In Keycloak versions before 25.0.6 a medium severity vulnerability CVE-2023-6841 was detected. This vulnerability allows attackers to initiate a denial of service by sending repeated HTTP requests, causing resource exhaustion. To fix this issue users should upgrade to version 25.0.6. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2023-6841.
Keycloak: Upgrade Required to Prevent Exploits
by the Hossted team
12.09.2024
12.09.2024