0.002 Low
EPSS
Percentile
53.0%
org.keycloak:keycloak-services is vulnerable to Path Traversal. The vulnerability is due to improper redirect URL validation, which lets an attacker bypass validation for redirects and access sensitive information on the domain.
access.redhat.com/security/cve/CVE-2022-3782
github.com/advisories/GHSA-g8q8-fggx-9r3q
github.com/keycloak/keycloak/commit/1987c942f527b9f3bbf2a86ba71ba8ae0154ac37
github.com/keycloak/keycloak/pull/8