{
  "threat_severity" : "Low",
  "public_date" : "2024-06-03T00:00:00Z",
  "bugzilla" : {
    "description" : "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
    "id" : "2279303",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
  },
  "cvss3" : {
    "cvss3_base_score" : "7.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
    "status" : "verified"
  },
  "cwe" : "CWE-312",
  "details" : [ "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server's HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.", "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server's HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability." ],
  "acknowledgement" : "Red Hat would like to thank Manuel Schallar for reporting this issue.",
  "affected_release" : [ {
    "product_name" : "Red Hat Build of Keycloak",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3574",
    "cpe" : "cpe:/a:redhat:build_keycloak:22"
  }, {
    "product_name" : "Red Hat Build of Keycloak",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3575",
    "cpe" : "cpe:/a:redhat:build_keycloak:22"
  }, {
    "product_name" : "Red Hat build of Keycloak 22",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3573",
    "cpe" : "cpe:/a:redhat:build_keycloak:22::el9",
    "package" : "rhbk/keycloak-operator-bundle:22.0.11-2"
  }, {
    "product_name" : "Red Hat build of Keycloak 22",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3573",
    "cpe" : "cpe:/a:redhat:build_keycloak:22::el9",
    "package" : "rhbk/keycloak-rhel9:22-15"
  }, {
    "product_name" : "Red Hat build of Keycloak 22",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3573",
    "cpe" : "cpe:/a:redhat:build_keycloak:22::el9",
    "package" : "rhbk/keycloak-rhel9-operator:22-18"
  }, {
    "product_name" : "Red Hat build of Keycloak 24",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3576",
    "cpe" : "cpe:/a:redhat:build_keycloak:24::el9",
    "package" : "rhbk/keycloak-operator-bundle:24.0.5-2"
  }, {
    "product_name" : "Red Hat build of Keycloak 24",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3576",
    "cpe" : "cpe:/a:redhat:build_keycloak:24::el9",
    "package" : "rhbk/keycloak-rhel9:24-10"
  }, {
    "product_name" : "Red Hat build of Keycloak 24",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3576",
    "cpe" : "cpe:/a:redhat:build_keycloak:24::el9",
    "package" : "rhbk/keycloak-rhel9-operator:24-10"
  }, {
    "product_name" : "Red Hat Single Sign-On 7",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3572",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.6 for RHEL 7",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3566",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6::el7",
    "package" : "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.6 for RHEL 8",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3567",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6::el8",
    "package" : "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.6 for RHEL 9",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3568",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6::el9",
    "package" : "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso"
  }, {
    "product_name" : "RHEL-8 based Middleware Containers",
    "release_date" : "2024-06-03T00:00:00Z",
    "advisory" : "RHSA-2024:3570",
    "cpe" : "cpe:/a:redhat:rhosemc:1.0::el8",
    "package" : "rh-sso-7/sso76-openshift-rhel8:7.6-49"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2024-4540\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-4540" ],
  "name" : "CVE-2024-4540",
  "mitigation" : {
    "value" : "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
    "lang" : "en:us"
  },
  "csaw" : false
}