← back
CVE-2020-1723

CVE-2020-1723

EPSS 1.0%CWE-601
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
28 Jan 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A flaw was found in Keycloak Gatekeeper (Louketo). The logout endpoint can be abused to redirect logged-in users to arbitrary web pages. Affected versions of Keycloak Gatekeeper (Louketo): 6.0.1, 7.0.0
Affected products
Louketo · Keycloak Gatekeeper

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=1770276https://issues.redhat.com/browse/KEYCLOAK-11318