Fluid Attacks Database

Description

Keycloak path traversal vulnerability in redirection validation A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. An attacker can use this flaw to construct a malicious request to bypass validation and access other URLs and potentially sensitive information within the domain or possibly conduct further attacks. This flaw affects any client that utilizes a wildcard in the Valid Redirect URIs field.

Acknowledgements:

Special thanks to Axel Flamcourt for reporting this issue and helping us improve our project.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
maven	org.keycloak:keycloak-services	>=0 <22.0.10 \|\| >=23.0.0 <24.0.3	22.0.10, 24.0.3

Aliases

1. CVE-2024-11322. NVD-2024-11323. OSV-2024-11324. GHSA-72vp-xfrc-42xm5. GCVE-2024-11326. ACCESS-CVE-2024-11327. access.redhat.com8. access.redhat.com9. access.redhat.com10. access.redhat.com11. access.redhat.com12. access.redhat.com13. access.redhat.com14. access.redhat.com15. access.redhat.com16. access.redhat.com17. access.redhat.com18. access.redhat.com

References

1. https://github.com/keycloak/keycloak/security/advisories/GHSA-72vp-xfrc-42xm2. https://bugzilla.redhat.com/show_bug.cgi?id=2262117

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.