Red hat build of keycloak 22.0.10
This hub aggregates every CVE we track for Red hat build of keycloak 22.0.10, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM5HIGH2LOW1
Monthly trend
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 8 most recently published vulnerabilities affecting Red hat build of keycloak 22.0.10.
- CVE-2023-0657Keycloak: impersonation via logout token exchange3.4
- CVE-2023-6787Keycloak: session hijacking via re-authentication6.5
- CVE-2023-6717Keycloak: xss via assertion consumer service url in saml post-binding flow6.0
- CVE-2023-6544Keycloak: authorization bypass5.4
- CVE-2023-6484Keycloak: log injection during webauthn authentication or registration5.3
- CVE-2023-3597Keycloak: secondary factor bypass in step-up authentication5.0
- CVE-2024-1249Keycloak: org.keycloak.protocol.oidc: unvalidated cross-origin messages in checkloginiframe leads to ddos7.4
- CVE-2024-1132Keycloak: path transversal in redirection validation8.1
Product normalization is registry-driven with AI assist and human review. How it works