{
  "threat_severity" : "Moderate",
  "public_date" : "2020-02-05T00:00:00Z",
  "bugzilla" : {
    "description" : "keycloak: stored XSS in client settings via application links",
    "id" : "1791538",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1791538"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.1",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
    "status" : "verified"
  },
  "cwe" : "CWE-79",
  "details" : [ "It was found in all keycloak versions before 9.0.0 that links to external applications (Application Links) in the admin console are not validated properly and could allow Stored XSS attacks. An authed malicious user could create URLs to trick users in other realms, and possibly conduct further attacks.", "A flaw was found during the assessment of the Admin Console application for Keycloak, where it was found that Application Links to external applications are not validated properly. An attacker could use this flaw to cause Stored XSS attacks." ],
  "acknowledgement" : "Red Hat would like to thank Cure53 Berlin for reporting this issue.",
  "affected_release" : [ {
    "product_name" : "Red Hat Runtimes Spring Boot 2.2.6",
    "release_date" : "2020-06-01T00:00:00Z",
    "advisory" : "RHSA-2020:2252",
    "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0",
    "package" : "keycloak"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.3",
    "release_date" : "2020-02-06T00:00:00Z",
    "advisory" : "RHSA-2020:0445",
    "cpe" : "cpe:/a:redhat:jboss_single_sign_on:7.3"
  }, {
    "product_name" : "Text-Only RHOAR",
    "release_date" : "2020-07-23T00:00:00Z",
    "advisory" : "RHSA-2020:2905",
    "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Not affected",
    "package_name" : "keycloak",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat Mobile Application Platform 4",
    "fix_state" : "Out of support scope",
    "package_name" : "keycloak",
    "cpe" : "cpe:/a:redhat:mobile_application_platform:4"
  }, {
    "product_name" : "Red Hat OpenShift Application Runtimes",
    "fix_state" : "Affected",
    "package_name" : "keycloak",
    "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0"
  }, {
    "product_name" : "Red Hat Single Sign-On 7",
    "fix_state" : "Affected",
    "package_name" : "rh-sso7-keycloak",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7"
  }, {
    "product_name" : "Red Hat support for Spring Boot",
    "fix_state" : "Affected",
    "package_name" : "keycloak",
    "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2020-1697\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-1697" ],
  "name" : "CVE-2020-1697",
  "csaw" : false
}