CNNVD-202510-3242 Information

CNNVD ID

CNNVD-202510-3242

Related CVE

CVE-2025-12110

• CNNVD Published: 2025-10-23

Description (Chinese)

Red Hat build of Keycloak是美国红帽（Red Hat）公司的一款用于单点登录的Web应用。 Red Hat build of Keycloak存在代码问题漏洞，该漏洞源于移除客户端的offline_access范围后离线会话仍然有效，可能导致管理员误判离线会话可用性。

Description (English)

Red Hat built of Keycloak is a Web application for single-point access by Red Hat. Red Hat built of Keycloak has a code loophole, which stems from the continued availability of offline sessions after the removal of the client’s offline access range, which may lead to an error in the availability of offline sessions.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

红帽

Published

2025-10-23

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-12110 https://bugzilla.redhat.com/show_bug.cgi?id=2406033