Keycloak: log injection during webauthn authentication or registration
Summary
| CVE | CVE-2023-6484 |
|---|---|
| State | PUBLISHED |
| Assigner | redhat |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2024-04-25 16:15:09 UTC |
| Updated | 2026-06-26 08:16:20 UTC |
| Description | A log injection flaw was found in Keycloak. A text string may be injected through the authentication form when using the WebAuthn authentication mode. This issue may have a minor impact to the logs integrity. |
Risk And Classification
Primary CVSS: v3.1 5.3 MEDIUM from [email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS: 0.010080000 probability, percentile 0.586860000 (date 2026-06-29)
Problem Types: CWE-117 | CWE-117 Improper Output Neutralization for Logs
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | [email protected] | Secondary | 5.3 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
| 3.1 | CNA | CVSS | 5.3 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
LowAvailability
NoneCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Red Hat | Red Hat Build Of Keycloak 22 | unaffected 22.0.10-1 * rpm | Not specified |
| CNA | Red Hat | Red Hat Build Of Keycloak 22 | unaffected 22-13 * rpm | Not specified |
| CNA | Red Hat | Red Hat Build Of Keycloak 22 | unaffected 22-16 * rpm | Not specified |
| CNA | Red Hat | Red Hat Build Of Keycloak 22.0.10 | Not specified | Not specified |
| CNA | Red Hat | Red Hat Single Sign-On 7 | Not specified | Not specified |
| CNA | Red Hat | Red Hat Single Sign-On 7.6 For RHEL 7 | unaffected 0:18.0.12-1.redhat_00001.1.el7sso * rpm | Not specified |
| CNA | Red Hat | Red Hat Single Sign-On 7.6 For RHEL 7 | unaffected 0:18.0.13-1.redhat_00001.1.el7sso * rpm | Not specified |
| CNA | Red Hat | Red Hat Single Sign-On 7.6 For RHEL 8 | unaffected 0:18.0.12-1.redhat_00001.1.el8sso * rpm | Not specified |
| CNA | Red Hat | Red Hat Single Sign-On 7.6 For RHEL 8 | unaffected 0:18.0.13-1.redhat_00001.1.el8sso * rpm | Not specified |
| CNA | Red Hat | Red Hat Single Sign-On 7.6 For RHEL 9 | unaffected 0:18.0.12-1.redhat_00001.1.el9sso * rpm | Not specified |
| CNA | Red Hat | Red Hat Single Sign-On 7.6 For RHEL 9 | unaffected 0:18.0.13-1.redhat_00001.1.el9sso * rpm | Not specified |
| CNA | Red Hat | RHEL-8 Based Middleware Containers | unaffected 7.6-41 * rpm | Not specified |
| CNA | Red Hat | RHEL-8 Based Middleware Containers | unaffected 7.6-46 * rpm | Not specified |
| CNA | Red Hat | RHEL-8 Based Middleware Containers | unaffected 7.6-16 * rpm | Not specified |
| CNA | Red Hat | RHEL-8 Based Middleware Containers | unaffected 7.6-18 * rpm | Not specified |
| CNA | Red Hat | RHEL-8 Based Middleware Containers | unaffected 7.6.8-2 * rpm | Not specified |
| CNA | Red Hat | RHSSO 7.6.8 | Not specified | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| access.redhat.com/errata/RHSA-2024:0798 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/security/cve/CVE-2023-6484 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1864 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1866 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1860 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1862 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1868 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| github.com/advisories/GHSA-j628-q885-8gr5 | [email protected] | github.com | |
| bugzilla.redhat.com/show_bug.cgi | af854a3a-2127-422b-91ae-364da2661108 | bugzilla.redhat.com | |
| access.redhat.com/errata/RHSA-2024:0801 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:0800 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:0804 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1861 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1867 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:1865 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| access.redhat.com/errata/RHSA-2024:0799 | af854a3a-2127-422b-91ae-364da2661108 | access.redhat.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Additional Advisory Data
| Source | Time | Event |
|---|---|---|
| CNA | 2023-11-06T00:00:00.000Z | Reported to Red Hat. |
| CNA | 2023-12-04T00:00:00.000Z | Made public. |
There are currently no legacy QID mappings associated with this CVE.