CVE-2024-8698 HIGH

CVE-2024-8698: Keycloak-saml-core: improper verification of saml responses leading to privilege escalation in keycloak

Vendor Red Hat
Product Red Hat Build of Keycloak
Weakness CWE-347
Published September 19, 2024
Last update April 1, 2026

CVSS base score

7.7/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction None
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:L

What the vulnerability does

01Description

A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil class. The method incorrectly determines whether a SAML signature is for the full document or only for specific assertions based on the position of the signature in the XML document, rather than the Reference element used to specify the signed element. This flaw allows attackers to create crafted responses that can bypass the validation, potentially leading to privilege escalation or impersonation attacks.

Key dates

02Disclosure timeline

September 19, 2024 CVE published
April 1, 2026 Record updated