CVE-2020-1717 log
| Source |
|
| Severity | Low |
| Remote | Yes |
| Type | Information disclosure |
| Description | A security issue was found in keycloak. An attacker could use the change email function in the account settings to determine if an email address was already used for another account (an account enumeration attack). |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1332 | keycloak | 15.0.2-1 | 16.0.0-1 | High | Fixed |
| References |
|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1796281 https://issues.jboss.org/browse/KEYCLOAK-12014 |