VDB
GHSA-m3hp-8546-5qmr
GHSA-m3hp-8546-5qmr
REJECTED
Duplicate Advisory: Authentication Bypass Due to Missing LDAP Bind After Password Reset in Keycloak
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Maven | org.keycloak:keycloak-ldap-federation | 0 |
Exploit Intelligence
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
- CVE-2024-47072.html (github-poc)
…and 8 more exploits
Timeline
- CVE Published
- Mar 2, 2026 Distribution Patch
- Mar 2, 2026 Distribution Patch
- Mar 2, 2026 Security Advisory
- Mar 2, 2026 Security Advisory
- Mar 2, 2026 Security Advisory
References
- https://nvd.nist.gov/vuln/detail/CVE-2025-0604 advisory
- https://access.redhat.com/errata/RHSA-2025:2544 url
- https://access.redhat.com/errata/RHSA-2025:2545 url
- https://access.redhat.com/security/cve/CVE-2025-0604 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2338993 url
- https://github.com/keycloak/keycloak package