Vulnerability Finding Name: A flaw was found in the Keycloak Node.js Adapter - CVE-2022-2237
search cancel

Vulnerability Finding Name: A flaw was found in the Keycloak Node.js Adapter - CVE-2022-2237

book

Article ID: 263680

calendar_today

Updated On:

Products

Service Virtualization

Issue/Introduction

Vulnerability Finding Name: A flaw was found in the Keycloak Node.js Adapter
Communication Date: 4/5/2023
Severity: Medium
CVE-ID: CVE-2022-2237
CVSS Score: 6.1
Discussion: A flaw was found in the Keycloak Node.js Adapter. This flaw allows an attacker to benefit from an Open Redirect vulnerability in the checkSso function.
Product: redhat.single_sign-on.7.0, redhat.keycloak_node.js_adapter.-
Source: Alert

Environment

Release : 10.7.0

Cause

Keycloak vulnerability.

Resolution

This is resolved in DevTest 10.7.2.

Powered by Wolken Software