CVE-2023-6927

Published: Dec 18, 2023

Modified: Nov 11, 2025

PUBLISHED

CVSS v3.1

4.6

MEDIUM

Description

A flaw was found in Keycloak. This issue may allow an attacker to steal authorization codes or tokens from clients using a wildcard in the JARM response mode "form_post.jwt" which could be used to bypass the security patch implemented to address CVE-2023-6134.

Vendor	Product	Versions
Red Hat	Red Hat build of Keycloak 22	unaffected `22-7 - < *`
Red Hat	Red Hat build of Keycloak 22.0.8	All versions
Red Hat	Red Hat Single Sign-On 7	All versions
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 7	unaffected `0:18.0.11-3.redhat_00001.1.el7sso - < *`
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 7	unaffected `0:18.0.12-1.redhat_00001.1.el7sso - < *`
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 8	unaffected `0:18.0.11-3.redhat_00001.1.el8sso - < *`
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 8	unaffected `0:18.0.12-1.redhat_00001.1.el8sso - < *`
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 9	unaffected `0:18.0.11-3.redhat_00001.1.el9sso - < *`
Red Hat	Red Hat Single Sign-On 7.6 for RHEL 9	unaffected `0:18.0.12-1.redhat_00001.1.el9sso - < *`
Red Hat	RHEL-8 based Middleware Containers	unaffected `7.6-39 - < *`
Red Hat	RHEL-8 based Middleware Containers	unaffected `7.6-41 - < *`
Red Hat	Single Sign-On 7.6.6	All versions