CVE ID : CVE-2023-0657
Published : Nov. 17, 2024, 11:15 a.m. | 1 hour, 2 minutes ago
Description : A flaw was found in Keycloak. This issue occurs due to improperly enforcing token types when validating signatures locally. This could allow an authenticated attacker to exchange a logout token for an access token and possibly gain access to data outside of enforced permissions.
Severity: 3.4 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more…