---

CVE-2021-20262 - log back

CVE-2021-20262 edited at 03 Mar 2021 09:25:00
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Authentication bypass
Description	+ A security issue was found in Keycloak where re-authentication does not occur while updating the password. This flaw allows an attacker to take over an account if they can obtain temporary, physical access to a user’s browser.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1933639 + https://issues.redhat.com/browse/KEYCLOAK-17250

CVE-2021-20262 created at 03 Mar 2021 09:23:24
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes