logo

Database

Improper authorization control for web services In org.keycloak:keycloak-services

Description

Missing Authorization

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2022-12452. NVD-2022-12453. OSV-2022-12454. GHSA-75p6-52g3-rqc85. GCVE-2022-12456. GHSA-75p6-52g3-rqc8

References

1. https://github.com/keycloak/keycloak/security/advisories/GHSA-75p6-52g3-rqc82. https://github.com/keycloak/keycloak/commit/76d83f46fad94ebcbedaa49e6daad458e2894e52

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.