Filtered by vendor Keycloak Subscriptions
Filtered by product Keycloak-nodejs-auth-utils Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2017-7474 2 Keycloak, Redhat 2 Keycloak-nodejs-auth-utils, Jboss Single Sign On 2024-11-21 N/A
It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. An attacker could use this flaw to bypass authentication and gain access to restricted information, or to possibly conduct further attacks.