CVE-2022-1245

A privilege escalation flaw was found in the token exchange feature of keycloak. Missing authorization allows a client application holding a valid access token to exchange tokens for any target client by passing the client_id of the target. This could allow a client to gain unauthorized access to additional services.

Published: Jul 8, 2022
Updated: Jun 28, 2023
CVE: CVE-2022-1245
GHSA: GHSA-75p6-52g3-rqc8
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-863
CWE-862
CWE-639

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
redhat / keycloak	-	18.0.0
org.keycloak / keycloak-services	-	18.0.0

https://github.com/keycloak/keycloak/commit/76d83f46fad94ebcbedaa49e6daad458e2894e52
https://github.com/keycloak/keycloak/security/advisories/GHSA-75p6-52g3-rqc8

Vulnerability Database

289,599

CVE-2022-1245