Количество 5
Количество 5
CVE-2023-0264
A flaw was found in Keycloaks OpenID Connect user authentication, which may incorrectly authenticate requests. An authenticated attacker who could obtain information from a user request within the same realm could use that data to impersonate the victim and generate new session tokens. This issue could impact confidentiality, integrity, and availability.
CVE-2023-0264
A flaw was found in Keycloaks OpenID Connect user authentication, which may incorrectly authenticate requests. An authenticated attacker who could obtain information from a user request within the same realm could use that data to impersonate the victim and generate new session tokens. This issue could impact confidentiality, integrity, and availability.
CVE-2023-0264
A flaw was found in Keycloaks OpenID Connect user authentication, whic ...
GHSA-9g98-5mj6-f9mv
Keycloak vulnerable to user impersonation via stolen UUID code
BDU:2023-02654
Уязвимость службы OpenID Connect Login программного средства для управления идентификацией и доступом Keycloak, позволяющая нарушителю создать новые токены сеанса и оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-0264 A flaw was found in Keycloaks OpenID Connect user authentication, which may incorrectly authenticate requests. An authenticated attacker who could obtain information from a user request within the same realm could use that data to impersonate the victim and generate new session tokens. This issue could impact confidentiality, integrity, and availability. | CVSS3: 4.6 | 4% Низкий | почти 3 года назад |
 | CVE-2023-0264 A flaw was found in Keycloaks OpenID Connect user authentication, which may incorrectly authenticate requests. An authenticated attacker who could obtain information from a user request within the same realm could use that data to impersonate the victim and generate new session tokens. This issue could impact confidentiality, integrity, and availability. | CVSS3: 5 | 4% Низкий | больше 2 лет назад |
| CVE-2023-0264 A flaw was found in Keycloaks OpenID Connect user authentication, whic ... | CVSS3: 5 | 4% Низкий | больше 2 лет назад |
| GHSA-9g98-5mj6-f9mv Keycloak vulnerable to user impersonation via stolen UUID code | CVSS3: 8.7 | 4% Низкий | почти 3 года назад |
 | BDU:2023-02654 Уязвимость службы OpenID Connect Login программного средства для управления идентификацией и доступом Keycloak, позволяющая нарушителю создать новые токены сеанса и оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации | CVSS3: 7.1 | 4% Низкий | почти 3 года назад |
Уязвимостей на страницу