Keycloak Keycloak-nodejs-auth-utils — known CVE vulnerabilities
Every CVE whose affected-product data names Keycloak Keycloak-nodejs-auth-utils, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2017-7474 — CVSS 9.8 (critical): It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. An attacker could use this flaw to bypass…