Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2023/07/18 7:12 p.m.9 views

be.jidoka:jdk-keycloak-admin (>=2.0.0 <=2.2.0), cn.sparrowmini:sparrow-keycloak-adapter (>=0.0.1 <=0.0.2) +474 more potentially affected by CVE-2023-0105 via org.keycloak:keycloak-core (>=1.0-alpha-1 <=22.0.0)

org.keycloak:keycloak-core MAVEN version =1.0-alpha-1, =2.0.0, =0.0.1, =1.5.1, =1.5.1, =1.6.2, =1.6.2, =1.5.2, =1.5.2, =1.7.2, =1.7.2, =1.0.22, =1.0.22, =1.4.3, =1.4.3, =1.2.9, =1.5.0 and more Source cves: CVE-2023-0105 Source advisory: OSV:GHSA-C7XW-P58W-H6FJ...

6.5CVSS6.5AI score0.007EPSS
Exploits0
CVE
CVE
added 2023/01/11 8:46 p.m.182 views

CVE-2023-0105

CVE-2023-0105 affects Keycloak: the vulnerability stems from incorrect handling of email trust, enabling an attacker to shadow other users with the same email and cause impersonation or lockout. The issue is documented in multiple sources (GHSA and OSV) with explicit description of impersonation/...

6.5CVSS6.1AI score0.007EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/11 8:46 p.m.3 views

CVE-2023-0105

A flaw was found in Keycloak. This flaw allows impersonation and lockout due to the email trust not being handled correctly in Keycloak. An attacker can shadow other users with the same email and lockout or impersonate them...

6.5AI score0.007EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/11 8:46 p.m.36 views

CVE-2023-0105

A flaw was found in Keycloak. This flaw allows impersonation and lockout due to the email trust not being handled correctly in Keycloak. An attacker can shadow other users with the same email and lockout or impersonate them...

6.6AI score0.007EPSS
Exploits0References1
Rows per page
Query Builder