logo

Database

Authentication mechanism absence or evasion In keycloak-connect

Description

Insufficient Session Expiration

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2022-39162. NVD-2022-39163. OSV-2022-39164. GHSA-97g8-xfvw-q4hg5. GCVE-2022-39166. ACCESS-CVE-2022-39167. access.redhat.com8. access.redhat.com9. access.redhat.com10. access.redhat.com11. access.redhat.com12. access.redhat.com13. access.redhat.com14. access.redhat.com15. access.redhat.com16. access.redhat.com

References

1. https://bugzilla.redhat.com/show_bug.cgi?id=21414042. https://github.com/keycloak/keycloak/security/advisories/GHSA-97g8-xfvw-q4hg

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.