CVE-2021-3424
01.06.2021, 19:15
A flaw was found in keycloak as shipped in Red Hat Single Sign-On 7.4 where IDN homograph attacks are possible. A malicious user can register himself with a name already registered and trick admin to grant him extra privileges.Enginsight
| Vendor | Product | Version |
|---|---|---|
| redhat | single_sign-on | 7.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration