Security Advisory

CVE-2022-1274

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-29 00:00:00

Last updated 2024-08-02 23:55:24

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak in the execute-actions-email endpoint. This issue allows arbitrary HTML to be injected into emails sent to Keycloak users and can be misused to perform phishing or other attacks against users.

← Browse all CVEs View on cve.org ↗