CVE-2018-10842

CVE-2018-10842

It was found that an authenticated user could manipulate user session information to trigger an infinite loop in keycloak. A malicious user could use this flaw to conduct a denial of service attack against the server.

Source: CVE-2018-10842