CVE-2022-1970

Rejected reason: The originally reported issue in https://github.com/syedsohaibkarim/OpenRedirect-Keycloak18.0.0 is a known misconfiguration, and recommendation already exists in the Keycloak documentation to mitigate the issue: https://www.keycloak.org/docs/latest/server_admin/index.html#open-redirectors.

CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

29 May 2024, 02:15

Type	Values Removed	Values Added
Summary	~~(es) KeyCloak 18.0.0: Abre la redirección en el punto final de autenticación a través del parámetro redirect_uri.~~
Summary	~~(en) keycloak 18.0.0: open redirect in auth endpoint via the redirect_uri parameter.~~	(en) Rejected reason: The originally reported issue in https://github.com/syedsohaibkarim/OpenRedirect-Keycloak18.0.0 is a known misconfiguration, and recommendation already exists in the Keycloak documentation to mitigate the issue: https://www.keycloak.org/docs/latest/server_admin/index.html#open-redirectors.
References	~~{'url': 'https://access.redhat.com/security/cve/CVE-2022-1970', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://bugzilla.redhat.com/show_bug.cgi?id=2092434', 'source': 'secalert@redhat.com'}~~
CWE	~~CWE-601~~
CPE	cpe:2.3:a:redhat:keycloak:18.0.0:::::::*
CVSS	v2 : ~~unknown~~ v3 : ~~6.1~~	v2 : unknown v3 : unknown

07 Nov 2023, 03:42

Type	Values Removed	Values Added
References	~~(MISC) https://access.redhat.com/security/cve/CVE-2022-1970 - Vendor Advisory~~	() https://access.redhat.com/security/cve/CVE-2022-1970 -
References	~~(MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2092434 - Issue Tracking, Vendor Advisory~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2092434 -

Information

Published : 2022-10-19 18:15

Updated : 2024-05-29 02:15

NVD link : CVE-2022-1970

Mitre link : CVE-2022-1970

CVE.ORG link : CVE-2022-1970

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2022-1970

Attach tags to `CVE-2022-1970`