CVE-2020-10758

Summary

A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value that exceeds the actual byte count of the request body.

Affected Software

VendorProductVersion RangeStatus
n/aKeycloakKeycloak before 11.0.1affected

Weaknesses

  • Denial of service

ADP Enrichment

CVE Program Container

Additional References

References