Lucene search
Veracode Vulnerability DatabaseVERACODE:47603HistoryJun 18, 2024 - 9:51 a.m.
Improper Privilege Management
2024-06-1809:51:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
keycloak
vulnerability
privilege management
administrative functionalities
org.keycloak: keycloak-services is vulnerable to Improper Privilege Management. The vulnerability is due to users with low privileges being able to utilize administrative functionalities within the Keycloak admin interface.
| CPE | Name | Operator | Version |
|---|---|---|---|
| keycloak rest services | le | 24.0.4 | |
| admin ui rest extensions | le | 24.0.4 | |
| keycloak rest services | le | 24.0.4 | |
| admin ui rest extensions | le | 24.0.4 |
Related
osv
osv
CGA-4qmx-6685-qc88
2024-06-19 07:35:15
nessus
nessus
Keycloak < 24.0.5 Unauthorized Access (CVE-2024-3656)
2024-06-14 00:00:00
github
github