A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value that exceeds the actual byte count of the request body.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-04T11:14:15.436Z

Reserved: 2020-03-20T00:00:00

Link: CVE-2020-10758

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-09-16T16:15:14.797

Modified: 2024-11-21T04:56:00.697

Link: CVE-2020-10758

cve-icon Redhat

Severity : Important

Publid Date: 2020-08-18T00:00:00Z

Links: CVE-2020-10758 - Bugzilla

cve-icon OpenCVE Enrichment

No data.