2 matches found
CVE-2017-7474
CVE-2017-7474 affects the Keycloak Node.js adapter (versions 2.5–3.0). The root cause is improper handling of invalid tokens, which could allow an attacker to bypass authentication and access restricted information, or conduct further attacks. Public references describe this as an authentication ...
Important: Red Hat Security Advisory: Red Hat Single Sign-On Node.js adapter security update
An update to the Node.js adapter for Red Hat Single Sign-On 7.1 is now available from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...