Description
A flaw was found in the Keycloak Node.js Adapter. This flaw allows an attacker to benefit from an Open Redirect vulnerability in the checkSso function.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=2097007
Related Vulnerabilities
CVE-2021-41084 Vulnerability in maven package org.http4s:http4s-server_3
CVE-2023-36542 Vulnerability in maven package org.apache.nifi:nifi-dbcp-service
CVE-2019-12418 Vulnerability in maven package org.apache.tomcat:tomcat-catalina-jmx-remote
CVE-2016-1181 Vulnerability in maven package struts:struts
CVE-2017-12161 Vulnerability in maven package org.keycloak:keycloak-core