From this webpage screenshot, the following key vulnerability information can be obtained: 1. Vulnerability ID: RHSA-2024:69 2. Release Date: 2024-09-09 3. Type/Severity: Security Advisory, Moderate 4. Subject: New Red Hat build of Keycloak 24.0.7 packages are available from the Customer Portal 5. Description: - Red Hat build of Keycloak 24.0.7 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. - Security fixes: - Session fixation in Elytron SAML adapters (CVE-2024-7341) - One Time Passcode (OTP) is valid longer than expiration time (CVE-2024-7318) - Open Redirect on Account page (CVE-2024-7260) 6. Solution: - Before applying the update, back up your existing installation, including all applications, configuration files, databases, and database settings, etc. 7. Affected Products: - Red Hat build of Keycloak 22 x86_64 8. Fixes: - BZ - 2301875 - CVE-2024-7260 keycloak-core: Open Redirect on Account page - BZ - 2301876 - CVE-2024-7318 keycloak-core: One Time Passcode (OTP) is valid longer than expiration time - BZ - 2302064 - CVE-2024-7341 wildfly-elytron: org.keycloak/keycloak-services: session fixation in elytron saml adapters 9. CVEs: - CVE-2024-7260 - CVE-2024-7318 - CVE-2024-7341 10. Reference Links: - https://access.redhat.com/security/updates/classification/#moderate This information provides detailed descriptions of the vulnerabilities, remediation steps, and affected products.