CVE-2023-6291 | JBoss KeyCloak lowerCaseHostname redirect

Posted by Angelo Barbosa | Dec 15, 2023 | CVE

A vulnerability classified as problematic has been found in JBoss KeyCloak. This affects the function lowerCaseHostname. The manipulation leads to open redirect.

This vulnerability is uniquely identified as CVE-2023-6291. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2023-6291 | JBoss KeyCloak lowerCaseHostname redirect

Related Posts

CVE-2023-51107 | MuPDF 1.23.4 jquant2.c compute_color divide by zero

CVE-2024-27122 | QNAP Notes Station 3 up to 3.9.5 cross site scripting (qsa-24-21)

CVE-2023-7093 | KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33 com.kylin.systemupgrade Service UpgradeStrategiesDbus.py SetDownloadspeedMax os command injection

CVE-2024-27847 | Apple iOS/iPadOS up to 17.4 App access control (HT214101)