Client access via device auth request spoof
CVE-2023-2585

8.1HIGH

Key Information:

Vendor
Red Hat
Status
keycloak
Red Hat Single Sign-On 7
Red Hat Single Sign-On 7.6 for RHEL 7
Red Hat Single Sign-On 7.6 for RHEL 8
Vendor
CVE Published:
21 December 2023

Summary

Keycloak's device authorization grant has a flaw in its validation process, which allows attackers to potentially spoof requests. By leveraging this vulnerability, an attacker could manipulate the consent flow, leading authorization administrators to unknowingly approve access for a malicious OAuth client. This can result in unauthorized access to sensitive information or systems that rely on valid OAuth client consent.

References

https://access.redhat.com/errata/RHSA-2023:3883
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:3884
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:3885
vendor-advisoryx_refsource_REDHAT

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.