CVE-2022-4361
CVSS v3.1
6.1 (Medium)
EPSS
0.05 % (22th)
Affected Products
6
Advisories
1
Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC providers. The vulnerability can allow an attacker to execute malicious scripts by setting the AssertionConsumerServiceURL value or the redirect_uri.
Weaknesses
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2023-07-07 20:15:09
(14 months ago) - Updated Date
-
2023-07-17 17:50:07
(14 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
AND |
|
---|
Configuration #2
AND |
|
---|
Configuration #3
AND |
|
---|
Configuration #4
AND |
|
---|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...