CVE-2024-4629

moderate-risk

Published 2024-09-03

A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. This timing loophole enables attackers to make more guesses at passwords than intended, potentially compromising account security on affected systems.

Do I need to act?

1.1% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (12)

Keycloak

Build Of Keycloak

Single Sign-On

Openshift Container Platform

Openshift Container Platform For Linuxone

Openshift Container Platform For Power

Openshift Container Platform Ibm Z Systems

Affected Vendors

Redhat

References (11)

Vendor Advisory https://access.redhat.com/errata/RHSA-2024:6493

Vendor Advisory https://access.redhat.com/errata/RHSA-2024:6494

Vendor Advisory https://access.redhat.com/errata/RHSA-2024:6495

Vendor Advisory https://access.redhat.com/errata/RHSA-2024:6497

Vendor Advisory https://access.redhat.com/errata/RHSA-2024:6499

Vendor Advisory https://access.redhat.com/errata/RHSA-2024:6500

Vendor Advisory https://access.redhat.com/errata/RHSA-2024:6501

Vendor Advisory https://access.redhat.com/security/cve/CVE-2024-4629

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=2276761

https://github.com/hnsecurity/vulns/blob/main/HNS-2024-09-Keycloak.md

https://security.humanativaspa.it/an-analysis-of-the-keycloak-authentication-sys...

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 3/34 · Minimal

Exposure 17/34 · Moderate