A flaw was found in Keycloak. A Keycloak server configured to support mTLS authentication for OAuth/OpenID clients does not properly verify the client certificate chain. A client that possesses a proper certificate can authorize itself as any other client, therefore, access data that belongs to other clients.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00294.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Redhat
  • Enterprise Linux
  • Keycloak
  • Openshift Container Platform
  • Red Hat Single Sign On
  • Rhosemc
  • Single Sign-on

Configuration 1 [-]

AND
OR cpe:2.3:a:redhat:keycloak:-:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openshift_container_platform:4.9:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openshift_container_platform:4.10:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openshift_container_platform:4.11:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openshift_container_platform:4.12:*:*:*:*:*:*:*
cpe:2.3:a:redhat:single_sign-on:7.6:*:*:*:*:*:*:*
OR cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Package CPE Advisory Released Date
Red Hat Single Sign-On 7
keycloak-oauth cpe:/a:redhat:red_hat_single_sign_on:7.6.4 RHSA-2023:3892 2023-06-27T00:00:00Z
Red Hat Single Sign-On 7.6 for RHEL 7
rh-sso7-keycloak-0:18.0.8-1.redhat_00001.1.el7sso cpe:/a:redhat:red_hat_single_sign_on:7.6::el7 RHSA-2023:3883 2023-06-27T00:00:00Z
Red Hat Single Sign-On 7.6 for RHEL 8
rh-sso7-keycloak-0:18.0.8-1.redhat_00001.1.el8sso cpe:/a:redhat:red_hat_single_sign_on:7.6::el8 RHSA-2023:3884 2023-06-27T00:00:00Z
Red Hat Single Sign-On 7.6 for RHEL 9
rh-sso7-keycloak-0:18.0.8-1.redhat_00001.1.el9sso cpe:/a:redhat:red_hat_single_sign_on:7.6::el9 RHSA-2023:3885 2023-06-27T00:00:00Z
RHEL-8 based Middleware Containers
rh-sso-7/sso76-openshift-rhel8:7.6-24 cpe:/a:redhat:rhosemc:1.0::el8 RHSA-2023:3888 2023-06-27T00:00:00Z

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2023-1672 A flaw was found in Keycloak. A Keycloak server configured to support mTLS authentication for OAuth/OpenID clients does not properly verify the client certificate chain. A client that possesses a proper certificate can authorize itself as any other client, therefore, access data that belongs to other clients.
Github GHSA Github GHSA GHSA-3qh5-qqj2-c78f Keycloak vulnerable to Improper Client Certificate Validation for OAuth/OpenID clients
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://access.redhat.com/errata/RHSA-2023:3883 cve-icon cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2023:3884 cve-icon cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2023:3885 cve-icon cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2023:3888 cve-icon cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2023:3892 cve-icon cve-icon cve-icon
https://access.redhat.com/security/cve/CVE-2023-2422 cve-icon cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2191668 cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-2422 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-2422 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-02T06:19:15.138Z

Reserved: 2023-04-28T17:33:42.062Z

Link: CVE-2023-2422

cve-icon Vulnrichment

Updated: 2024-08-02T06:19:15.138Z

cve-icon NVD

Status : Modified

Published: 2023-10-04T11:15:10.157

Modified: 2024-11-21T07:58:35.333

Link: CVE-2023-2422

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-06-26T00:00:00Z

Links: CVE-2023-2422 - Bugzilla

cve-icon OpenCVE Enrichment

No data.