Lucene search
RedhatCVELIST:CVE-2020-10734HistoryFeb 11, 2021 - 3:29 p.m.
CVE-2020-10734
2021-02-1115:29:45
CWE-352
redhat
www.cve.org
6
vulnerability
keycloak
csrf protection
red hat fuse 7
red hat single sign-on 7
red hat openshift application runtimes
oidc logout endpoint
A vulnerability was found in keycloak in the way that the OIDC logout endpoint does not have CSRF protection. Versions shipped with Red Hat Fuse 7, Red Hat Single Sign-on 7, and Red Hat Openshift Application Runtimes are believed to be vulnerable.
CNA Affected
[
{
"product": "keycloak",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "As shipped with Red Hat Fuse 7, Red Hat Single Sign-on 7, and Red Hat Openshift Application Runtimes"
}
]
}
]Related
github
github
OIDC Logout redirect in keycloak
2022-04-28 17:13:58
osv
osv
OIDC Logout redirect in keycloak
2022-04-28 17:13:58
CVE-2020-10734
2021-02-11 18:15:13
veracode
veracode
Cross-site Request Forgery (CSRF)
2022-04-29 09:42:36
redhatcve
redhatcve
CVE-2020-10734
2021-02-10 06:35:21
prion
prion
Cross site request forgery (csrf)
2021-02-11 18:15:00
nvd
nvd
CVE-2020-10734
2021-02-11 18:15:13
cve
cve
CVE-2020-10734
2021-02-11 18:15:13