PT-2023-32823 · Red Hat · Keycloak

Pontus Hanssen

Published

2023-12-18

Updated

2024-02-14

CVE-2023-6927

CVSS v3.1

4.6

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Keycloak (affected versions not specified)

Description A flaw was found in Keycloak, which may allow an attacker to steal authorization codes or tokens from clients using a wildcard in the JARM response mode "form post.jwt". This could be used to bypass the security patch implemented to address a previous issue. The attacker can exploit this by changing the response mode parameter in the original proof of concept from "form post" to "form post.jwt".

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2023-6927

GHSA-3P75-Q5CC-QMJ7

GHSA-9VM7-V8WJ-3FQW

RHSA-2024:0094

RHSA-2024:0095

RHSA-2024:0096

RHSA-2024:0798

RHSA-2024:0799

RHSA-2024:0800

Affected Products

Keycloak

PT-2023-32823 · Red Hat · Keycloak

CVE-2023-6927

Weakness Enumeration

Related Identifiers

Affected Products

References · 27