0.001 Low
EPSS
Percentile
33.2%
org.keycloak:keycloak-parent is vulnerable to Insecure Permissions. An attacker is able to shadow other users with the same email and impersonate or lockout the victim due to the email trust not being handled correctly.
access.redhat.com/security/cve/CVE-2023-0105
bugzilla.redhat.com/show_bug.cgi?id=2158910