A vulnerability classified as problematic has been found in JBoss KeyCloak. This affects the function
lowerCaseHostname
. The manipulation leads to open redirect.
This vulnerability is uniquely identified as CVE-2023-6291. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.