Red Hat Migration Toolkit for Applications 6.0

CPE Details

Red Hat Migration Toolkit for Applications 6.0
redhat
migration_toolkit_for_applications
6.0
2023-03-02
12h43 +00:00
2023-08-11
21h44 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:redhat:migration_toolkit_for_applications:6.0:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

migration_toolkit_for_applications

Version

6.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-6291 2024-01-26 14h23 +00:00 A flaw was found in the redirect_uri validation logic in Keycloak. This issue may allow a bypass of otherwise explicitly allowed hosts. A successful attack may lead to an access token being stolen, making it possible for the attacker to impersonate other users.
7.1
Haute
CVE-2023-44487 2023-10-10 00h00 +00:00 The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
7.5
Haute
CVE-2022-4492 2023-02-23 00h00 +00:00 The undertow client is not checking the server identity presented by the server certificate in https connections. This is a compulsory step (at least it should be performed by default) in https and in http/2. I would add it to any TLS client protocol.
7.5
Haute