Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.61 views

RHEL 7 : Red Hat Single Sign-On 7.5.3 security update on RHEL 7 (Moderate) (RHSA-2022:6782)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6782 advisory. Red Hat Single Sign-On 7.5 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single...

10CVSS7.4AI score0.63211EPSS
Exploits5References19
RedHat Linux
RedHat Linux
added 2022/10/04 4:2 p.m.117 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.5.3 security update on RHEL 7

New Red Hat Single Sign-On 7.5.3 packages are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.2AI score0.63211EPSS
Exploits5References9
RedHat Linux
RedHat Linux
added 2022/10/04 3:53 p.m.73 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.5.3 security update

A security update is now available for Red Hat Single Sign-On 7.5 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.2AI score0.63211EPSS
Exploits5References10
CVE
CVE
added 2022/09/01 7:57 p.m.155 views

CVE-2022-2256

CVE-2022-2256 is a stored XSS vulnerability in Keycloak as shipped with Red Hat Single Sign-On (RH SSO) 7.x. The issue stems from improper validation of user-supplied input in the admin console, enabling a privileged attacker to inject and execute scripts via the admin UI by abusing the default r...

3.8CVSS4AI score0.00572EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2022/06/29 8:5 p.m.65 views

CVE-2022-2256

A Stored Cross-site scripting XSS vulnerability was found in keycloak. This flaw allows a privileged attacker to execute malicious scripts in the admin console, abusing the default roles functionality...

3.8CVSS3.3AI score0.00572EPSS
Exploits0References4
Rows per page
Query Builder