fkie_nvd - fkie_cve-2024-1132

fkie_cve-2024-1132

Vulnerability from fkie_nvd

Published

2024-04-17 14:15

Modified

2024-11-21 08:49

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Summary

A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker to construct a malicious request to bypass validation and access other URLs and sensitive information within the domain or conduct further attacks. This flaw affects any client that utilizes a wildcard in the Valid Redirect URIs field, and requires user interaction within the malicious URL.

References

▼	URL	Tags
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1860
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1861
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1862
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1864
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1866
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1867
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1868
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:2945
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:3752
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:3762
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:3919
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:3989
	secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2024-1132
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2262117
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1860
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1861
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1862
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1864
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1866
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1867
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1868
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:2945
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:3752
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:3762
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:3919
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:3989
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/security/cve/CVE-2024-1132
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=2262117

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker to construct a malicious request to bypass validation and access other URLs and sensitive information within the domain or conduct further attacks. This flaw affects any client that utilizes a wildcard in the Valid Redirect URIs field, and requires user interaction within the malicious URL.",
      },
      {
         lang: "es",
         value: "Se encontró una falla en Keycloak, donde no valida correctamente las URL incluidas en una redirección. Este problema podría permitir a un atacante crear una solicitud maliciosa para eludir la validación y acceder a otras URL e información confidencial dentro del dominio o realizar más ataques. Esta falla afecta a cualquier cliente que utilice un comodín en el campo URI de redireccionamiento válido y requiere la interacción del usuario dentro de la URL maliciosa.",
      },
   ],
   id: "CVE-2024-1132",
   lastModified: "2024-11-21T08:49:52.017",
   metrics: {
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 8.1,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "REQUIRED",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
               version: "3.1",
            },
            exploitabilityScore: 2.8,
            impactScore: 5.2,
            source: "secalert@redhat.com",
            type: "Secondary",
         },
      ],
   },
   published: "2024-04-17T14:15:07.953",
   references: [
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:1860",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:1861",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:1862",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:1864",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:1866",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:1867",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:1868",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:2945",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:3752",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:3762",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:3919",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/errata/RHSA-2024:3989",
      },
      {
         source: "secalert@redhat.com",
         url: "https://access.redhat.com/security/cve/CVE-2024-1132",
      },
      {
         source: "secalert@redhat.com",
         url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262117",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:1860",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:1861",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:1862",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:1864",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:1866",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:1867",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:1868",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:2945",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:3752",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:3762",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:3919",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/errata/RHSA-2024:3989",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://access.redhat.com/security/cve/CVE-2024-1132",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262117",
      },
   ],
   sourceIdentifier: "secalert@redhat.com",
   vulnStatus: "Awaiting Analysis",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-22",
            },
         ],
         source: "secalert@redhat.com",
         type: "Secondary",
      },
      {
         description: [
            {
               lang: "en",
               value: "CWE-22",
            },
         ],
         source: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
         type: "Secondary",
      },
   ],
}

cve-2024-1132

Vulnerability from cvelistv5

Published

2024-04-17 13:21

Modified

2025-03-03 14:54

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Summary

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2024:1860	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1861	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1862	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1864	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1866	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1867	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1868	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:2945	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3752	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3762	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3919	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3989	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-1132	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2262117	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

▼

Version: 21.1.0 ≤
Version: 23.0.0 ≤

Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-23 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-15 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-16 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-14 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	MTA-6.2-RHEL-9	Unaffected: 6.2.3-2 < * cpe:/a:redhat:migration_toolkit_applications:6.2::el8 cpe:/a:redhat:migration_toolkit_applications:6.2::el9
Red Hat	Red Hat AMQ Broker 7	cpe:/a:redhat:amq_broker:7.10
Red Hat	Red Hat AMQ Broker 7	cpe:/a:redhat:amq_broker:7.11
Red Hat	Red Hat AMQ Broker 7	cpe:/a:redhat:amq_broker:7.12
Red Hat	Red Hat build of Keycloak 22	Unaffected: 22.0.10-1 < * cpe:/a:redhat:build_keycloak:22::el9
Red Hat	Red Hat build of Keycloak 22	Unaffected: 22-13 < * cpe:/a:redhat:build_keycloak:22::el9
Red Hat	Red Hat build of Keycloak 22	Unaffected: 22-16 < * cpe:/a:redhat:build_keycloak:22::el9
Red Hat	Red Hat build of Keycloak 22.0.10	cpe:/a:redhat:build_keycloak:22
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 7	Unaffected: 0:18.0.13-1.redhat_00001.1.el7sso < * cpe:/a:redhat:red_hat_single_sign_on:7.6::el7
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 8	Unaffected: 0:18.0.13-1.redhat_00001.1.el8sso < * cpe:/a:redhat:red_hat_single_sign_on:7.6::el8
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 9	Unaffected: 0:18.0.13-1.redhat_00001.1.el9sso < * cpe:/a:redhat:red_hat_single_sign_on:7.6::el9
Red Hat	RHEL-8 based Middleware Containers	Unaffected: 7.6-46 < * cpe:/a:redhat:rhosemc:1.0::el8
Red Hat	RHSSO 7.6.8	cpe:/a:redhat:red_hat_single_sign_on:7.6
Red Hat	Red Hat build of Apicurio Registry 2	cpe:/a:redhat:service_registry:2
Red Hat	Red Hat build of Quarkus	cpe:/a:redhat:quarkus:3
Red Hat	Red Hat Data Grid 8	cpe:/a:redhat:jboss_data_grid:8
Red Hat	Red Hat Decision Manager 7	cpe:/a:redhat:jboss_enterprise_brms_platform:7
Red Hat	Red Hat Fuse 7	cpe:/a:redhat:jboss_fuse:7
Red Hat	Red Hat JBoss Data Grid 7	cpe:/a:redhat:jboss_data_grid:7
Red Hat	Red Hat JBoss Enterprise Application Platform 6	cpe:/a:redhat:jboss_enterprise_application_platform:6
Red Hat	Red Hat JBoss Enterprise Application Platform 7	cpe:/a:redhat:jboss_enterprise_application_platform:7
Red Hat	Red Hat Process Automation 7	cpe:/a:redhat:jboss_enterprise_bpms_platform:7

