---

CVE-2021-20222 - log back

CVE-2021-20222 edited at 06 May 2021 17:56:48
Description	- A security issue was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. + A security issue was found in keycloak before version 13.0.0. The new account console in keycloak can allow malicious code to be executed using the referrer URL.
References	https://bugzilla.redhat.com/show_bug.cgi?id=1924606 https://issues.redhat.com/browse/KEYCLOAK-17033 + https://github.com/keycloak/keycloak/pull/7868 + https://github.com/keycloak/keycloak/commit/3b80eee5bfdf2b80c47465c0f2eaf70074808741

CVE-2021-20222 edited at 17 Feb 2021 14:25:45
Severity	- Unknown + High
Remote	- Unknown + Remote
Type	- Unknown + Cross-site scripting
Description	+ A security issue was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1924606 + https://issues.redhat.com/browse/KEYCLOAK-17033

CVE-2021-20222 created at 17 Feb 2021 14:24:32
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes