All 3 CVE vulnerabilities found in Red Hat build of Keycloak 22, with AI-generated Chinese analysis, references, and POCs.
Vendor: Red Hat
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-6291 | Keycloak: redirect_uri validation bypass CWE-601 | 7.1 | High | 2024-01-26 |
| CVE-2023-6927 | Keycloak: open redirect via "form_post.jwt" jarm response mode CWE-601 | 4.6 | Medium | 2023-12-18 |
| CVE-2023-6134 | Keycloak: reflected xss via wildcard in oidc redirect_uri CWE-79 | 4.6 | Medium | 2023-12-14 |
All 3 known CVE vulnerabilities affecting Red Hat build of Keycloak 22 with full Chinese analysis, references, and POCs where available.