Lucene search
K

68 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-3346

Malicious code in bioql PyPI...

7.2CVSS6.1AI score0.01283EPSS
Exploits0References5
NVD
NVD
added 2020/05/08 2:15 p.m.34 views

CVE-2019-10169

A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running...

7.2CVSS6.7AI score0.01283EPSS
Exploits0References1
OSV
OSV
added 2020/05/08 2:15 p.m.30 views

CVE-2019-10169

A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running...

7.2CVSS7.2AI score0.01283EPSS
Exploits0References1
Prion
Prion
added 2020/05/08 2:15 p.m.24 views

Design/Logic Flaw

A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running...

6.5CVSS7.1AI score0.01283EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/05/08 1:47 p.m.36 views

CVE-2019-10169

A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running...

6.6CVSS7AI score0.01283EPSS
Exploits0References1
CVE
CVE
added 2020/05/08 1:47 p.m.134 views

CVE-2019-10169

Keycloak UMA policy abuse (CVE-2019-10169) enables an authenticated attacker with UMA permissions to set a malicious script in the user-managed access policy, triggering execution of code with the permissions of the running application user. The core issue is a script in UMA policy configuration ...

7.2CVSS7AI score0.01283EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2020/04/30 7:40 p.m.35 views

CVE-2019-10169

A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running...

6.5CVSS3.6AI score0.01283EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2019/10/14 6:59 p.m.5 views

keycloak: script execution via UMA policy trigger

A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running...

7.2CVSS6.1AI score0.01283EPSS
Exploits0References4
Rows per page
Query Builder