CVE-2024-7260— Keycloak-core: open redirect on account page
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-7260
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Keycloak-core: open redirect on account page
Source: NVD (National Vulnerability Database)
Vulnerability Description
An open redirect vulnerability was found in Keycloak. A specially crafted URL can be constructed where the referrer and referrer_uri parameters are made to trick a user to visit a malicious webpage. A trusted URL can trick users and automation into believing that the URL is safe, when, in fact, it redirects to a malicious server. This issue can result in a victim inadvertently trusting the destination of the redirect, potentially leading to a successful phishing attack or other types of attacks. Once a crafted URL is made, it can be sent to a Keycloak admin via email for example. This will trigger this vulnerability when the user visits the page and clicks the link. A malicious actor can use this to target users they know are Keycloak admins for further attacks. It may also be possible to bypass other domain-related security checks, such as supplying this as a OAuth redirect uri. The malicious actor can further obfuscate the redirect_uri using URL encoding, to hide the text of the actual malicious website domain.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
指向未可信站点的URL重定向(开放重定向)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Red Hat Keycloak 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Red Hat Keycloak是美国红帽(Red Hat)公司的一套为现代应用和服务提供身份验证和管理功能的软件。 Red Hat Keycloak存在输入验证错误漏洞,该漏洞源于包含一个开放重定向漏洞。攻击者利用该漏洞可以构建特制的 URL,使用referrer和referrer_uri参数来诱骗用户访问恶意网页。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Red Hat | Red Hat Build of Keycloak | - | cpe:/a:redhat:build_keycloak:24 | |
| Red Hat | Red Hat build of Keycloak 24 | 24.0.7-4 ~ * | cpe:/a:redhat:build_keycloak:24::el9 | |
| Red Hat | Red Hat build of Keycloak 24 | 24-16 ~ * | cpe:/a:redhat:build_keycloak:24::el9 | |
| Red Hat | Red Hat build of Keycloak 24 | 24-16 ~ * | cpe:/a:redhat:build_keycloak:24::el9 |
II. Public POCs for CVE-2024-7260
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-7260
请登录查看更多情报信息。
- 2301875 – (CVE-2024-7260) CVE-2024-7260 keycloak-core: Open Redirect on Account pageissue-trackingx_refsource_REDHAT
- https://nvd.nist.gov/vuln/detail/CVE-2024-7260
IV. Related Vulnerabilities
Same weakness: CWE-601
- CVE-2026-42350
Kargo: Open Redirect in UI OIDC Login Flow via redirectTo Qu - CVE-2026-42195
Unvalidated gitlab URL parameter redirects OAuth authorize s - CVE-2026-3318
Multiple vulnerabilities in Cradle e-commerce - CVE-2026-42259
Saltcorn: Open Redirect in `POST /auth/login` due to incompl - CVE-2026-6795
Open Redirect in DivvyDrive Information Technologies' DivvyD
V. Comments for CVE-2024-7260
No comments yet