Количество 3
Количество 3
CVE-2025-13467
A flaw was found in the Keycloak LDAP User Federation provider. This vulnerability allows an authenticated realm administrator to trigger deserialization of untrusted Java objects via a malicious LDAP server configuration.
CVE-2025-13467
A flaw was found in the Keycloak LDAP User Federation provider. This v ...
GHSA-4hx9-48xh-5mxr
Keycloak LDAP User Federation provider enables admin-triggered untrusted Java deserialization
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-13467 A flaw was found in the Keycloak LDAP User Federation provider. This vulnerability allows an authenticated realm administrator to trigger deserialization of untrusted Java objects via a malicious LDAP server configuration. | CVSS3: 5.5 | 0% Низкий | 3 месяца назад |
| CVE-2025-13467 A flaw was found in the Keycloak LDAP User Federation provider. This v ... | CVSS3: 5.5 | 0% Низкий | 3 месяца назад |
| GHSA-4hx9-48xh-5mxr Keycloak LDAP User Federation provider enables admin-triggered untrusted Java deserialization | CVSS3: 5.5 | 0% Низкий | около 2 месяцев назад |
Уязвимостей на страницу