14 matches found
CVE-2024-4540
creationtimestamp| type| source ---|---|--- 2025-08-07 11:56:10+00:00| seen| Telegram/UUFUhIvKiWz9Sc2IfAirBSTxMmqYXEBzhIuOFxzXxu3XVN8...
com.charlyghislain.keycloak:keycloak-importexport (>=21.0.0 <=23.0.1), com.github.vzakharchenko:chillispot-radius-plugin (>=1.4.10 <=1.4.11) +95 more potentially affected by CVE-2024-4540 via org.keycloak:keycloak-services (>=1.0-alpha-1 <=24.0.4)
org.keycloak:keycloak-services MAVEN version =1.0-alpha-1, =21.0.0, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.0.1, =1.1.23, =0.3.0-20.0.1, =0.4.5-20.0.2, =2.7.4-24.0 and more Source cves: CVE-2024-4540 Source advisory: OSV:GHSA-69FP-7C8P-CRJR...
Low: Red Hat Security Advisory: Red Hat build of Keycloak 24.0.5 Images enhancement and security update
New images are available for Red Hat build of Keycloak 24.0.5 and Red Hat build of Keycloak 24.0.5 Operator, running on OpenShift Container Platform Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which give...
Low: Red Hat Security Advisory: Red Hat build of Keycloak 24.0.5 enhancement and security update
An update is now available for Red Hat build of Keycloak. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
Low: Red Hat Security Advisory: Red Hat build of Keycloak 22.0.11 Images enhancement and security update
New images are available for Red Hat build of Keycloak 22.0.11 and Red Hat build of Keycloak 22.0.11 Operator, running on OpenShift Container Platform Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which...
Low: Red Hat Security Advisory: Red Hat build of Keycloak 22.0.11 enhancement and security update
New Red Hat build of Keycloak 22.0.11 packages are available from the Customer Portal Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...
Low: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 for OpenShift image enhancement update
A new image is available for Red Hat Single Sign-On 7.6.9, running on OpenShift Container Platform 3.10 and 3.11, and 4.3. Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System CVSS base score,...
Low: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 7
New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Low: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 8
New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Low: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 9
New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
CVE-2024-4540
CVE-2024-4540 affects Keycloak deployments using OAuth 2.0 Pushed Authorization Requests (PAR). The vulnerability is that client-provided parameters can be exposed in plain text in the KC_RESTART cookie returned in the HTTP response to a request_uri-based authorization request, enabling informati...
RHEL 9 : Red Hat Single Sign-On 7.6.9 security update on RHEL 9 (Low) (RHSA-2024:3568)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3568 advisory. Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on...
RHEL 7 : Red Hat Single Sign-On 7.6.9 security update on RHEL 7 (Low) (RHSA-2024:3566)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3566 advisory. Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on...
RHEL 8 : Red Hat Single Sign-On 7.6.9 security update on RHEL 8 (Low) (RHSA-2024:3567)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3567 advisory. Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on...