Plaintext storage of user password
CVE-2023-4918

8.8HIGH

Key Information:

Vendor: Red Hat
Status: keycloak; Red Hat Single Sign-On 7
Vendor: CVE Published:; 12 September 2023

Summary

A vulnerability exists in the Keycloak package, specifically within the user profile module, allowing user passwords to be exposed. During the registration process, the 'password' and 'password-confirm' fields are treated as standard user attributes. This flaw permits all users and clients with the appropriate roles to access this sensitive information, enabling unauthorized users to view passwords in clear text and undermining the security of the affected environment.

Affected Version(s)

keycloak 22.0.3

References

https://access.redhat.com/security/cve/CVE-2023-4918

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2238588

issue-trackingx_refsource_REDHAT

https://github.com/keycloak/keycloak/security/advisories/...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 12, 2023
Vulnerability Reserved
Sep 12, 2023

Credit

Upstream acknowledges Niko Köbler as the original reporter.