VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.keycloak:keycloak-services

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2014-3709 high 8.8 8.8 9y ago JBoss Keycloak CSRF Vulnerability java
CVE-2026-2603 high 8.0 2mo ago Keycloak: Unauthorized authentication via disabled SAML Identity Provider java
CVE-2021-3424 high 8.0 4y ago Keycloak is vulnerable to IDN homograph attack archjava
CVE-2025-7365 high 7.1 7.1 11mo ago Keycloak phishing attack via email verification step in first login flow javaredhat
CVE-2025-7784 medium 6.5 6.5 10mo ago Keycloak Privilege Escalation Vulnerability in Admin Console (FGAPv2 Enabled) javaredhat
CVE-2024-10270 medium 6.5 6.5 2y ago org.keycloak:keycloak-services has Inefficient Regular Expression Complexity java
CVE-2026-7500 medium 5.4 5.4 28d ago Keycloak has a Forced Browsing issue javaredhat
CVE-2025-1391 medium 5.4 5.4 1y ago Improper Authorization in Keycloak Organization Mapper Allows Unauthorized Organization Claims java
CVE-2025-2559 medium 4.9 4.9 1y ago Keycloak Denial of Service (DoS) Vulnerability via JWT Token Cache java