CVE-2021-3513
CVE-2021-3513
A flaw was found in keycloak where a brute force attack is possible even when the permanent lockout feature is enabled. This is due to a wrong error message displayed when wrong credentials are entered. The highest threat from this vulnerability is to confidentiality.
Affected products
n/a · keycloakWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →