CVE-2020-14359
CVE-2020-14359 affects all versions of Keycloak Gatekeeper. The vulnerability allows bypass of Gatekeeper authentication when lowercase HTTP headers are used (e.g., via curl), a scenario tolerated by some webservers like Jetty. Impacted component: Gatekeeper in front of a Jetty backend can fail t...