Lucene search
K

36 matches found

Cvelist
Cvelist
added 2025/12/10 10:16 p.m.19 views

CVE-2025-67490 Auth0 Next.js SDK has Improper Request Caching Lookup

The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in...

5.4CVSS0.00172EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/04/29 10:53 p.m.25 views

org.keycloak/keycloak-services: JWT Token Cache Exhaustion Leading to Denial of Service (DoS) in Keycloak

A flaw was found in Keycloak. When the configuration uses JWT tokens for authentication, the tokens are cached until expiration. If a client uses JWT tokens with an excessively long expiration time, for example, 24 or 48 hours, the cache can grow indefinitely, leading to an OutOfMemoryError. This...

4.9CVSS5.7AI score0.00654EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/04/15 12:0 a.m.8 views

RHEL 6 : python-keystoneclient (RHSA-2014:0382)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0382 advisory. Python-keystoneclient is a client library and a command line utility for interacting with the OpenStack Identity API. The OpenStack Identity authtoke...

6CVSS5.5AI score0.01101EPSS
Exploits0References4
OSV
OSV
added 2025/03/25 9:32 a.m.4 views

GHSA-2935-2WFM-HHPV Keycloak Denial of Service (DoS) Vulnerability via JWT Token Cache

A flaw was found in Keycloak. When the configuration uses JWT tokens for authentication, the tokens are cached until expiration. If a client uses JWT tokens with an excessively long expiration time, for example, 24 or 48 hours, the cache can grow indefinitely, leading to an OutOfMemoryError. This...

4.9CVSS5.8AI score0.00654EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/03/25 9:32 a.m.10 views

Keycloak Denial of Service (DoS) Vulnerability via JWT Token Cache

A flaw was found in Keycloak. When the configuration uses JWT tokens for authentication, the tokens are cached until expiration. If a client uses JWT tokens with an excessively long expiration time, for example, 24 or 48 hours, the cache can grow indefinitely, leading to an OutOfMemoryError. This...

4.9CVSS6.9AI score0.00654EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2025/03/25 8:20 a.m.33 views

CVE-2025-2559 Org.keycloak/keycloak-services: jwt token cache exhaustion leading to denial of service (dos) in keycloak

A flaw was found in Keycloak. When the configuration uses JWT tokens for authentication, the tokens are cached until expiration. If a client uses JWT tokens with an excessively long expiration time, for example, 24 or 48 hours, the cache can grow indefinitely, leading to an OutOfMemoryError. This...

4.9CVSS0.00654EPSS
Exploits0References6
OSV
OSV
added 2024/07/02 8:15 p.m.4 views

DEBIAN-CVE-2022-30636

httpTokenCacheKey uses path.Base to extract the expected HTTP-01 token value to lookup in the DirCache implementation. On Windows, path.Base acts differently to filepath.Base, since Windows uses a different path separator \ vs. /, allowing a user to provide a relative path, i.e...

7.5CVSS8.7AI score0.00632EPSS
Exploits0References1
Prion
Prion
added 2023/10/18 10:15 p.m.25 views

Design/Logic Flaw

Bunkum is an open-source protocol-agnostic request server for custom game servers. First, a little bit of background. So, in the beginning, Bunkum's AuthenticationService only supported injecting IUsers. However, as Refresh and SoundShapesServer implemented permissions systems support for injecti...

5CVSS5.2AI score0.00449EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/18 12:0 a.m.9 views

PT-2023-29704 · Bunkum · Bunkum

Name of the Vulnerable Software and Affected Versions: Bunkum versions prior to 4.2.1 Description: Bunkum is an open-source protocol-agnostic request server for custom game servers. The AuthenticationService initially supported injecting IUsers, but later added support for injecting ITokens into...

5.3CVSS4.9AI score0.00449EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.5 views

SUSE CVE-2021-43820

Seafile is an open source cloud storage system. A sync token is used in Seafile file syncing protocol to authorize access to library data. To improve performance, the token is cached in memory in seaf-server. Upon receiving a token from sync client or SeaDrive client, the server checks whether th...

7.4CVSS6.5AI score0.00962EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/06/22 12:0 a.m.46 views

PT-2021-19867 · Ory · Ory Oathkeeper

Name of the Vulnerable Software and Affected Versions: ORY Oathkeeper versions prior to v0.38.12-beta.1 Description: The issue arises when a request is made to an endpoint requiring a specific scope, and the access token is granted with that scope, making introspection valid and caching the token...

7.5CVSS7AI score0.01298EPSS
Exploits0References12
Prion
Prion
added 2019/08/14 9:15 p.m.17 views

Privilege escalation

An elevation of privilege vulnerability exists in Azure Active Directory Authentication Library On-Behalf-Of flow, in the way the library caches tokens, aka 'Azure Active Directory Authentication Library Elevation of Privilege Vulnerability'...

6.5CVSS8.8AI score0.03799EPSS
Exploits0References1Affected Software2
RedHat Linux
RedHat Linux
added 2014/04/28 8:6 p.m.30 views

Important: Red Hat Security Advisory: python-keystoneclient security update

Updated python-keystoneclient packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 3.0. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which give...

6CVSS5.8AI score0.01101EPSS
Exploits0References2
OSV
OSV
added 2014/04/23 3:55 p.m.1 views

DEBIAN-CVE-2014-0473

The caching framework in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 reuses a cached CSRF token for all anonymous users, which allows remote attackers to bypass CSRF protections by reading the CSRF cookie for anonymous users...

5CVSS6.5AI score0.0199EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/04/09 5:30 p.m.25 views

Important: Red Hat Security Advisory: python-keystoneclient security update

Updated python-keystoneclient packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which give...

6CVSS5.7AI score0.01101EPSS
Exploits0References2
CVE
CVE
added 2007/03/24 12:0 a.m.91 views

CVE-2007-1652

CVE-2007-1652 involves an OpenID-based vulnerability where remote attackers can force a user to log into an OpenID-enabled site, disclose the user’s personal information to that site, and add the site to the user’s trusted list via a crafted page related to cached tokens. The connected sources co...

7.5CVSS6.3AI score0.01273EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder