CVE-2024-1722
CVSS 3.1 Score 3.7 of 10 (low)
Details
Summary
CVE-2024-1722 is a recently discovered vulnerability affecting Keycloak, an open-source identity and access management solution. This issue permits a remote, unauthenticated attacker to cause a denial-of-service condition, preventing other users from accessing their accounts. The flaw is triggered under specific conditions, making it a potential security risk for organizations relying on Keycloak for identity and access management. The exact cause of this vulnerability is not yet disclosed, but it is recommended that affected users apply patches or updates as soon as they become available to mitigate the risk. Organizations should also consider implementing additional security measures, such as rate limiting and access controls, to further protect their systems.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.