Skip to content

Commit cd1730d

Browse files
advisory-database[bot]advisory-database[bot]
committed
1 parent d0d38c1 commit cd1730d

1 file changed

Lines changed: 33 additions & 4 deletions

File tree

advisories/unreviewed/2026/01/GHSA-594w-2fwp-jwrc/GHSA-594w-2fwp-jwrc.json renamed to advisories/github-reviewed/2026/01/GHSA-594w-2fwp-jwrc/GHSA-594w-2fwp-jwrc.json

Lines changed: 33 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,40 +1,69 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-594w-2fwp-jwrc",
4-
"modified": "2026-01-21T15:31:16Z",
4+
"modified": "2026-01-21T22:55:20Z",
55
"published": "2026-01-21T15:31:16Z",
66
"aliases": [
77
"CVE-2025-14083"
88
],
9+
"summary": "Keycloak Admin REST API exposes backend schema and rules",
910
"details": "A flaw was found in the Keycloak Admin REST API. This vulnerability allows the exposure of backend schema and rules, potentially leading to targeted attacks or privilege escalation via improper access control.",
1011
"severity": [
1112
{
1213
"type": "CVSS_V3",
1314
"score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N"
1415
}
1516
],
16-
"affected": [],
17+
"affected": [
18+
{
19+
"package": {
20+
"ecosystem": "Maven",
21+
"name": "org.keycloak:keycloak-services"
22+
},
23+
"ranges": [
24+
{
25+
"type": "ECOSYSTEM",
26+
"events": [
27+
{
28+
"introduced": "0"
29+
},
30+
{
31+
"last_affected": "26.2.5"
32+
}
33+
]
34+
}
35+
]
36+
}
37+
],
1738
"references": [
1839
{
1940
"type": "ADVISORY",
2041
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14083"
2142
},
43+
{
44+
"type": "WEB",
45+
"url": "https://github.com/keycloak/keycloak/issues/45493"
46+
},
2247
{
2348
"type": "WEB",
2449
"url": "https://access.redhat.com/security/cve/CVE-2025-14083"
2550
},
2651
{
2752
"type": "WEB",
2853
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419086"
54+
},
55+
{
56+
"type": "PACKAGE",
57+
"url": "https://github.com/keycloak/keycloak"
2958
}
3059
],
3160
"database_specific": {
3261
"cwe_ids": [
3362
"CWE-284"
3463
],
3564
"severity": "LOW",
36-
"github_reviewed": false,
37-
"github_reviewed_at": null,
65+
"github_reviewed": true,
66+
"github_reviewed_at": "2026-01-21T22:55:20Z",
3867
"nvd_published_at": "2026-01-21T13:16:02Z"
3968
}
4069
}

0 commit comments

Comments
 (0)