Lucene search
K

7 matches found

Wolfi
Wolfi
added yesterday7 views

CVE-2026-9828 vulnerabilities

Vulnerabilities for packages: sonar-scanner-cli, akhq, cassandra-reaper, keycloak-config-cli, nextflow, cassandra, zookeeper...

6.3CVSS5.9AI score0.0037EPSS
Exploits0
Wolfi
Wolfi
added 2025/08/08 7:47 p.m.3 views

GHSA-9342-92GG-6V29 vulnerabilities

Vulnerabilities for packages: wildfly, apache-nifi, apicurio-registry, keycloak, dependency-track, jenkins, keycloak-config-cli, thingsboard...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/11 1:21 p.m.10 views

CVE-2025-49006

Wasp Web Application Specification is a Rails-like framework for React, Node.js, and Prisma. Prior to version 0.16.6, Wasp authentication has a vulnerability in the OAuth authentication implementation affecting only Keycloak with a specific config. Wasp currently lowercases OAuth user IDs before...

8.2CVSS6.5AI score0.00388EPSS
Exploits0References1
CVE
CVE
added 2025/06/09 12:41 p.m.57 views

CVE-2025-49006

CVE-2025-49006 concerns Wasp (Web Application Specification), a Rails-like framework used with React/Node/Prisma. Prior to 0.16.6, the OAuth implementation lowercases OAuth user IDs before storing/fetching, which can violate OAuth/OpenID Connect specs and lead to user impersonation, account colli...

8.2CVSS6.6AI score0.00388EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/09 12:41 p.m.30 views

CVE-2025-49006 Wasp has case insensitive OAuth ID vulnerability

Wasp Web Application Specification is a Rails-like framework for React, Node.js, and Prisma. Prior to version 0.16.6, Wasp authentication has a vulnerability in the OAuth authentication implementation affecting only Keycloak with a specific config. Wasp currently lowercases OAuth user IDs before...

8.2CVSS0.00388EPSS
Exploits0References3
Chainguard
Chainguard
added 2025/02/18 6:33 p.m.5 views

GHSA-Q4XQ-445G-G6CH vulnerabilities

Vulnerabilities for packages: keycloak-operator, keycloak, keycloak-config-cli, keycloak-fips...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2024/09/09 7:15 p.m.10 views

CVE-2024-7318 vulnerabilities

Vulnerabilities for packages: keycloak-config-cli...

4.8CVSS7.2AI score0.00393EPSS
Exploits0
Rows per page
Query Builder