keycloak CVE-2019-3875 Man in the Middle Security Bypass Vulnerability

Bugtraq ID: 108748
Class: Design Error
CVE: CVE-2019-3875
Remote: Yes
Local: No
Published: Jun 11 2019 12:00AM
Updated: Jun 11 2019 12:00AM
Credit: Marek Posolda (Red Hat).
Vulnerable: Redhat Single Sign-On 7.0
+ Redhat Linux 6.2 E sparc
+ Redhat Linux 6.2 E i386
+ Redhat Linux 6.2 E alpha
+ Redhat Linux 6.2 sparc
+ Redhat Linux 6.2 i386
+ Redhat Linux 6.2 alpha
Redhat keycloak 6.0.1
Redhat keycloak 6.0
Redhat keycloak 5.0
Redhat keycloak 4.8.3
Redhat keycloak 4.8
Redhat keycloak 3.1
Redhat keycloak 1.0.3
Redhat keycloak 2.5.5
Redhat keycloak 2.5
Redhat keycloak 2.3
+ Redhat Linux 6.2 E sparc
+ Redhat Linux 6.2 E i386
+ Redhat Linux 6.2 E alpha
+ Redhat Linux 6.2 sparc
+ Redhat Linux 6.2 i386
+ Redhat Linux 6.2 alpha
Redhat keycloak 2.2.0
+ Redhat Linux 7.0
Redhat keycloak 2.1
+ Redhat Linux 6.2 E sparc
+ Redhat Linux 6.2 E i386
+ Redhat Linux 6.2 E alpha
+ Redhat Linux 6.2 sparc
+ Redhat Linux 6.2 i386
+ Redhat Linux 6.2 alpha
Redhat keycloak 2.0
+ Redhat Linux 7.0
Not Vulnerable: Redhat keycloak 6.0.2


 

Privacy Statement
Copyright 2010, SecurityFocus