Client access via device auth request spoof
CVE-2023-2585

3.5LOW

Key Information:

Vendor

Red Hat
Status
Red Hat Single Sign-on 7
Red Hat Single Sign-on 7.6 For Rhel 7
Red Hat Single Sign-on 7.6 For Rhel 8
Red Hat Single Sign-on 7.6 For Rhel 9
Vendor
CVE Published:
21 December 2023

What is CVE-2023-2585?

Keycloak's device authorization grant has a flaw in its validation process, which allows attackers to potentially spoof requests. By leveraging this vulnerability, an attacker could manipulate the consent flow, leading authorization administrators to unknowingly approve access for a malicious OAuth client. This can result in unauthorized access to sensitive information or systems that rely on valid OAuth client consent.

Affected Version(s)

Red Hat Single Sign-On 7.6 for RHEL 7 0:18.0.8-1.redhat_00001.1.el7sso

Red Hat Single Sign-On 7.6 for RHEL 8 0:18.0.8-1.redhat_00001.1.el8sso

Red Hat Single Sign-On 7.6 for RHEL 9 0:18.0.8-1.redhat_00001.1.el9sso

References

https://access.redhat.com/errata/RHSA-2023:3883
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:3884
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:3885
vendor-advisoryx_refsource_REDHAT

CVSS V3.1

Score:
3.5
Severity:
LOW
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.