CVE-2023-0091

Incorrect Authorization in maven/org.keycloak/keycloak-parent

Identifiers

CVE-2023-0091

Package Slug

maven/org.keycloak/keycloak-parent

Vulnerability

Incorrect Authorization

Description

A flaw was found in Keycloak, where it does not properly check client tokens for possible revocation in its client credential flow. This flaw allows an attacker to access or modify potentially sensitive information.

Affected Versions

All versions

Solution

Unfortunately, there is no solution available.

Last Modified

2023-01-25

source