CVE-2020-1717 log

Source
Severity Low
Remote Yes
Type Information disclosure
Description
A security issue was found in keycloak. An attacker could use the change email function in the account settings to determine if an email address was already used for another account (an account enumeration attack).
Group Package Affected Fixed Severity Status Ticket
AVG-1332 keycloak 12.0.4-1 High Vulnerable
References
https://bugzilla.redhat.com/show_bug.cgi?id=1796281
https://issues.jboss.org/browse/KEYCLOAK-12014