4.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.7%
JBoss KeyCloak is vulnerable to soft token deletion via CSRF
[ { "product": "KeyCloak", "vendor": "JBoss", "versions": [ { "status": "affected", "version": "Fixed in version 1.1.0-Alpha1" } ] } ]
access.redhat.com/security/cve/cve-2014-3655
bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3655
snyk.io/vuln/SNYK-JAVA-ORGKEYCLOAK-30138