Lucene search
Redhat.comRH:CVE-2020-1728HistoryApr 08, 2020 - 9:16 p.m.
CVE-2020-1728
2020-04-0821:16:58
redhat.com
access.redhat.com
11
0.001 Low
EPSS
Percentile
33.8%
A flaw was found in Keycloak’s Admin Console, where it is missing HTTP security headers in HTTP responses. This issue is not a direct vulnerability and may not lead to a security issue, but increases the chances of allowing attackers to exploit other security flaws. Examples of these possible exploits are servers being prone to clickjacking, channel downgrade attacks, and other similar client-based attack vectors.
Related
cve
cve
CVE-2020-1728
2020-04-06 14:15:12
github
github
Improper Restriction of Rendered UI Layers or Frames in Keycloak
2020-04-15 21:09:40
osv
osv
Improper Restriction of Rendered UI Layers or Frames in Keycloak
2020-04-15 21:09:40
CVE-2020-1728
2020-04-06 14:15:12
cvelist
cvelist
CVE-2020-1728
2020-04-06 13:04:23
veracode
veracode
Missing HTTP Security Headers
2020-04-16 06:46:23
prion
prion
Design/Logic Flaw
2020-04-06 14:15:00
redhat
redhat
nvd
nvd
CVE-2020-1728
2020-04-06 14:15:12
nessus
nessus