CVE-2021-20202
CVE-2021-20202 is a high-severity vulnerability in Redhat Keycloak with a CVSS 3.x base score of 7.3. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-377.
Key facts
- Severity: High (CVSS 3.x base score 7.3)
- CVSS v2: 4.6
- EPSS exploit prediction: 0% (22nd percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-377
- Affected product: Redhat Keycloak
- Published:
- Last modified:
Description
A flaw was found in keycloak. Directories can be created prior to the Java process creating them in the temporary directory, but with wider user permissions, allowing the attacker to have access to the contents that keycloak stores in this directory. The highest threat from this vulnerability is to data confidentiality and integrity.
Frequently asked questions
- What is CVE-2021-20202?
- A flaw was found in keycloak. Directories can be created prior to the Java process creating them in the temporary directory, but with wider user permissions, allowing the attacker to have access to the contents that keycloak stores in this directory. The highest threat from this vulnerability is to data confidentiality and integrity.
- How severe is CVE-2021-20202?
- CVE-2021-20202 has a CVSS 3.x base score of 7.3, rated high severity. It is exploitable over local access with low attack complexity, requires low privileges and no user interaction. Impact on confidentiality is high, integrity high, and availability low.
- Is CVE-2021-20202 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (22nd percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2021-20202?
- CVE-2021-20202 affects Redhat Keycloak. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2021-20202?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2021-20202 published?
- CVE-2021-20202 was published on 2021-05-12 and last updated on 2026-06-17.
References
Affected products (1)
- cpe:2.3:a:redhat:keycloak:*:*:*:*:*:*:*:*
More vulnerabilities in Redhat Keycloak
- CVE-2022-4361 — Critical (CVSS 10.0): Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the…
- CVE-2022-1245 — Critical (CVSS 9.8): A privilege escalation flaw was found in the token exchange feature of keycloak. Missing authorization allows a client…
- CVE-2019-14910 — Critical (CVSS 9.8): A vulnerability was found in keycloak 7.x, when keycloak is configured with LDAP user federation and StartTLS is used…
- CVE-2021-20195 — Critical (CVSS 9.6): A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete…
- CVE-2022-3782 — Critical (CVSS 9.1): keycloak: path traversal via double URL encoding. A flaw was found in Keycloak, where it does not properly validate…
- CVE-2019-14837 — Critical (CVSS 9.1): A flaw was found in keycloack before version 8.0.0. The owner of 'placeholder.org' domain can setup mail server on this…
All CVEs affecting Redhat Keycloak →
Other CWE-377 (Insecure Temporary File) vulnerabilities
- CVE-2011-4119 — Critical (CVSS 9.8): caml-light <= 0.75 uses mktemp() insecurely, and also does unsafe things in /tmp during make install.
- CVE-2012-2666 — Critical (CVSS 9.8): golang/go in 1.0.2 fixes all.bash on shared machines. dotest() in src/pkg/debug/gosym/pclntab_test.go creates a…
- CVE-2015-5224 — Critical (CVSS 9.8): The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name…
- CVE-2025-14307 — High (CVSS 8.1): An insecure temporary file creation vulnerability exists in the AutoExtract component of Robocode version 1.9.3.6. The…
- CVE-2023-43498 — High (CVSS 8.1): In Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using MultipartFormDataParser creates…
- CVE-2025-46369 — High (CVSS 7.8): Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contains an Insecure Temporary File…
Browse all CWE-377 (Insecure Temporary File) vulnerabilities →