Vulnerabilities

CVE-2025-13467

by Fred · 25/11/2025

A flaw was found in the Keycloak LDAP User Federation provider. This vulnerability allows an authenticated realm administrator to trigger deserialization of untrusted Java objects via a malicious LDAP server configuration.

More information : https://access.redhat.com/errata/RHSA-2025:22088

Similar

Tags: Cybersecurity Alert