/index.html#open-redirectors.
GHSA-6pg8-6hpp-xm9w
keycloak 18.0.0: open redirect in auth endpoint via the redirect_uri parameter.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-1970 [REJECTED CVE] An open redirection vulnerability (open redirect) exists in keycloak auth endpoint. URL can be mentioned as the value of redirect_uri query parameter and it successfully redirects to it. | больше 3 лет назад | ||
 | CVE-2022-1970 Rejected reason: The originally reported issue in https://github.com/syedsohaibkarim/OpenRedirect-Keycloak18.0.0 is a known misconfiguration, and recommendation already exists in the Keycloak documentation to mitigate the issue: https://www.keycloak.org/docs/latest/server_admin/index.html#open-redirectors. | больше 3 лет назад | ||
| GHSA-6pg8-6hpp-xm9w keycloak 18.0.0: open redirect in auth endpoint via the redirect_uri parameter. | CVSS3: 6.1 | почти 3 года назад |
Уязвимостей на страницу