CVE-2020-27838 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Information disclosure |
| Description | Client registration endpoints should not allow fetching information about public clients without authentication. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1332 | keycloak | 12.0.1-1 | Medium | Vulnerable |
| References |
|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1906797 https://issues.redhat.com/browse/KEYCLOAK-16521 |