A flaw was found in Keycloak 7.0.1. A logged in user can do an account email enumeration attack.
CVSS Metrics
