CVE-2021-20222 - CERT CVE

  1. CVE-2021-20222

ID CVE-2021-20222
Sažetak A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Reference
CVSS
Base: 5.1
Impact: 6.4
Exploitability:4.9
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL PARTIAL
CVSS vektor AV:N/AC:H/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje 21-10-2022 - 20:11
Objavljeno 23-03-2021 - 17:15