How severe is CVE-2023-6544?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.4 out of 10.

What type of vulnerability is CVE-2023-6544?

This is classified as CWE-625, which is a common weakness in software security.

CVE-2023-6544

MEDIUM Year: 2023

CVSS v3 Score

5.4

Medium

Weakness Type

CWE-625

View all →

Vulnerability Description

A flaw was found in the Keycloak package. This issue occurs due to a permissive regular expression hardcoded for filtering which allows hosts to register a dynamic client. A malicious user with enough information about the environment could jeopardize an environment with this specific Dynamic Client Registration and TrustedDomain configuration previously unauthorized.

CVE-2020-8910

MEDIUM

CVSS:6.5(Medium)

A URL parsing issue in goog.uri of the Google Closure Library versions up to and including v20200224 allows an attacker to send malicious URLs to be parsed by the library and return the wrong authorit...

CWE-6252020

CVE-2018-8926

HIGH

CVSS:8.8(High)

Permissive regular expression vulnerability in synophoto_dsm_user in Synology Photo Station before 6.8.5-3471 and before 6.3-2975 allows remote authenticated users to conduct privilege escalation atta...

CWE-6252018

CVE-2024-6038

HIGH

CVSS:7.5(High)

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the latest version of gaizhenbiao/chuanhuchatgpt. The vulnerability is located in the filter_history function within the utils.py...

CWE-6252024

CVE-2020-8910

MEDIUM

CVSS:6.5(Medium)

CWE-6252020

CVE-2023-6544

Vulnerability Description

Related Vulnerabilities

CVE-2020-8910

CVE-2018-8926

CVE-2024-6038

CVE-2020-8910