← back
CVE-2020-10758

CVE-2020-10758

EPSS 2.2%
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value that exceeds the actual byte count of the request body.
Affected products
n/a · Keycloak

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=1843849https://github.com/keycloak/keycloak/commit/bee4ca89897766c4b68856eafe14f1a3dad34251