A flaw was found in keycloak where keycloak may fail to logout user session if the logout request comes from external SAML identity provider and Principal Type is set to Attribute [Name].
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat keycloak 9.0.13 |
||
redhat single sign-on 7.0 |
||
redhat single sign-on 7.4 |
||
redhat single sign-on 7.4.7 |