ZITADEL users are advised to update to **1.56.0**. **Actions** **1.56.0** are **not** affected by this vulnerability. **Actions** **1.56.0** are currently under review, and will be released soon. When the **1.56.0** release is available, users will be prompted to update. ZITADEL users are advised to update to **1.56.0**. **Actions** **1.56.0** are **not** affected by this vulnerability. **Actions** **1.56.0** are currently under review, and will be released soon. When the **1.56.0** release is available, users will be prompted to update. If a user is unsure if their installation of ZITADEL is updated to **1.56.0**, they can check in the Console or the API whether it is. To check the version of ZITADEL installed, follow these steps: - Go to https://my.keycloak.com/ - On the left panel, click on **Zitadel:** - Click on **System Information** - Click on **Version** - Update to **1.56.0**.

What is **1.56.0**?

A **1.56.0** release is the current version of ZITADEL and is not affected by the vulnerability described in CVE-2022-36051. It was built after taking into account customer feedback, which resulted in improved functionality and stability improvements.
ZITADEL users are advised to update to **1.56.0**. **Actions** **1.56.0** are **not** affected by this vulnerability. **Actions** **1.56.0** are currently under review, and will be released soon. When the **1.56.0** release is available, users will be prompted to update their installation of ZITADEL to **1.56.0**

Diferentiation of Functionality and Variability of Vulnerability Characteristics

ZITADEL customers are advised to update to **1.56.0**, which is not affected by this vulnerability. **Actions** **1.56.0** are currently under review, and will be released soon. When the **1.56.0** release is available, customers will be prompted to update. ZITADEL customers are advised to update to **1.56.0**, which is not affected by this vulnerability. **Actions** **1.56.0** are currently under review, and will be released soon. When the **1.56.0** release is available, customers will be prompted to update.

What is Keycloak?

Keycloak is a project management platform with a focus on security and compliance. It provides an open-source, secure, and scalable identity and access management solution that allows enterprises to provide instant mobile access to their employees, partners, and customers through their own branded apps.
This vulnerability can be found in Keycloak version **1.56.0**. **Actions** **1.56.0** are **not** affected by this vulnerability. **Actions** **1.56.0** are currently under review, and will be released soon. When the **1.56.0** release is available, users will be prompted to update to the latest version of ZITADEL as they will have received an email notification from Keycloak or have been sent a push notification from Keycloak when updating versions is required (See "Keycloak notifications" below).

Timeline

Published on: 08/31/2022 23:15:00 UTC
Last modified on: 09/09/2022 15:12:00 UTC

References