Security Advisory

CVE-2022-1438

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-20 13:34:22

Last updated 2024-09-24 15:06:01

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak. Under specific circumstances, HTML entities are not sanitized during user impersonation, resulting in a Cross-site scripting (XSS) vulnerability.

← Browse all CVEs View on cve.org ↗