pkg:Maven/org.keycloak:keycloak-server-spi-private

5 total CVEsHIGH1MEDIUM3LOW1

✅ Check your installed version

All known vulnerabilities

  • HIGH8.1CVE-2026-2603Keycloak: Unauthorized authentication via disabled SAML Identity Provider
    from 0, < 26.5.5
  • MEDIUM4.9CVE-2026-0871Keycloak Server Private SPI: Improper Access Control Allows Administrators to Bypass Attribute Visibility Restrictions and Modify Unmanaged User Profile Attributes
    from 0, < 26.5.2
  • MEDIUM4.8CVE-2020-10776Cross-site Scripting in keycloak
    from 0, < 12.0.0
  • MEDIUM4.3CVE-2026-3190Keycloak: Missing Role Enforcement on UMA 2.0 Permission Ticket Endpoint Leads to Information Disclosure
    from 0, < 26.5.6
  • LOW3.5CVE-2023-2585Client Spoofing within the Keycloak Device Authorisation Grant
    from 0, < 21.1.2