Search for packages
| purl | pkg:alpm/archlinux/keycloak@12.0.4-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5yyq-kxcg-aaas
Aliases: CVE-2020-27838 GHSA-pcv5-m2wh-66j3 |
Improper Authentication A flaw was found in keycloak The client registration endpoint allows fetching information about PUBLIC clients (like client secret) without authentication which could be an issue if the same PUBLIC client changed to CONFIDENTIAL later. The highest threat from this vulnerability is to data confidentiality. |
Affected by 1 other vulnerability. |
|
VCID-fccp-mqrj-aaaj
Aliases: CVE-2020-14302 |
Authentication Bypass by Capture-replay A flaw was found in Keycloak where an external identity provider, after successful authentication, redirects to a Keycloak endpoint that accepts multiple invocations with the use of the same `state` parameter. This flaw allows a malicious user to perform replay attacks. |
Affected by 1 other vulnerability. |
|
VCID-q8mt-excf-aaaa
Aliases: CVE-2021-3513 GHSA-xv7h-95r7-595j |
CVE-2021-3513 keycloak: Brute force attack is possible even after the account lockout |
Affected by 1 other vulnerability. |
|
VCID-rfye-2s3j-aaaf
Aliases: CVE-2021-20222 GHSA-2mq8-99q7-55wx |
Code injection in keycloak |
Affected by 1 other vulnerability. |
|
VCID-ydp2-dstr-aaas
Aliases: CVE-2021-20202 GHSA-6xp6-fmc8-pmmr |
Temporary Directory Hijacking Vulnerability in Keycloak |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:45:38.462063+00:00 | Arch Linux Importer | Affected by | VCID-fccp-mqrj-aaaj | https://security.archlinux.org/AVG-1926 | 36.0.0 |
| 2025-03-28T07:45:38.441687+00:00 | Arch Linux Importer | Affected by | VCID-5yyq-kxcg-aaas | https://security.archlinux.org/AVG-1926 | 36.0.0 |
| 2025-03-28T07:45:38.420881+00:00 | Arch Linux Importer | Affected by | VCID-ydp2-dstr-aaas | https://security.archlinux.org/AVG-1926 | 36.0.0 |
| 2025-03-28T07:45:38.400465+00:00 | Arch Linux Importer | Affected by | VCID-rfye-2s3j-aaaf | https://security.archlinux.org/AVG-1926 | 36.0.0 |
| 2025-03-28T07:45:38.379668+00:00 | Arch Linux Importer | Affected by | VCID-q8mt-excf-aaaa | https://security.archlinux.org/AVG-1926 | 36.0.0 |
| 2024-10-07T16:08:19.966322+00:00 | Arch Linux Importer | Affected by | VCID-fccp-mqrj-aaaj | https://security.archlinux.org/AVG-1926 | 34.0.2 |
| 2024-10-07T16:08:19.941241+00:00 | Arch Linux Importer | Affected by | VCID-5yyq-kxcg-aaas | https://security.archlinux.org/AVG-1926 | 34.0.2 |
| 2024-10-07T16:08:19.905411+00:00 | Arch Linux Importer | Affected by | VCID-ydp2-dstr-aaas | https://security.archlinux.org/AVG-1926 | 34.0.2 |
| 2024-10-07T16:08:19.875276+00:00 | Arch Linux Importer | Affected by | VCID-rfye-2s3j-aaaf | https://security.archlinux.org/AVG-1926 | 34.0.2 |
| 2024-10-07T16:08:19.835977+00:00 | Arch Linux Importer | Affected by | VCID-q8mt-excf-aaaa | https://security.archlinux.org/AVG-1926 | 34.0.2 |
| 2024-09-18T02:00:37.117957+00:00 | Arch Linux Importer | Affected by | VCID-fccp-mqrj-aaaj | https://security.archlinux.org/AVG-1926 | 34.0.1 |
| 2024-09-18T02:00:37.095277+00:00 | Arch Linux Importer | Affected by | VCID-5yyq-kxcg-aaas | https://security.archlinux.org/AVG-1926 | 34.0.1 |
| 2024-09-18T02:00:37.072450+00:00 | Arch Linux Importer | Affected by | VCID-ydp2-dstr-aaas | https://security.archlinux.org/AVG-1926 | 34.0.1 |
| 2024-09-18T02:00:37.050293+00:00 | Arch Linux Importer | Affected by | VCID-rfye-2s3j-aaaf | https://security.archlinux.org/AVG-1926 | 34.0.1 |
| 2024-09-18T02:00:37.025874+00:00 | Arch Linux Importer | Affected by | VCID-q8mt-excf-aaaa | https://security.archlinux.org/AVG-1926 | 34.0.1 |
| 2024-06-10T13:08:00.245672+00:00 | Arch Linux Importer | Affected by | VCID-fccp-mqrj-aaaj | https://security.archlinux.org/AVG-1926 | 34.0.0rc4 |
| 2024-06-10T13:08:00.223757+00:00 | Arch Linux Importer | Affected by | VCID-5yyq-kxcg-aaas | https://security.archlinux.org/AVG-1926 | 34.0.0rc4 |
| 2024-06-10T13:08:00.201750+00:00 | Arch Linux Importer | Affected by | VCID-ydp2-dstr-aaas | https://security.archlinux.org/AVG-1926 | 34.0.0rc4 |
| 2024-06-10T13:08:00.179825+00:00 | Arch Linux Importer | Affected by | VCID-rfye-2s3j-aaaf | https://security.archlinux.org/AVG-1926 | 34.0.0rc4 |
| 2024-06-10T13:08:00.155351+00:00 | Arch Linux Importer | Affected by | VCID-q8mt-excf-aaaa | https://security.archlinux.org/AVG-1926 | 34.0.0rc4 |
| 2024-01-03T22:26:54.198310+00:00 | Arch Linux Importer | Affected by | VCID-fccp-mqrj-aaaj | https://security.archlinux.org/AVG-1926 | 34.0.0rc1 |
| 2024-01-03T22:26:54.172023+00:00 | Arch Linux Importer | Affected by | VCID-5yyq-kxcg-aaas | https://security.archlinux.org/AVG-1926 | 34.0.0rc1 |
| 2024-01-03T22:26:54.148388+00:00 | Arch Linux Importer | Affected by | VCID-ydp2-dstr-aaas | https://security.archlinux.org/AVG-1926 | 34.0.0rc1 |
| 2024-01-03T22:26:54.124595+00:00 | Arch Linux Importer | Affected by | VCID-rfye-2s3j-aaaf | https://security.archlinux.org/AVG-1926 | 34.0.0rc1 |
| 2024-01-03T22:26:54.100686+00:00 | Arch Linux Importer | Affected by | VCID-q8mt-excf-aaaa | https://security.archlinux.org/AVG-1926 | 34.0.0rc1 |