Security Advisory

CVE-2022-0225

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-26 17:25:46

Last updated 2024-08-02 23:18:42

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak. This flaw allows a privileged attacker to use the malicious payload as the group name while creating a new group from the admin console, leading to a stored Cross-site scripting (XSS) attack.

← Browse all CVEs View on cve.org ↗