CVE-2024-8883

MEDIUM EXPLOITED NUCLEI

Red Hat Build of Keycloak - Open Redirect via Misconfigured Valid Redirect URI

Title source: llm

Exploitation Summary

CVE-2024-8883 has been observed exploited in the wild (reported by VulnCheck KEV). A Nuclei detection template is also available.

Description

A misconfiguration flaw was found in Keycloak. This issue can allow an attacker to redirect users to an arbitrary URL if a 'Valid Redirect URI' is set to http://localhost or http://127.0.0.1, enabling sensitive information such as authorization codes to be exposed to the attacker, potentially leading to session hijacking.

Nuclei Templates (1)

Keycloak - Open Redirect

MEDIUMVERIFIEDby iamnoooob,rootxharsh,pdresearch

Shodan: title:"keycloak"

References (17)

Core 17

Core References

Product

https://github.com/keycloak/keycloak/blob/main/services/src/main/java/org/keycloak/protocol/oidc/utils/RedirectUtils.java

View Writeup ZIP pw:eip

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:10386

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:10385

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6878

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6879

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6880

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6882

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6886

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6887

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6888

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6889

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:6890

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:8823

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:8824

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:8826

Vendor Advisory vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2024-8883

Issue Tracking, Vendor Advisory issue-tracking x_refsource_redhat

https://bugzilla.redhat.com/show_bug.cgi?id=2312511

Scores

CVSS v3 6.1

EPSS 0.0200

EPSS Percentile 78.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

VulnCheck KEV 2026-01-08

CWE

CWE-601

Status published

Products (50)

org.keycloak/keycloak-services 0 - 22.0.13Maven

Red Hat/Red Hat Build of Keycloak

Red Hat/Red Hat build of Keycloak 22 22-18

Red Hat/Red Hat build of Keycloak 22 22-21

Red Hat/Red Hat build of Keycloak 22 22.0.13-1

Red Hat/Red Hat build of Keycloak 24 24-17

Red Hat/Red Hat build of Keycloak 24 24.0.8-1

Red Hat/Red Hat JBoss Enterprise Application Platform 8

Red Hat/Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 8 0:0.1.0-2.redhat_00010.1.el8eap

Red Hat/Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 8 0:0.8.1-2.redhat_00001.1.el8eap

... and 40 more

Published Sep 19, 2024

Tracked Since Feb 18, 2026