๐Ÿ” CVE Alert

CVE-2023-6134

MEDIUM 4.6

Keycloak: reflected xss via wildcard in oidc redirect_uri

CVSS Score
4.6
EPSS Score
0.0%
EPSS Percentile
0th

A flaw was found in Keycloak that prevents certain schemes in redirects, but permits them if a wildcard is appended to the token. This issue could allow an attacker to submit a specially crafted request leading to cross-site scripting (XSS) or further attacks. This flaw is the result of an incomplete fix for CVE-2020-10748.

CWE CWE-79
Vendor red hat
Product red hat build of keycloak 22
Published Dec 14, 2023
Last Updated Feb 25, 2026
Stay Ahead of the Next One

Get instant alerts for red hat red hat build of keycloak 22

Be the first to know when new medium vulnerabilities affecting red hat red hat build of keycloak 22 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None

Affected Versions

Red Hat / Red Hat build of Keycloak 22
All versions affected
Red Hat / Red Hat build of Keycloak 22
All versions affected
Red Hat / Red Hat build of Keycloak 22
All versions affected
Red Hat / Red Hat build of Keycloak 22.0.7
All versions affected
Red Hat / Red Hat Single Sign-On 7
All versions affected
Red Hat / Red Hat Single Sign-On 7.6 for RHEL 7
All versions affected
Red Hat / Red Hat Single Sign-On 7.6 for RHEL 7
All versions affected
Red Hat / Red Hat Single Sign-On 7.6 for RHEL 8
All versions affected
Red Hat / Red Hat Single Sign-On 7.6 for RHEL 8
All versions affected
Red Hat / Red Hat Single Sign-On 7.6 for RHEL 9
All versions affected
Red Hat / Red Hat Single Sign-On 7.6 for RHEL 9
All versions affected
Red Hat / RHEL-8 based Middleware Containers
All versions affected
Red Hat / RHEL-8 based Middleware Containers
All versions affected
Red Hat / RHEL-8 based Middleware Containers
All versions affected
Red Hat / Single Sign-On 7.6.6
All versions affected

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7854 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7855 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7856 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7857 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7858 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7860 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7861 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0798 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0799 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0800 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0801 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0804 access.redhat.com: https://access.redhat.com/security/cve/CVE-2023-6134 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2249673

Credits

Red Hat would like to thank Lauritz Holtmann (https://security.lauritz-holtmann.de/) for reporting this issue.