CVE-2024-3656
- Reference to the description:
- Description:
- A flaw was found in Keycloak. Certain endpoints in Keycloak's admin REST API allow low-privilege users to access administrative functionalities. This flaw allows users to perform actions reserved for administrators, potentially leading to data breaches or system compromise.
- Last updated date:
- 12/23/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 10/12/2024
- Reference url to background