Server-Side Request Forgery (SSRF)

Keycloak is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to insufficient validation of client-configured backchannel notification endpoints in the CIBA feature, allowing attackers to trigger blind server-side requests to internal services or protected network resources...

GHSA-FWHW-CHW4-GH37 Keycloak Server-Side Request Forgery (SSRF) vulnerability

A flaw was found in Keycloak’s CIBA feature where insufficient validation of client-configured backchannel notification endpoints could allow blind server-side requests to internal services...