Skip to main content

Keycloak Nodejs Auth Utils

1 CVEs product

Monthly

CVE-2017-7474 npm CRITICAL PATCH Act Now

It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Node.js Authentication Bypass Keycloak Nodejs Auth Utils
NVD
CVSS 3.0
9.8
EPSS
1.7%
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Node.js Authentication Bypass Keycloak Nodejs Auth Utils
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy