RSS   Vulnerabilities for 'Keycloak-nodejs-auth-utils'   RSS

2017-05-12
 
CVE-2017-7474

CWE-19
 

 
It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. An attacker could use this flaw to bypass authentication and gain access to restricted information, or to possibly conduct further attacks.

 

 >>> Vendor: Keycloak 2 Products
Keycloak
Keycloak-nodejs-auth-utils


Copyright 2019, cxsecurity.com

 

Back to Top