8.1

CVE-2022-4137

Keycloak: reflected xss attack

Reflected XSS on OpenID connect login service

A reflected cross-site scripting (XSS) vulnerability was found in the 'oob' OAuth endpoint due to incorrect null-byte handling. This issue allows a malicious link to insert an arbitrary URI into a Keycloak error page. This flaw requires a user or administrator to interact with a link in order to be vulnerable. This may compromise user details, allowing it to be changed or collected by an attacker.
Mögliche Gegenmaßnahme
Keycloak Server: Install latest version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
RedhatKeycloak Version-
RedhatSingle Sign-on Version7.6
   RedhatEnterprise Linux Version7.0
   RedhatEnterprise Linux Version8.0
   RedhatEnterprise Linux Version9.0
Weitere Schwachstelleninformationen
SystemKeycloak
Produkt Keycloak Server
Version < 20.0.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.15% 0.627
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.1 2.8 2.7
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
secalert@redhat.com 8.1 2.8 5.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

CWE-81 Improper Neutralization of Script in an Error Message Web Page

The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special characters that could be interpreted as web-scripting elements when they are sent to an error page.

https://access.redhat.com/errata/RHSA-2023:1043
Vendor Advisory
https://access.redhat.com/errata/RHSA-2023:1044
Vendor Advisory
https://access.redhat.com/errata/RHSA-2023:1045
Vendor Advisory
https://access.redhat.com/errata/RHSA-2023:1049
Vendor Advisory
https://access.redhat.com/security/cve/CVE-2022-4137
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2148496
Vendor Advisory
Issue Tracking
https://github.com/keycloak/keycloak/security/advisories/GHSA-9hhc-pj4w-w5rv
Third Party Advisory