Fluid Attacks Database

Description

Keycloak secondary factor bypass in step-up authentication Keycloak does not correctly validate its client step-up authentication. A password-authed attacker could use this flaw to register a false second auth factor, alongside the existing one, to a targeted account. The second factor then permits step-up authentication.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
maven	org.keycloak:keycloak-services	>=0 <22.0.10 \|\| >=23.0.0 <24.0.3	22.0.10, 24.0.3

Aliases

1. CVE-2023-35972. NVD-2023-35973. OSV-2023-35974. GHSA-4f53-xh3v-g8x45. GCVE-2023-35976. access.redhat.com7. access.redhat.com8. access.redhat.com9. ACCESS-CVE-2023-3597

References

1. https://github.com/keycloak/keycloak/security/advisories/GHSA-4f53-xh3v-g8x42. https://github.com/keycloak/keycloak/commit/aa634aee882892960a526e49982806e103c8a4323. https://bugzilla.redhat.com/show_bug.cgi?id=2221760

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.