Redhat KeyCloak CVE-2019-3868 Session Hijacking Vulnerability

Bugtraq ID: 108061
Class: Design Error
CVE: CVE-2019-3868
Remote: Yes
Local: No
Published: Apr 23 2019 12:00AM
Updated: Apr 23 2019 12:00AM
Credit: The vendor reported this issue.
Vulnerable: Redhat Single Sign-On 7.2 for RHEL 7 Server 0
Redhat Single Sign-On 7.2 for RHEL 6 Server 0
Redhat Single Sign-On 7.0
+ Redhat Linux 6.2 E sparc
+ Redhat Linux 6.2 E i386
+ Redhat Linux 6.2 E alpha
+ Redhat Linux 6.2 sparc
+ Redhat Linux 6.2 i386
+ Redhat Linux 6.2 alpha
Redhat keycloak 6.0
Redhat keycloak 5.0
Redhat keycloak 4.8
Redhat keycloak 3.1
Redhat keycloak 1.0.3
Redhat keycloak 2.5.5
Redhat keycloak 2.5
Redhat keycloak 2.3
+ Redhat Linux 6.2 E sparc
+ Redhat Linux 6.2 E i386
+ Redhat Linux 6.2 E alpha
+ Redhat Linux 6.2 sparc
+ Redhat Linux 6.2 i386
+ Redhat Linux 6.2 alpha
Redhat keycloak 2.2.0
+ Redhat Linux 7.0
Redhat keycloak 2.1
+ Redhat Linux 6.2 E sparc
+ Redhat Linux 6.2 E i386
+ Redhat Linux 6.2 E alpha
+ Redhat Linux 6.2 sparc
+ Redhat Linux 6.2 i386
+ Redhat Linux 6.2 alpha
Redhat keycloak 2.0
+ Redhat Linux 7.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus