CVE-2020-1723

A flaw was found in Keycloak Gatekeeper (Louketo). The logout endpoint can be abused to redirect logged-in users to arbitrary web pages. Affected versions of Keycloak Gatekeeper (Louketo): 6.0.1, 7.0.0
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1770276 Issue Tracking Vendor Advisory
https://issues.redhat.com/browse/KEYCLOAK-11318 Issue Tracking Vendor Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:redhat:mobile_application_platform:4.0:*:*:*:*:*:*:*
cpe:2.3:a:keycloak_gatekeeper_project:keycloak_gatekeeper:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:keycloak_gatekeeper_project:keycloak_gatekeeper:7.0.0:*:*:*:*:*:*:*

Information

Published : 2021-01-28 12:15

Updated : 2022-10-26 18:08


NVD link : CVE-2020-1723

Mitre link : CVE-2020-1723


JSON object : View

CWE
CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

Advertisement

dedicated server usa

Products Affected

redhat

  • mobile_application_platform

keycloak_gatekeeper_project

  • keycloak_gatekeeper