CVE-2020-1723

CVE-2020-1723

Vendor Louketo
Product Keycloak Gatekeeper
Weakness CWE-601 · Open redirect
Published January 28, 2021
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A flaw was found in Keycloak Gatekeeper (Louketo). The logout endpoint can be abused to redirect logged-in users to arbitrary web pages. Affected versions of Keycloak Gatekeeper (Louketo): 6.0.1, 7.0.0

Key dates

02Disclosure timeline

January 28, 2021 CVE published
August 4, 2024 Record updated