CVE-2024-1249: Keycloak OIDC Component Flaw Exposes Applications to High-Availability Attack via Unvalidated Cross-Origin Messages
A recently discovered vulnerability in Keycloak's OpenID Connect (OIDC) component has significant security implications. Known as CVE-2024-1249, this flaw exists in the "
CVE-2022-4137 - Reflected Cross-Site Scripting (XSS) Vulnerability in Keycloak's 'oob' OAuth Endpoint
A security vulnerability, assigned as CVE-2022-4137, was recently discovered in the 'oob' OAuth endpoint of Keycloak, which is an open-source identity and access