Keycloak: Improper Token Type Enforcement in Signature Validation
CVE-2023-0657 Published on November 17, 2024

Keycloak: impersonation via logout token exchange
A flaw was found in Keycloak. This issue occurs due to improperly enforcing token types when validating signatures locally. This could allow an authenticated attacker to exchange a logout token for an access token and possibly gain access to data outside of enforced permissions.

Vendor Advisory Vendor Advisory NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

HIGH

Privileges Required:

LOW

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

LOW

Integrity Impact:

LOW

Availability Impact:

NONE

Timeline

2023-02-02

Reported to Red Hat.

2024-04-16

Made public. 439 days later.

Weakness Type

Improper Check for Dropped Privileges

The software attempts to drop privileges but does not check or incorrectly checks to see if the drop succeeded. If the drop fails, the software will continue to run with the raised privileges, which might provide additional access to unprivileged users.

Products Associated with CVE-2023-0657

Want to know whenever a new CVE is published for Red Hat Keycloak? stack.watch will email you.

Red Hat Keycloak

Exploit Probability

EPSS

0.04%

Percentile

11.88%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.