VDB
WID-SEC-W-2025-0908
WID-SEC-W-2025-0908
PUBLISHED
Keycloak ermöglicht Single Sign-On mit Identity and Access Management für moderne Anwendungen und Dienste.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source Keycloak <26.2.2 | ||
| Red Hat Enterprise Linux build of Keycloak 26.0.11 | ||
| Open Source Keycloak 26.2.2 | ||
| Red Hat Enterprise Linux build of Keycloak <26.0.11 | ||
| Red Hat Enterprise Linux |
Exploit Intelligence
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0908.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0908 (circl)
- https://github.com/advisories/GHSA-r934-w73g-v4p8 (circl)
- https://github.com/advisories/GHSA-fx44-2wx5-5fvp (circl)
- https://access.redhat.com/errata/RHSA-2025:4335 (circl)
- https://access.redhat.com/errata/RHSA-2025:4336 (circl)
- https://www.keycloak.org/2025/04/keycloak-2622-released (circl)
- https://access.redhat.com/errata/RHSA-2025:8672 (circl)
Timeline
- Apr 29, 2025 CVE Published
- Jun 9, 2025 CVE Updated
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0908.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0908 advisory
- https://github.com/advisories/GHSA-r934-w73g-v4p8 url
- https://github.com/advisories/GHSA-fx44-2wx5-5fvp url
- https://access.redhat.com/errata/RHSA-2025:4335 url
- https://access.redhat.com/errata/RHSA-2025:4336 url
- https://www.keycloak.org/2025/04/keycloak-2622-released url
- https://access.redhat.com/errata/RHSA-2025:8672 url