GHSA-f4v7-3mww-9gc2
Suggest an improvement- Source
- https://github.com/advisories/GHSA-f4v7-3mww-9gc2
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/01/GHSA-f4v7-3mww-9gc2/GHSA-f4v7-3mww-9gc2.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-f4v7-3mww-9gc2
- Aliases
-
- CVE-2024-11736
- Published
- 2025-01-13T16:58:08Z
- Modified
- 2025-01-14T17:18:44.368353Z
- Severity
-
- 4.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- Keycloak allows unrestricted admin use of system and environment variables
- Details
-
A security vulnerability has been identified that allows admin users to access sensitive server environment variables and system properties through user-configurable URLs. Specifically, when configuring backchannel logout URLs or admin URLs, admin users can include placeholders like ${env.VARNAME} or ${PROPNAME}. The server replaces these placeholders with the actual values of environment variables or system properties during URL processing.
- Database specific
{ "nvd_published_at": "2025-01-14T09:15:20Z", "cwe_ids": [ "CWE-526" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2025-01-13T16:58:08Z" }- References
-
- https://github.com/keycloak/keycloak/security/advisories/GHSA-f4v7-3mww-9gc2
- https://nvd.nist.gov/vuln/detail/CVE-2024-11736
- https://github.com/keycloak/keycloak/commit/7a76858fe4aa39a39fb6b86dd3d2c113d9c59854
- https://access.redhat.com/errata/RHSA-2025:0299
- https://access.redhat.com/errata/RHSA-2025:0300
- https://access.redhat.com/security/cve/CVE-2024-11736
- https://bugzilla.redhat.com/show_bug.cgi?id=2328850
- https://github.com/keycloak/keycloak
Affected packages
Maven / org.keycloak:keycloak-quarkus-server
Package
- Name
- org.keycloak:keycloak-quarkus-server
- View open source insights on deps.dev
- Purl
- pkg:maven/org.keycloak/keycloak-quarkus-server
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed26.0.8
Affected versions
12.*
12.0.0
12.0.1
12.0.2
12.0.3
12.0.4
13.*
13.0.0
13.0.1
14.*
14.0.0
15.*
15.0.0
15.0.1
15.0.2
15.1.0
15.1.1
16.*
16.0.0
16.1.0
16.1.1
17.*
17.0.0
17.0.1
18.*
18.0.0
18.0.1
18.0.2
19.*
19.0.0
19.0.1
19.0.2
19.0.3
20.*
20.0.0
20.0.1
20.0.2
20.0.3
20.0.4
20.0.5
21.*
21.0.0
21.0.1
21.0.2
21.1.0
21.1.1
21.1.2
22.*
22.0.0
22.0.1
22.0.2
22.0.3
22.0.4
22.0.5
23.*
23.0.0
23.0.1
23.0.2
23.0.3
23.0.4
23.0.5
23.0.6
23.0.7
24.*
24.0.0
24.0.1
24.0.2
24.0.3
24.0.4
24.0.5
25.*
25.0.0
25.0.1
25.0.2
25.0.3
25.0.4
25.0.5
25.0.6
26.*
26.0.0
26.0.1
26.0.2
26.0.4
26.0.5
26.0.6
26.0.7