Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-4pc7-vqv5-5r3v

GitHub Security Advisory

ECP SAML binding bypasses authentication flows

✓ GitHub Reviewed HIGH Has CVE
View on GitHub

Advisory Details

### Description
A flaw was found in keycloak, where the default ECP binding flow allows other authentication flows to be bypassed. By exploiting this behavior an attacker can bypass the MFA authentication by sending a SOAP request with an AuthnRequest and Authorization header with the user's credentials. The highest threat from this vulnerability is to confidentiality and integrity.

Affected Packages

Maven org.keycloak:keycloak-saml-core
Affected versions: 0 (fixed in 18.0.0)

Related CVEs

CVE-2021-3827

Key Information

GHSA ID
GHSA-4pc7-vqv5-5r3v
Published
April 27, 2022 9:25 PM
Last Modified
December 1, 2022 10:10 PM
CVSS Score
7.5 /10
Primary Ecosystem
Maven
Primary Package
org.keycloak:keycloak-saml-core
GitHub Reviewed
✓ Yes

Dataset

Last updated: June 15, 2025 6:24 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.