CVE-2021-3424 - log back

CVE-2021-3424 edited at 09 Mar 2021 09:18:53
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Content spoofing
Description
+ A security issue was found in keycloak where IDN homograph attacks are possible. A malicious user can register himself with a name already registered and trick admin to grant him extra privileges.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1933320
+ https://issues.redhat.com/browse/KEYCLOAK-17256
CVE-2021-3424 created at 09 Mar 2021 09:17:32
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes