CVE-2021-3637
maven/org.keycloak/keycloak-model-infinispan
Allocation of Resources Without Limits or Throttling
A flaw was found in keycloak-model-infinispan in keycloak where authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly which could lead to a DoS attack.
All versions before 14.0.0
Upgrade to version 14.0.0 or above.
2021-07-15
source |