CVE-2024-4540

UNKNOWN

Published 2024-06-03T15:33:18.191Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-4540. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1

7.5

/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Base Score Metrics

Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14

0.006

probability

of exploitation in the wild

There is a 0.6% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25

Exploit Probability

Percentile: 0.692

Higher than 69.2% of all CVEs

Attack Vector Metrics

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Impact Metrics

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Description

A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server's HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Unknown Vendor

Unknown Product

Affected Versions:

d5e82356f90893ca3b308a7e10020103e402369a

Red Hat

Red Hat Build of Keycloak

Red Hat

Red Hat Build of Keycloak

Red Hat

Red Hat build of Keycloak 22

Affected Versions:

22.0.11-2

Red Hat

Red Hat build of Keycloak 22

Affected Versions:

22-15

Red Hat

Red Hat build of Keycloak 22

Affected Versions:

22-18

Red Hat

Red Hat build of Keycloak 24

Affected Versions:

24.0.5-2

Red Hat

Red Hat build of Keycloak 24

Affected Versions:

24-10

Red Hat

Red Hat build of Keycloak 24

Affected Versions:

24-10

Red Hat

Red Hat Single Sign-On 7

Red Hat

Red Hat Single Sign-On 7.6 for RHEL 7

Affected Versions:

0:18.0.14-1.redhat_00001.1.el7sso

Red Hat

Red Hat Single Sign-On 7.6 for RHEL 8

Affected Versions:

0:18.0.14-1.redhat_00001.1.el8sso

Red Hat

Red Hat Single Sign-On 7.6 for RHEL 9

Affected Versions:

0:18.0.14-1.redhat_00001.1.el9sso

Red Hat

RHEL-8 based Middleware Containers

Affected Versions:

7.6-49

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed HIGH

Keycloak exposes sensitive information in Pushed Authorization Requests (PAR)

GHSA-69fp-7c8p-crjr

Advisory Details

A flaw was found in Keycloak in the OAuth 2.0 Pushed Authorization Requests (PAR). Client provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server's HTTP response to a request_uri authorization request. This could lead to an information disclosure vulnerability.

Affected Packages

Maven org.keycloak:keycloak-services

ECOSYSTEM: ≥0 <24.0.5

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References

WEB https://github.com/keycloak/keycloak/security/advisories/GHSA-69fp-7c8p-crjr

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-4540

WEB https://github.com/keycloak/keycloak/commit/2191cc26ae6deb52eeaf74046027b65804d16fd0

WEB https://access.redhat.com/errata/RHSA-2024:3566

WEB https://access.redhat.com/errata/RHSA-2024:3567

WEB https://access.redhat.com/errata/RHSA-2024:3568

WEB https://access.redhat.com/errata/RHSA-2024:3570

WEB https://access.redhat.com/errata/RHSA-2024:3572

WEB https://access.redhat.com/errata/RHSA-2024:3573

WEB https://access.redhat.com/errata/RHSA-2024:3574

WEB https://access.redhat.com/errata/RHSA-2024:3575

WEB https://access.redhat.com/errata/RHSA-2024:3576

WEB https://access.redhat.com/security/cve/CVE-2024-4540

WEB https://bugzilla.redhat.com/show_bug.cgi?id=2279303

PACKAGE https://github.com/keycloak/keycloak

Advisory provided by GitHub Security Advisory Database. Published: June 10, 2024, Modified: July 31, 2024

References

https://access.redhat.com/errata/RHSA-2024:3566

https://access.redhat.com/errata/RHSA-2024:3567

https://access.redhat.com/errata/RHSA-2024:3568

https://access.redhat.com/errata/RHSA-2024:3570

https://access.redhat.com/errata/RHSA-2024:3572

https://access.redhat.com/errata/RHSA-2024:3573

https://access.redhat.com/errata/RHSA-2024:3574

https://access.redhat.com/errata/RHSA-2024:3575

https://access.redhat.com/errata/RHSA-2024:3576

https://access.redhat.com/security/cve/CVE-2024-4540

https://bugzilla.redhat.com/show_bug.cgi?id=2279303

Published: 2024-06-03T15:33:18.191Z

Last Modified: 2024-11-13T14:26:26.123Z

Copied to clipboard!

CVE-2024-4540

Expert Analysis

CVSS Score

EPSS Score

Attack Vector Metrics

Impact Metrics

Description

Available Exploits

Related News

Affected Products

Unknown Product

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

GitHub Security Advisories

Keycloak exposes sensitive information in Pushed Authorization Requests (PAR)

Advisory Details

Affected Packages

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!