Keycloak Flaw Allows Attackers to Bypass Validation and Access Sensitive Information
CVE-2024-1132

8.1HIGH

Key Information:

Vendor

Red Hat
Status
Migration Toolkit For Runtimes 1 On Rhel 8
Mta-6.2-rhel-9
Red Hat AMQ Broker 7
Vendor
CVE Published:
17 April 2024

What is CVE-2024-1132?

A security vulnerability has been identified in Keycloak, where improper URL validation in redirects could enable an attacker to exploit this flaw. This issue particularly affects clients that utilize wildcards in the Valid Redirect URIs field, which could allow malicious requests to bypass intended restrictions. As a result, sensitive information may be accessed without authorization, potentially leading to further attacks. User interaction is necessary to trigger this vulnerability, making it essential for users and administrators to be informed about securing their implementations of Keycloak.

References

https://access.redhat.com/errata/RHSA-2024:1860
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:1861
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:1862
vendor-advisoryx_refsource_REDHAT

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Red Hat would like to thank Axel Flamcourt for reporting this issue.
.
CVE-2024-1132 : Keycloak Flaw Allows Attackers to Bypass Validation and Access Sensitive Information