A vulnerability was found in Keycloak. The LDAP testing endpoint allows changing the Connection URL  independently without re-entering the currently configured LDAP bind credentials. This flaw allows an attacker with admin access (permission manage-realm) to change the LDAP host URL ("Connection URL") to a machine they control. The Keycloak server will connect to the attacker's host and try to authenticate with the configured credentials, thus leaking them to the attacker. As a consequence, an attacker who has compromised the admin console or compromised a user with sufficient privileges can leak domain credentials and attack the domain.
History

Fri, 27 Sep 2024 12:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 09 Sep 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Redhat rhosemc
CPEs cpe:/a:redhat:red_hat_single_sign_on:7 cpe:/a:redhat:build_keycloak:22::el9
cpe:/a:redhat:red_hat_single_sign_on:7.6
cpe:/a:redhat:red_hat_single_sign_on:7.6::el7
cpe:/a:redhat:red_hat_single_sign_on:7.6::el8
cpe:/a:redhat:red_hat_single_sign_on:7.6::el9
cpe:/a:redhat:rhosemc:1.0::el8
Vendors & Products Redhat rhosemc
References

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-06-18T12:05:39.289Z

Updated: 2024-11-24T18:42:08.718Z

Reserved: 2024-06-13T12:33:44.661Z

Link: CVE-2024-5967

cve-icon Vulnrichment

Updated: 2024-08-01T21:25:03.165Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-06-18T12:15:12.707

Modified: 2024-11-21T09:48:39.633

Link: CVE-2024-5967

cve-icon Redhat

Severity : Low

Publid Date: 2024-06-13T00:00:00Z

Links: CVE-2024-5967 - Bugzilla