Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2020-1717

A flaw was found in Keycloak 7.0.1. A logged in user can do an account email enumeration attack.

CVSS v3:

  • Severity: Low
  • Score: 2.7
  • AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

  • Severity: Low
  • Score: 4
  • AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
redhat / keycloak 7.0.1 7.0.1.x
redhat / single_sign-on 7.0 7.0.x
redhat / jboss_fuse 7.0.0 7.0.0.x
org.keycloak / keycloak-parent - 7.0.1.x