GHSA-mwm4-5qwr-g9pf: 
Java vulnerability analysis and mitigation

A vulnerability was discovered in Keycloak (CVE-2021-3424/GHSA-mwm4-5qwr-g9pf) related to IDN homograph attacks. The flaw affects versions prior to 18.0.0 and was published on April 25, 2022. This security issue allows malicious users to register usernames that appear visually identical to existing ones, potentially leading to privilege escalation through admin confusion (GitHub Advisory).

The vulnerability is classified as CWE-284 and has been assigned a Low severity rating. The issue specifically involves the ability to register usernames using special characters that can create visually identical names to existing users. The fix implemented includes a new username pattern validation that restricts usernames to Latin and Common Unicode characters through the USERNAME_PATTERN regex (Keycloak Commit).

The primary impact of this vulnerability affects system integrity. Malicious actors could potentially trick administrators into granting elevated privileges to accounts with visually similar usernames, leading to unauthorized access and privilege escalation (GitHub Advisory).

The vulnerability has been patched in Keycloak version 18.0.0. The fix includes implementing strict username validation that prevents the use of special characters in usernames. Organizations should upgrade to version 18.0.0 or later to protect against this vulnerability (GitHub Advisory).