Security Advisory

CVE-2025-2559

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-25 08:20:57

Last updated 2026-05-06 16:48:50

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak. When the configuration uses JWT tokens for authentication, the tokens are cached until expiration. If a client uses JWT tokens with an excessively long expiration time, for example, 24 or 48 hours, the cache can grow indefinitely, leading to an OutOfMemoryError. This issue could result in a denial of service condition, preventing legitimate users from accessing the system.

← Browse all CVEs View on cve.org ↗