AVG-2084 log

Package keycloak
Status Fixed
Severity Medium
Type certificate verification bypass
Affected 13.0.1-1
Fixed 14.0.0-1
Current 24.0.2-1 [extra]
Ticket None
Created Fri Jun 18 13:44:40 2021
Issue Severity Remote Type Description
CVE-2020-35509 Medium Yes Certificate verification bypass
A security issue has been found in Keycloak before version 14.0.0. Depending on the webserver configuration, a malicious user can supply an expired...
Date Advisory Package Type
22 Jun 2021 ASA-202106-53 keycloak certificate verification bypass