Security Advisory

CVE-2023-0657

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-17 10:19:03

Last updated 2024-11-17 16:18:51

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak. This issue occurs due to improperly enforcing token types when validating signatures locally. This could allow an authenticated attacker to exchange a logout token for an access token and possibly gain access to data outside of enforced permissions.

← Browse all CVEs View on cve.org ↗