An information disclosure... CVE-2023-49594

- AV AC AU C I A
发布: 2023-12-23
修订: 2024-01-17

An information disclosure vulnerability exists in the challenge functionality of instipod DuoUniversalKeycloakAuthenticator 1.0.7 plugin. A specially crafted HTTP request can lead to a disclosure of sensitive information. A user logging into Keycloak using DuoUniversalKeycloakAuthenticator plugin triggers this vulnerability.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息