Shodan
Vulnerabilities
Vulnerable Software
Michaelkelly:  >> Duouniversalkeycloakauthenticator  Security Vulnerabilities
CVE-2023-49594
An information disclosure vulnerability exists in the challenge functionality of instipod DuoUniversalKeycloakAuthenticator 1.0.7 plugin. A specially crafted HTTP request can lead to a disclosure of sensitive information. A user logging into Keycloak using DuoUniversalKeycloakAuthenticator plugin triggers this vulnerability.
CVSS Score
4.5
EPSS Score
0.001
Published
2023-12-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved