CNNVD-202511-713 Information

CNNVD ID

CNNVD-202511-713

Related CVE

CVE-2025-12789

• CNNVD Published: 2025-11-07

Description (Chinese)

Red Hat Single Sign-On是美国红帽（Red Hat）公司的一个身份验证和访问控制系统。该工具负责为系统的身份验证和访问控制功能，支持大多数身份验证协议（Oauth、OpenId Connect）等，并可轻易集成OpenShift和Red Hat中间件等多数产品。 Red Hat Single Sign-On存在输入验证错误漏洞，该漏洞源于openid-connect注销协议中redirect_uri参数未正确验证URL，可能导致开放重定向攻击。

Description (English)

Red Hat Single Sign-On is an identification and access control system for Red Hat. This tool supports most of the authentication protocols (Oauth, OpenId Contact), etc., and can easily integrate most of the products such as OpenShift and Red Hat intermediates. Red Hat Single Sign-On has an input validation error loophole that results from the incorrect validation of URLs in redirect uri parameters in the openid-contract write-off agreement, which may lead to an open redirectional attack.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

红帽

Published

2025-11-07

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-12789 https://bugzilla.redhat.com/show_bug.cgi?id=2413001 https://vigilance.fr/vulnerability/Red-Hat-Single-Sign-On-open-redirect-via-Logout-Process-48685