CVE-2020-1723

Summary

A flaw was found in Keycloak Gatekeeper (Louketo). The logout endpoint can be abused to redirect logged-in users to arbitrary web pages. Affected versions of Keycloak Gatekeeper (Louketo): 6.0.1, 7.0.0

Affected Software

VendorProductVersion RangeStatus
LouketoKeycloak Gatekeeper6.0.1affected
LouketoKeycloak Gatekeeper7.0.0affected

Weaknesses

  • CWE-601: CWE-601

ADP Enrichment

CVE Program Container

Additional References

References