{
  "threat_severity" : "Moderate",
  "public_date" : "2020-05-20T00:00:00Z",
  "bugzilla" : {
    "description" : "keycloak: missing input validation in IDP authorization URLs",
    "id" : "1800573",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1800573"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.4",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
    "status" : "verified"
  },
  "cwe" : "CWE-20",
  "details" : [ "A vulnerability was found in Keycloak before 9.0.2, where every Authorization URL that points to an IDP server lacks proper input validation as it allows a wide range of characters. This flaw allows a malicious to craft deep links that introduce further attack scenarios on affected clients.", "A flaw was found in Keycloak, where every Authorization URL that points to an IDP server lacks proper input validation as it allows a wide range of characters. This flaw allows a malicious to craft deep links that introduce further attack scenarios on affected clients." ],
  "acknowledgement" : "Red Hat would like to thank Sebastian Moritz (Cure53) for reporting this issue.",
  "affected_release" : [ {
    "product_name" : "Red Hat Runtimes Spring Boot 2.2.6",
    "release_date" : "2020-06-01T00:00:00Z",
    "advisory" : "RHSA-2020:2252",
    "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0",
    "package" : "keycloak"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.4.0",
    "release_date" : "2020-12-17T00:00:00Z",
    "advisory" : "RHSA-2020:5625",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7"
  }, {
    "product_name" : "Text-Only RHOAR",
    "release_date" : "2020-07-23T00:00:00Z",
    "advisory" : "RHSA-2020:2905",
    "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Affected",
    "package_name" : "keycloak",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat OpenShift Application Runtimes",
    "fix_state" : "Affected",
    "package_name" : "keycloak",
    "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0"
  }, {
    "product_name" : "Red Hat Single Sign-On 7",
    "fix_state" : "Affected",
    "package_name" : "rh-sso7-keycloak",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2020-1727\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-1727" ],
  "name" : "CVE-2020-1727",
  "csaw" : false
}