GHSA-JGWC-JH89-RPGQ Keycloak proxy header handling Denial-of-Service (DoS) vulnerability
Keycloak versions 26 and earlier are vulnerable to a denial-of-service DoS attack through improper handling of proxy headers. When Keycloak is configured to accept incoming proxy headers, it may accept non-IP values, such as obfuscated identifiers, without proper validation. This can lead to cost...