2 matches found
CVE-2024-0560
creationtimestamp| type| source ---|---|--- 2024-02-28 17:47:13+00:00| seen| https://t.me/ctinow/195696 2024-02-28 18:26:41+00:00| seen| https://t.me/ctinow/195734 2024-02-28 18:26:50+00:00| seen| https://t.me/ctinow/195740...
CVE-2024-0560
CVE-2024-0560 affects 3Scale when used with Keycloak 15 or RHSSO 7.5.0. The auth_type use_3scale_oidc_issuer_endpoint makes the Token Introspection policy read the token_introspection_endpoint field, which was removed in RH-SSO 7.5. As a result, tokens are not inspected and are treated as valid. ...