CVE-2020-10734 - log back

CVE-2020-10734 edited at 11 Feb 2021 21:24:38
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Cross-site request forgery
Description
+ A vulnerability was found in keycloak in the way that the OIDC logout endpoint does not have cross-site request forgery (CSRF) protection.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1831662
+ https://issues.redhat.com/browse/KEYCLOAK-13653
CVE-2020-10734 created at 11 Feb 2021 21:23:41
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes