Main Vulnerability Database Vulnerabilities #VU88799

#VU88799 Permissions, Privileges, and Access Controls in Keycloak - CVE-2024-1249

Published: April 17, 2024

Vulnerability identifier: #VU88799

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2024-1249

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Keycloak

Software vendor:
Keycloak

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to "checkLoginIframe" allows unvalidated cross-origin messages. A remote attacker can send millions of requests in seconds using simple code, significantly impacting the application's availability without proper origin validation for incoming messages.

Remediation

Install updates from vendor's website.

External links

https://github.com/keycloak/keycloak/security/advisories/GHSA-m6q9-p373-g5q8
https://access.redhat.com/errata/RHSA-2024:1867
https://access.redhat.com/errata/RHSA-2024:1868

#VU88799 Permissions, Privileges, and Access Controls in Keycloak - CVE-2024-1249

Description

Remediation

External links

Please verify you're human