CVE-2025-7784 Information
Jul 19, 2025
cve
Description
A flaw was found in the Keycloak identity and access management system when Fine-Grained Admin Permissions(FGAPv2) are enabled. An administrative user with the manage-users role can escalate their privileges to realm-admin due to improper privilege enforcement. This vulnerability allows unauthorized elevation of access rights compromising the intended separation of administrative duties and posing a security risk to the realm.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Reference
https://access.redhat.com/security/cve/CVE-2025-7784 https://bugzilla.redhat.com/show_bug.cgi?id=2381861
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction Required
HIGH
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
NONE
Base Severity
6.5
Related CNNVD
CNNVD-202507-2437 (Published: 2025-07-18)
Share on: