2 matches found
Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 security update on RHEL 8
New Red Hat Single Sign-On 7.6.2 packages are now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2023-0091
CVE-2023-0091 is linked to Red Hat/SO, affecting Red Hat Single Sign-On (based on Keycloak). Description from RH advisories: the issue is that the Client Registration endpoint does not check token revocation in the client credential flow, enabling potential unauthorized access or modification of ...