Security Advisory

CVE-2025-3910

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-29 20:46:39

Last updated 2026-01-29 19:37:51

Assigner redhat

State PUBLISHED

Description

A flaw was found in Keycloak. The org.keycloak.authorization package may be vulnerable to circumventing required actions, allowing users to circumvent requirements such as setting up two-factor authentication.

← Browse all CVEs View on cve.org ↗