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-1132",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-04-23T18:37:10.567431Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            problemTypes: [
               {
                  descriptions: [
                     {
                        cweId: "CWE-22",
                        description: "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
                        lang: "en",
                        type: "CWE",
                     },
                  ],
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-06-04T17:59:39.871Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
         {
            providerMetadata: {
               dateUpdated: "2024-08-01T18:26:30.564Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "RHSA-2024:1860",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:1860",
               },
               {
                  name: "RHSA-2024:1861",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:1861",
               },
               {
                  name: "RHSA-2024:1862",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:1862",
               },
               {
                  name: "RHSA-2024:1864",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:1864",
               },
               {
                  name: "RHSA-2024:1866",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:1866",
               },
               {
                  name: "RHSA-2024:1867",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:1867",
               },
               {
                  name: "RHSA-2024:1868",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:1868",
               },
               {
                  name: "RHSA-2024:2945",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:2945",
               },
               {
                  name: "RHSA-2024:3752",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:3752",
               },
               {
                  name: "RHSA-2024:3762",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:3762",
               },
               {
                  name: "RHSA-2024:3919",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:3919",
               },
               {
                  name: "RHSA-2024:3989",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2024:3989",
               },
               {
                  tags: [
                     "vdb-entry",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/security/cve/CVE-2024-1132",
               },
               {
                  name: "RHBZ#2262117",
                  tags: [
                     "issue-tracking",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262117",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://github.com/keycloak/keycloak",
               defaultStatus: "unaffected",
               packageName: "keycloak",
               versions: [
                  {
                     lessThan: "22.0.10",
                     status: "affected",
                     version: "21.1.0",
                     versionType: "semver",
                  },
                  {
                     lessThan: "24.0.3",
                     status: "affected",
                     version: "23.0.0",
                     versionType: "semver",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8",
               ],
               defaultStatus: "affected",
               packageName: "mtr/mtr-operator-bundle",
               product: "Migration Toolkit for Runtimes 1 on RHEL 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "1.2-23",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8",
               ],
               defaultStatus: "affected",
               packageName: "mtr/mtr-rhel8-operator",
               product: "Migration Toolkit for Runtimes 1 on RHEL 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "1.2-15",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8",
               ],
               defaultStatus: "affected",
               packageName: "mtr/mtr-web-container-rhel8",
               product: "Migration Toolkit for Runtimes 1 on RHEL 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "1.2-16",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8",
               ],
               defaultStatus: "affected",
               packageName: "mtr/mtr-web-executor-container-rhel8",
               product: "Migration Toolkit for Runtimes 1 on RHEL 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "1.2-14",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:migration_toolkit_applications:6.2::el8",
                  "cpe:/a:redhat:migration_toolkit_applications:6.2::el9",
               ],
               defaultStatus: "affected",
               packageName: "mta/mta-windup-addon-rhel9",
               product: "MTA-6.2-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "6.2.3-2",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:amq_broker:7.10",
               ],
               defaultStatus: "unaffected",
               packageName: "keycloak",
               product: "Red Hat AMQ Broker 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:amq_broker:7.11",
               ],
               defaultStatus: "unaffected",
               packageName: "keycloak",
               product: "Red Hat AMQ Broker 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:amq_broker:7.12",
               ],
               defaultStatus: "unaffected",
               packageName: "keycloak",
               product: "Red Hat AMQ Broker 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:build_keycloak:22::el9",
               ],
               defaultStatus: "affected",
               packageName: "rhbk/keycloak-operator-bundle",
               product: "Red Hat build of Keycloak 22",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "22.0.10-1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:build_keycloak:22::el9",
               ],
               defaultStatus: "affected",
               packageName: "rhbk/keycloak-rhel9",
               product: "Red Hat build of Keycloak 22",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "22-13",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:build_keycloak:22::el9",
               ],
               defaultStatus: "affected",
               packageName: "rhbk/keycloak-rhel9-operator",
               product: "Red Hat build of Keycloak 22",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "22-16",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:build_keycloak:22",
               ],
               defaultStatus: "unaffected",
               packageName: "keycloak",
               product: "Red Hat build of Keycloak 22.0.10",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:red_hat_single_sign_on:7.6::el7",
               ],
