CVE-2022-3916 - How a Keycloak Flaw in Offline Access Puts Shared Devices at Risk
---
When you think of logging out from a web app—especially on a shared computer—you expect your session to be over for good.
CVE-2022-3782 - Breaking Keycloak’s Redirects with Double URL Encoding – Path Traversal Explained
In October 2022, a security vulnerability was uncovered in Keycloak, a widely used open-source identity and access management solution. This flaw—tracked as CVE-2022-3782—let