CVE ID : CVE-2023-0657

Published : Nov. 17, 2024, 11:15 a.m. | 1 hour, 2 minutes ago

Description : A flaw was found in Keycloak. This issue occurs due to improperly enforcing token types when validating signatures locally. This could allow an authenticated attacker to exchange a logout token for an access token and possibly gain access to data outside of enforced permissions.

Severity: 3.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…