A flaw was found in Keycloak Gatekeeper (Louketo). The logout endpoint can be abused to redirect logged-in users to arbitrary web pages. Affected versions of Keycloak Gatekeeper (Louketo): 6.0.1, 7.0.0
CPE | Name | Operator | Version |
---|---|---|---|
keycloak_gatekeeper | eq | 6.0.1 | |
keycloak_gatekeeper | eq | 7.0.0 | |
mobile_application_platform | eq | 4.0 |