SAML Assertion Expiration Bypass Vulnerability in Keycloak

SAML Assertion Expiration Bypass Vulnerability in Keycloak

CVE-2018-14637 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The SAML broker consumer endpoint in Keycloak before version 4.6.0.Final ignores expiration conditions on SAML assertions. An attacker can exploit this vulnerability to perform a replay attack.

Learn more about our Web Application Penetration Testing UK.