Lucene search
RedHatRHSA-2024:3575HistoryJun 03, 2024 - 9:24 p.m.
(RHSA-2024:3575) Low: Red Hat build of Keycloak 24.0.5 enhancement and security update
2024-06-0321:24:38
access.redhat.com
6
red hat
keycloak
security update
par
sensitive information
cve-2024-4540
Red Hat build of Keycloak 24.0.5 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
Security Fix(es):
- exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Related
nvd
nvd
CVE-2024-4540
2024-06-03 16:15:08
nessus
nessus
cve
cve
CVE-2024-4540
2024-06-03 16:15:08
redhat
redhat
(RHSA-2024:3567) Low: Red Hat Single Sign-On 7.6.9 security update on RHEL 8
2024-06-03 19:44:20
(RHSA-2024:3568) Low: Red Hat Single Sign-On 7.6.9 security update on RHEL 9
2024-06-03 19:44:23
(RHSA-2024:3566) Low: Red Hat Single Sign-On 7.6.9 security update on RHEL 7
2024-06-03 19:44:17
veracode
veracode
Sensitive Information Disclosure
2024-06-06 06:38:41
cvelist
cvelist
redhatcve
redhatcve
CVE-2024-4540
2024-06-03 15:33:10
vulnrichment
vulnrichment