📦

keycloak-nodejs-auth-utils

Vendor: keycloak

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 17 Total Indexed

Avg. EPSS 1.73% Exploit Prob.

Latest CVE CVE-2017-7474 May 12

Security Vulnerability Index

Page 1 / 2

9.8 CVSS

CVE-2017-7474

It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. An attacker could use this flaw to bypass authentication and gain access to restricted information, or to possibly conduct further attacks.

EPSS: 1.73%

Severity: CRITICAL

May 12, 2017

Displaying 1 of 17 Total Entries

1 2

Total 2 Sections