Security Advisory

CVE-2024-4028

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-18 17:54:08

Last updated 2025-11-21 06:47:28

Assigner redhat

State PUBLISHED

Description

A vulnerability was found in Keycloak. This issue may allow a privileged attacker to use a malicious payload as the permission while creating items (Resource and Permissions) from the admin console, leading to a stored cross-site scripting (XSS) attack.

← Browse all CVEs View on cve.org ↗