CVE-2020-1717
2.7LOWA flaw was found in Keycloak 7.0.1. A logged in user can do an account email enumeration attack.
Опубликовано: 2/11/2021Обновлено: 11/21/2024
Описание
A flaw was found in Keycloak 7.0.1. A logged in user can do an account email enumeration attack.
ИИ-АнализНа базе ИИ
Затронутые продукты
redhatkeycloak
7.0.1
redhatjboss_fuse
7.0.0
redhatopenshift_application_runtimes
-
redhatsingle_sign-on
7.0
Ссылки
- https://bugzilla.redhat.com/show_bug.cgi?id=1796281Issue TrackingVendor Advisory
- https://issues.jboss.org/browse/KEYCLOAK-12014Issue TrackingPermissions RequiredVendor Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1796281Issue TrackingVendor Advisory
- https://issues.jboss.org/browse/KEYCLOAK-12014Issue TrackingPermissions RequiredVendor Advisory