UNKNOWN Maven
Keycloak vulnerable to LDAP Injection on UsernameForm Login
GHSA-8hc5-rmgf-qx6p · CVE-2022-2232
Published · Modified
Description
A flaw was found in the Keycloak package. This flaw allows an attacker to benefit from an LDAP query and access existing usernames in the server.
Ready to move
Start Securing
Free, no credit card | First findings in minutes