REDHAT-BUG-1790759: Low severity JBoss Keycloak NodeJS Adapter vulnerability

Published Jan 14, 2020

Updated

Bug URL: https://issues.jboss.org/browse/KEYCLOAK-10389

In order to be aligned with the other adapters, the NodeJS Adapter should also support the "verify-token-audience" configuration parameter.

Affected Software

1 affected component

JBoss Keycloak NodeJS Adapter

Event History

Jan 14, 2020

Data Sourced

via Red Hat·06:13 AM

DescriptionSeverityAffected Software

Frequently Asked Questions

What is the severity of REDHAT-BUG-1790759?

The severity of REDHAT-BUG-1790759 is categorized as a medium-impact issue due to its implications on token validation.

How do I fix REDHAT-BUG-1790759?

To resolve REDHAT-BUG-1790759, update the JBoss Keycloak NodeJS Adapter to the latest version that includes the 'verify-token-audience' configuration support.

What is the impact of REDHAT-BUG-1790759?

The impact of REDHAT-BUG-1790759 is that the absence of the 'verify-token-audience' configuration may lead to improper audience verification for tokens.

Is REDHAT-BUG-1790759 applicable to all versions of the JBoss Keycloak NodeJS Adapter?

REDHAT-BUG-1790759 impacts specific versions of the JBoss Keycloak NodeJS Adapter that do not support the 'verify-token-audience' parameter.

When was REDHAT-BUG-1790759 reported?

REDHAT-BUG-1790759 was reported in 2020 as part of ongoing improvements to the JBoss Keycloak NodeJS Adapter.

REDHAT-BUG-1790759: Low severity JBoss Keycloak NodeJS Adapter vulnerability

Affected Software

Event History

Don't miss critical vulnerabilities

Frequently Asked Questions

What is the severity of REDHAT-BUG-1790759?

How do I fix REDHAT-BUG-1790759?

What is the impact of REDHAT-BUG-1790759?

Is REDHAT-BUG-1790759 applicable to all versions of the JBoss Keycloak NodeJS Adapter?

When was REDHAT-BUG-1790759 reported?

Company

Resources

Contact