CVE-2020-1717 - log back

CVE-2020-1717 edited at 18 Mar 2021 20:39:11
Severity
- Unknown
+ Low
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ A security issue was found in keycloak. An attacker could use the change email function in the account settings to determine if an email address was already used for another account (an account enumeration attack).
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1796281
+ https://issues.jboss.org/browse/KEYCLOAK-12014
CVE-2020-1717 created at 18 Mar 2021 20:38:20
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes