CVE-2024-5967

Name of the Vulnerable Software and Affected Versions: Keycloak (affected versions not specified)

Description: A flaw in the LDAP testing endpoint allows an attacker with admin access to change the LDAP host URL to a machine they control, potentially leaking domain credentials. This can be achieved by modifying the "Connection URL" independently without re-entering the currently configured LDAP bind credentials. As a consequence, an attacker who has compromised the admin console or a user with sufficient privileges can leak domain credentials and attack the domain.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.