CVE-2022-4361

CRITICAL LAB

Keycloak - XSS

Title source: llm

Description

Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC providers. The vulnerability can allow an attacker to execute malicious scripts by setting the AssertionConsumerServiceURL value or the redirect_uri.

Exploits (2)

nomisec WORKING POC 1 stars

by faccimatteo · poc

https://github.com/faccimatteo/CVE-2022-4361

View Code ZIP pw:eip

nomisec WORKING POC

by shoucheng3 · poc

https://github.com/shoucheng3/keycloak__keycloak_CVE-2022-4361_21-1-1

View Code ZIP pw:eip

References (2)

[Issue Tracking, Vendor Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=2151618

[Patch] https://github.com/keycloak/keycloak/commit/a1cfe6e24e5b34792699a00b8b4a8016a5929e3a

Scores

CVSS v3 10.0

EPSS 0.0129

EPSS Percentile 79.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Lab Environment

COMMUNITY

Community Lab

docker pull registry.access.redhat.com/ubi9

docker pull registry.access.redhat.com/ubi9-micro

docker pull registry:2

docker pull quay.io/keycloak/keycloak:21.1.1

https://github.com/shoucheng3/keycloak__keycloak_CVE-2022-4361_21-1-1

https://github.com/faccimatteo/CVE-2022-4361

View in Library

Details

CWE

CWE-81 CWE-79

Status published

Products (10)

org.keycloak/keycloak-services 0 - 21.1.2Maven

redhat/keycloak < 21.1.2

redhat/openshift_container_platform 4.11

redhat/openshift_container_platform 4.12

redhat/openshift_container_platform_for_ibm_linuxone 4.9

redhat/openshift_container_platform_for_ibm_linuxone 4.10

redhat/openshift_container_platform_for_power 4.9

redhat/openshift_container_platform_for_power 4.10

redhat/single_sign-on

redhat/single_sign-on 7.6 - 7.6.4

Published Jul 07, 2023

Tracked Since Feb 18, 2026