CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Keycloak: >> Keycloak-Nodejs-Auth-Utils >> 2.5.0 Security Vulnerabilities

CVE-2017-7474

It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. An attacker could use this flaw to bypass authentication and gain access to restricted information, or to possibly conduct further attacks.

CVSS Score

9.8

EPSS Score

0.001

Published

2017-05-12

Page 1

Vulnerabilities

Vulnerable Software

Keycloak: >> Keycloak-Nodejs-Auth-Utils >> 2.5.0 Security Vulnerabilities

Products

Pricing

Contact Us