               defaultStatus: "affected",
               packageName: "rh-sso7-keycloak",
               product: "Red Hat Single Sign-On 7.6 for RHEL 7",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:18.0.13-1.redhat_00001.1.el7sso",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:red_hat_single_sign_on:7.6::el8",
               ],
               defaultStatus: "affected",
               packageName: "rh-sso7-keycloak",
               product: "Red Hat Single Sign-On 7.6 for RHEL 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:18.0.13-1.redhat_00001.1.el8sso",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:red_hat_single_sign_on:7.6::el9",
               ],
               defaultStatus: "affected",
               packageName: "rh-sso7-keycloak",
               product: "Red Hat Single Sign-On 7.6 for RHEL 9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:18.0.13-1.redhat_00001.1.el9sso",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:rhosemc:1.0::el8",
               ],
               defaultStatus: "affected",
               packageName: "rh-sso-7/sso76-openshift-rhel8",
               product: "RHEL-8 based Middleware Containers",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "7.6-46",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:red_hat_single_sign_on:7.6",
               ],
               defaultStatus: "unaffected",
               packageName: "keycloak",
               product: "RHSSO 7.6.8",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:service_registry:2",
               ],
               defaultStatus: "affected",
               packageName: "keycloak",
               product: "Red Hat build of Apicurio Registry 2",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:quarkus:3",
               ],
               defaultStatus: "affected",
               packageName: "org.keycloak/keycloak-core",
               product: "Red Hat build of Quarkus",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:jboss_data_grid:8",
               ],
               defaultStatus: "unaffected",
               packageName: "org.wildfly.security-wildfly-elytron-parent",
               product: "Red Hat Data Grid 8",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:jboss_enterprise_brms_platform:7",
               ],
               defaultStatus: "unknown",
               packageName: "keycloak",
               product: "Red Hat Decision Manager 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:jboss_fuse:7",
               ],
               defaultStatus: "affected",
               packageName: "keycloak",
               product: "Red Hat Fuse 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:jboss_data_grid:7",
               ],
               defaultStatus: "unaffected",
               packageName: "keycloak",
               product: "Red Hat JBoss Data Grid 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:jboss_enterprise_application_platform:6",
               ],
               defaultStatus: "unknown",
               packageName: "keycloak",
               product: "Red Hat JBoss Enterprise Application Platform 6",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:jboss_enterprise_application_platform:7",
               ],
               defaultStatus: "unaffected",
               packageName: "keycloak",
               product: "Red Hat JBoss Enterprise Application Platform 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:jboss_enterprise_bpms_platform:7",
               ],
               defaultStatus: "affected",
               packageName: "keycloak",
               product: "Red Hat Process Automation 7",
               vendor: "Red Hat",
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Red Hat would like to thank Axel Flamcourt for reporting this issue.",
            },
         ],
         datePublic: "2024-04-16T00:00:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker to construct a malicious request to bypass validation and access other URLs and sensitive information within the domain or conduct further attacks. This flaw affects any client that utilizes a wildcard in the Valid Redirect URIs field, and requires user interaction within the malicious URL.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Important",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-22",
                     description: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-03T14:54:33.245Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               name: "RHSA-2024:1860",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:1860",
            },
            {
               name: "RHSA-2024:1861",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:1861",
            },
            {
               name: "RHSA-2024:1862",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:1862",
            },
            {
               name: "RHSA-2024:1864",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:1864",
            },
            {
               name: "RHSA-2024:1866",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:1866",
            },
            {
               name: "RHSA-2024:1867",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:1867",
            },
            {
               name: "RHSA-2024:1868",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:1868",
            },
            {
               name: "RHSA-2024:2945",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:2945",
            },
            {
               name: "RHSA-2024:3752",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:3752",
            },
            {
               name: "RHSA-2024:3762",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:3762",
            },
            {
               name: "RHSA-2024:3919",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:3919",
            },
            {
               name: "RHSA-2024:3989",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2024:3989",
            },
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2024-1132",
            },
            {
               name: "RHBZ#2262117",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262117",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2024-01-31T00:00:00+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2024-04-16T00:00:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Keycloak: path transversal in redirection validation",
         workarounds: [
            {
               lang: "en",
               value: "No current mitigation is available for this vulnerability.",
            },
         ],
         x_redhatCweChain: "CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-1132",
      datePublished: "2024-04-17T13:21:19.130Z",
      dateReserved: "2024-01-31T17:07:33.455Z",
      dateUpdated: "2025-03-03T14:54:33.245Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted