Security Advisory

CVE-2025-14082

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-10 09:04:51

Last updated 2026-04-19 23:14:08

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak Admin REST (Representational State Transfer) API. This vulnerability allows information disclosure of sensitive role metadata via insufficient authorization checks on the /admin/realms/{realm}/roles endpoint.

← Browse all CVEs View on cve.org ↗