CNNVD-202511-2753 Information

CNNVD ID

CNNVD-202511-2753

Related CVE

CVE-2025-13467

• CNNVD Published: 2025-11-25

Description (Chinese)

Red Hat build of Keycloak是美国红帽（Red Hat）公司的一款用于单点登录的Web应用。 Red Hat build of Keycloak 26.2版本存在安全漏洞，该漏洞源于反序列化不受信任的Java对象，可能导致远程代码执行。

Description (English)

Red Hat built of Keycloak is a Web application for single-point access by Red Hat. Red Hat build of Keycloak version 26.2 contains a security loophole that originates from untrusted Java objects that are anti-sequencing and may lead to remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

红帽

Published

2025-11-25

Last Modified

2026-02-24

References

https://access.redhat.com/errata/RHSA-2025:22088 https://access.redhat.com/errata/RHSA-2025:22089 https://access.redhat.com/errata/RHSA-2025:22090 https://access.redhat.com/errata/RHSA-2025:22091 https://access.redhat.com/security/cve/CVE-2025-13467 https://bugzilla.redhat.com/show_bug.cgi?id=2416038