CVE-2017-7474
CVE-2017-7474 affects the Keycloak Node.js adapter (versions 2.5–3.0). The root cause is improper handling of invalid tokens, which could allow an attacker to bypass authentication and access restricted information, or conduct further attacks. Public references describe this as an authentication ...