Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/06/25 8:57 p.m.7 views

CVE-2026-11800 Org.keycloak:keycloak-services: keycloak: authentication bypass via jwt algorithm confusion

A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow allows an attacker with valid client credentials to bypass signature verification. By forging an assertion, the attacker can create unauthorized access tokens. This enables the attacker to...

8.1CVSS5.7AI score0.00181EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 11:53 a.m.8 views

CVE-2026-56223

Capgo

9.3CVSS6AI score0.00244EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 8:25 p.m.18 views

GHSA-C3M2-JQMQ-PVP3 authentik's XML Signature Wrapping in SAML Source ACS allows authentication as arbitrary federated user

Summary authentik's SAML Source ACS endpoint is vulnerable to XML Signature Wrapping when validating upstream SAML responses. An attacker with any account at the upstream IdP can reuse a valid signed assertion to authenticate as another federated user. Patches authentik 2026.5.1, 2026.2.4 and...

8.5CVSS5.8AI score0.00182EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/21 12:0 a.m.5 views

PT-2024-33706 · Github · Github Enterprise Server

Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server affected versions not specified Description: The issue affects instances with SAML SSO and encrypted assertions, allowing an attacker to forge a SAML response and gain admin privileges and unrestricted access to the...

7.4AI score
Exploits0References4
Rows per page
Query Builder