Lucene search
+L

4 matches found

nvd
nvd
added 2020/09/16 7:15 p.m.16 views

CVE-2020-1694

A flaw was found in all versions of Keycloak before 10.0.0, where the NodeJS adapter did not support the verify-token-audience. This flaw results in some users having access to sensitive information outside of their permissions...

4.9CVSS0.01641EPSS
Exploits0References1
cvelist
cvelist
added 2020/09/16 6:3 p.m.21 views

CVE-2020-1694

A flaw was found in all versions of Keycloak before 10.0.0, where the NodeJS adapter did not support the verify-token-audience. This flaw results in some users having access to sensitive information outside of their permissions...

4.7AI score0.01641EPSS
Exploits0References1
cve
cve
added 2020/09/16 6:3 p.m.129 views

CVE-2020-1694

Summary: CVE-2020-1694 affects Keycloak before 10.0.0 where the NodeJS adapter did not support verify-token-audience, enabling some users to access sensitive information outside their permissions. What’s affected: Keycloak (and Red Hat SSO built on Keycloak) with the NodeJS adapter lacking verify...

4.9CVSS4.6AI score0.01641EPSS
Exploits0References1Affected Software1
redhat
redhat
added 2020/07/02 1:21 p.m.90 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.4.1 security update

A security update is now available for Red Hat Single Sign-On 7.4 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.4AI score0.99019EPSS
Exploits16References13
Rows per page
Query Builder