CVE-2023-2422: Keycloak mTLS Authentication Compromised; Client Certificate Chain Verification Flawed
The Keycloak identity and access management system, which supports OAuth and OpenID Connect (OIDC) clients, has been found with a serious vulnerability (CVE-2023-2422). This post