Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-11419

Опубликовано: 23 дек. 2025
Источник: debian
EPSS Низкий

Описание

A flaw was found in Keycloak. This vulnerability allows an unauthenticated remote attacker to cause a denial of service (DoS) by repeatedly initiating TLS 1.2 client-initiated renegotiation requests to exhaust server CPU resources, making the service unavailable.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
keycloakitppackage

EPSS

Процентиль: 41%
0.00187
Низкий

Связанные уязвимости

nvd логотип

CVE-2025-11419

CVSS3: 7.5
nvd
около 2 месяцев назад

A flaw was found in Keycloak. This vulnerability allows an unauthenticated remote attacker to cause a denial of service (DoS) by repeatedly initiating TLS 1.2 client-initiated renegotiation requests to exhaust server CPU resources, making the service unavailable.

github логотип

GHSA-q8hq-4h99-fj7x

CVSS3: 7.5
github
3 месяца назад

Keycloak TLS Client-Initiated Renegotiation Denial of Service

EPSS

Процентиль: 41%
0.00187
Низкий