A flaw was found in Keycloak. This issue may allow an attacker to steal authorization codes or tokens from clients using a wildcard in the JARM response mode "form_post.jwt" which could be used to bypass the security patch implemented to address CVE-2023-6134.
rh-sso-7/sso7-rhel8 Red Hat / RHEL
Fixed in: operator-bundle@sha256:438375181ff28d5a61510a07f6e16d11944ebd6cc0a20961e06f662db3a16b1c_amd64 RHSA-2024:0097 rh-sso-7/sso7-rhel8 Rocky
Fixed in: operator-bundle@sha256:438375181ff28d5a61510a07f6e16d11944ebd6cc0a20961e06f662db3a16b1c_amd64 RHSA-2024:0097 rh-sso-7/sso76 Rocky
Fixed in: openshift-rhel8@sha256:1f39a66794485f27da60afe31e8c7f5db5ece4bcf5a457ee7bad4a72ee70ce2e_amd64 RHSA-2024:0097 Fixed in: openshift-rhel8@sha256:b145d1c7d0939d5b44234e2a9fbe7d0aba7b579e4aaf2c4977f8fde6aa97bff2_ppc64le RHSA-2024:0097 Fixed in: openshift-rhel8@sha256:7b10d4158944fd6c65f16c8b8cd57fb45c7a8c2cc0528bcce127218368ba41c3_s390x RHSA-2024:0097 Fixed in: openshift-rhel8@sha256:1cde6dbbee3aa25be767953c45670d4c2592d61a7af776e7e0d0d1b08a1d23ab_amd64 RHSA-2024:0801 Fixed in: openshift-rhel8@sha256:2a21973655961ae87984bf1b76843419680fb0228fa0084c5bf8c696058bbc8d_ppc64le RHSA-2024:0801 Fixed in: openshift-rhel8@sha256:23d03851f0946e0ce058bfeeb458112e752b6b0dd8ebca078dc41b8e94c8e995_s390x RHSA-2024:0801 rh-sso-7/sso76 Red Hat / RHEL
Fixed in: openshift-rhel8@sha256:1cde6dbbee3aa25be767953c45670d4c2592d61a7af776e7e0d0d1b08a1d23ab_amd64 RHSA-2024:0801 Fixed in: openshift-rhel8@sha256:2a21973655961ae87984bf1b76843419680fb0228fa0084c5bf8c696058bbc8d_ppc64le RHSA-2024:0801 Fixed in: openshift-rhel8@sha256:23d03851f0946e0ce058bfeeb458112e752b6b0dd8ebca078dc41b8e94c8e995_s390x RHSA-2024:0801 Fixed in: openshift-rhel8@sha256:b145d1c7d0939d5b44234e2a9fbe7d0aba7b579e4aaf2c4977f8fde6aa97bff2_ppc64le RHSA-2024:0097 Fixed in: openshift-rhel8@sha256:1f39a66794485f27da60afe31e8c7f5db5ece4bcf5a457ee7bad4a72ee70ce2e_amd64 RHSA-2024:0097 Fixed in: openshift-rhel8@sha256:7b10d4158944fd6c65f16c8b8cd57fb45c7a8c2cc0528bcce127218368ba41c3_s390x RHSA-2024:0097 rh-sso7-keycloak Red Hat / RHEL
rh-sso7-keycloak-server Red Hat / RHEL
rh-sso7-keycloak-server Rocky
rhbk/keycloak Red Hat / RHEL
Fixed in: rhel9-operator@sha256:b24d774edf776b6514935c8a6dc4822891039311f76b104300348418ffda90cc_amd64 RHSA-2024:0100 Fixed in: operator-bundle@sha256:47323bf5e0d1ec70bfec6d7dd476d1076d879d26cc166af451579e79a56046ec_amd64 RHSA-2024:0100 Fixed in: rhel9@sha256:7a4e96d7b7b1d25bcc5ce00ea6c5d8d609e9c3368b60972c3995011565ffe5c8_amd64 RHSA-2024:0100 Fixed in: rhel9-operator@sha256:32817f8250713ae02ef6a1c6837298032ca49b27ff4af3c35c9bb763ad47ba75_s390x RHSA-2024:0100 Fixed in: rhel9@sha256:c2c04c0b330cf4e13b6e22377e20cfed6648bfabaca8d9b30ed0cea730e7b7bf_s390x RHSA-2024:0100 Fixed in: rhel9-operator@sha256:bb21253f5563ba154c9dbd28560443a5d747211232c70645f4aa61f8e3f30bdf_ppc64le RHSA-2024:0100 Fixed in: rhel9@sha256:88f657f1f805ec611ff6ffab89704d86de4affa6cd024be3bd79658561fd544c_ppc64le RHSA-2024:0100 rhbk/keycloak Rocky
Fixed in: rhel9@sha256:88f657f1f805ec611ff6ffab89704d86de4affa6cd024be3bd79658561fd544c_ppc64le RHSA-2024:0100 Fixed in: rhel9-operator@sha256:bb21253f5563ba154c9dbd28560443a5d747211232c70645f4aa61f8e3f30bdf_ppc64le RHSA-2024:0100 Fixed in: rhel9@sha256:c2c04c0b330cf4e13b6e22377e20cfed6648bfabaca8d9b30ed0cea730e7b7bf_s390x RHSA-2024:0100 Fixed in: rhel9-operator@sha256:32817f8250713ae02ef6a1c6837298032ca49b27ff4af3c35c9bb763ad47ba75_s390x RHSA-2024:0100 Fixed in: rhel9@sha256:7a4e96d7b7b1d25bcc5ce00ea6c5d8d609e9c3368b60972c3995011565ffe5c8_amd64 RHSA-2024:0100 Fixed in: operator-bundle@sha256:47323bf5e0d1ec70bfec6d7dd476d1076d879d26cc166af451579e79a56046ec_amd64 RHSA-2024:0100 Fixed in: rhel9-operator@sha256:b24d774edf776b6514935c8a6dc4822891039311f76b104300348418ffda90cc_amd64 RHSA-2024:0100 Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.
Exploitability
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction Required
Scope Unchanged
Impact
Confidentiality Low
Integrity Low
Availability None
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1.11% probability of exploitation in 30 days
62nd percentile
Moderate risk: more likely to be exploited than 62% of all known CVEs.
Other CWE-601 (Open Redirect) vulnerabilities, ordered by exploit likelihood. View all
Embed a live status badge for CVE-2023-6927 Markdown
[](https://tridentstack.com/cve/CVE-2023-6927)HTML
<a href="https://tridentstack.com/cve/CVE-2023-6927"><img src="https://tridentstack.com/cve/badge/CVE-2023-6927.svg" alt="CVE-2023-6927"></a>Find and fix vulnerabilities across your fleet TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.
Start free This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.