| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-1023 | Io.vertx/vertx-core: memory leak due to the use of netty fastthreadlocal data structures in vertx | - | - | Medium | 6.5 | 2024-03-27 07:51:16 | Deep Dive |
| CVE-2023-5685 | Xnio: stackoverflowexception when the chain of notifier states becomes problematically big | Red Hat | Red Hat build of Apache Camel 4.4.0 for Spring Boot | High | 7.5 | 2024-03-22 18:24:43 | Deep Dive |
| CVE-2024-1722 | Keycloak-core: dos via account lockout | - | - | Low | 3.7 | 2024-02-27 17:39:13 | Deep Dive |
| CVE-2024-1635 | Undertow: out-of-memory error after several closed connections with wildfly-http-client protocol | - | - | High | 7.5 | 2024-02-19 21:23:14 | Deep Dive |
| CVE-2023-6291 | Keycloak: redirect_uri validation bypass | Red Hat | Red Hat build of Keycloak 22 | High | 7.1 | 2024-01-26 14:23:43 | Deep Dive |
| CVE-2023-6927 | Keycloak: open redirect via "form_post.jwt" jarm response mode | Red Hat | Red Hat build of Keycloak 22 | Medium | 4.6 | 2023-12-18 22:59:07 | Deep Dive |
| CVE-2023-6134 | Keycloak: reflected xss via wildcard in oidc redirect_uri | Red Hat | Red Hat build of Keycloak 22 | Medium | 4.6 | 2023-12-14 21:42:12 | Deep Dive |
| CVE-2023-6563 | Keycloak: offline session token dos | Red Hat | Red Hat Single Sign-On 7.6 for RHEL 7 | High | 7.7 | 2023-12-14 18:01:26 | Deep Dive |
| CVE-2023-4918 | Plaintext storage of user password | - | keycloak | High | 8.8 | 2023-09-12 19:25:00 | Deep Dive |
| CVE-2023-0264 | keycloak 授权问题漏洞 | redhat.com | Keycloak | 中危 | - | 2023-08-04 17:09:28 | Deep Dive |
| CVE-2022-4361 | Red Hat Keycloak 跨站脚本漏洞 | keycloak | keycloak | Critical | 10.0 | 2023-07-07 19:57:45 | Deep Dive |
| CVE-2023-1664 | Red Hat Keycloak 信任管理问题漏洞 | - | Keycloak | 中危 | - | 2023-05-26 00:00:00 | Deep Dive |
| CVE-2023-1477 | HYPR 授权问题漏洞 | HYPR | Keycloak Authenticator Extension | High | 7.2 | 2023-04-28 14:56:02 | Deep Dive |
| CVE-2022-1274 | Keycloak 跨站脚本漏洞 | - | keycloak | 中危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-2237 | Keycloak 输入验证错误漏洞 | - | Keycloak | 中危 | - | 2023-03-27 00:00:00 | Deep Dive |
| CVE-2023-24456 | Jenkins Plugin Keycloak Authentication 授权问题漏洞 | Jenkins Project | Jenkins Keycloak Authentication Plugin | 超危 | - | 2023-01-24 00:00:00 | Deep Dive |
| CVE-2023-24457 | Jenkins Plugin Keycloak Authentication 跨站请求伪造漏洞 | Jenkins Project | Jenkins Keycloak Authentication Plugin | 中危 | - | 2023-01-24 00:00:00 | Deep Dive |
| CVE-2023-0105 | Red Hat Keycloak 授权问题漏洞 | redhat.com | Keycloak | 中危 | - | 2023-01-11 20:46:52 | Deep Dive |
| CVE-2023-0091 | Red Hat Keycloak 安全漏洞 | redhat.com | Keycloak | 低危 | - | 2023-01-11 20:44:08 | Deep Dive |
| CVE-2022-3782 | Red Hat Keycloak 路径遍历漏洞 | redhat.com | Keycloak | 超危 | - | 2023-01-11 16:58:10 | Deep Dive |