2 matches found
keycloak: failedLogin Event not sent to BruteForceProtector when using Post Login Flow with Conditional-OTP
A flaw was found in keycloak. BruteForceProtector does not handle Conditional OTP Authentication Flow login failure events due to these events not being sent to the brute force protection event queue. The highest threat from this vulnerability is to data confidentiality and integrity as well as...
keycloak: failedLogin Event not sent to BruteForceProtector when using Post Login Flow with Conditional-OTP
A flaw was found in keycloak. BruteForceProtector does not handle Conditional OTP Authentication Flow login failure events due to these events not being sent to the brute force protection event queue. The highest threat from this vulnerability is to data confidentiality and integrity as well as...