Lucene search
K

7 matches found

Wolfi
Wolfi
added 2 days ago13 views

CVE-2026-9828 vulnerabilities

Vulnerabilities for packages: zookeeper, cassandra, cassandra-reaper, keycloak-config-cli, sonar-scanner-cli, nextflow, akhq...

6.3CVSS5.9AI score0.0037EPSS
Exploits0
Wolfi
Wolfi
added 2025/08/08 7:47 p.m.3 views

GHSA-9342-92GG-6V29 vulnerabilities

Vulnerabilities for packages: dependency-track, apicurio-registry, apache-nifi, keycloak-config-cli, jenkins, thingsboard, wildfly, keycloak...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/11 1:21 p.m.10 views

CVE-2025-49006

Wasp Web Application Specification is a Rails-like framework for React, Node.js, and Prisma. Prior to version 0.16.6, Wasp authentication has a vulnerability in the OAuth authentication implementation affecting only Keycloak with a specific config. Wasp currently lowercases OAuth user IDs before...

8.2CVSS6.5AI score0.00388EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/09 12:41 p.m.30 views

CVE-2025-49006 Wasp has case insensitive OAuth ID vulnerability

Wasp Web Application Specification is a Rails-like framework for React, Node.js, and Prisma. Prior to version 0.16.6, Wasp authentication has a vulnerability in the OAuth authentication implementation affecting only Keycloak with a specific config. Wasp currently lowercases OAuth user IDs before...

8.2CVSS0.00388EPSS
Exploits0References3
CVE
CVE
added 2025/06/09 12:41 p.m.58 views

CVE-2025-49006

CVE-2025-49006 concerns Wasp (Web Application Specification), a Rails-like framework used with React/Node/Prisma. Prior to 0.16.6, the OAuth implementation lowercases OAuth user IDs before storing/fetching, which can violate OAuth/OpenID Connect specs and lead to user impersonation, account colli...

8.2CVSS6.6AI score0.00388EPSS
Exploits0References3
Chainguard
Chainguard
added 2025/02/18 6:33 p.m.5 views

GHSA-Q4XQ-445G-G6CH vulnerabilities

Vulnerabilities for packages: keycloak-operator, keycloak-config-cli, keycloak, keycloak-fips...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2024/09/09 7:15 p.m.11 views

CVE-2024-7318 vulnerabilities

Vulnerabilities for packages: keycloak-config-cli...

4.8CVSS7.2AI score0.00393EPSS
Exploits0
Rows per page
Query Builder