2 matches found
CVE-2023-6787 vulnerabilities
Vulnerabilities for packages: keycloak-fips, keycloak...
CVE-2023-6787
A flaw was found in Keycloak that occurs from an error in the re-authentication mechanism within org.keycloak.authentication. This flaw allows hijacking an active Keycloak session by triggering a new authentication process with the query parameter "prompt=login," prompting the user to re-enter...