Home

CVE-2020-1718

Description

A flaw was found in the reset credential flow in all Keycloak versions before 8.0.0. This flaw allows an attacker to gain unauthorized access to the application.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.367

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-1718 are fixed in Keycloak - keycloak-parent 8.0.0Windows
Vulnerabilities CVE-2020-1718 are fixed in Keycloak - keycloak-parent for Linux 8.0.0Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234