CVE-2021-3424 is a vulnerability in Red Hat Single Sign On
Published on June 1, 2021

A flaw was found in keycloak as shipped in Red Hat Single Sign-On 7.4 where IDN homograph attacks are possible. A malicious user can register himself with a name already registered and trick admin to grant him extra privileges.

NVD

Weakness Type

What is an authentification Vulnerability?

When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

CVE-2021-3424 has been classified to as an authentification vulnerability or weakness.

Products Associated with CVE-2021-3424

Want to know whenever a new CVE is published for Red Hat Single Sign On? stack.watch will email you.

Red Hat Single Sign On

Exploit Probability

EPSS

0.16%

Percentile

37.09%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-3424 is a vulnerability in Red Hat Single Sign OnPublished on June 1, 2021

Weakness Type

What is an authentification Vulnerability?

Products Associated with CVE-2021-3424

Exploit Probability

CVE-2021-3424 is a vulnerability in Red Hat Single Sign On
Published on June 1, 2021