Security Advisory

CVE-2021-3632

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-26 15:25:41

Last updated 2024-08-03 17:01:08

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak. This vulnerability allows anyone to register a new security device or key when there is not a device already registered for any user by using the WebAuthn password-less login flow.

← Browse all CVEs View on cve.org ↗