VYPR

Keycloak Nodejs Auth Utils

by Keycloak

CVEs (1)

  • CVE-2017-7474CriMay 12, 2017
    risk 0.64cvss 9.8epss 0.03

    It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. An attacker could use this flaw to bypass authentication and gain access to restricted information, or to possibly conduct further attacks.