pkg:Maven/org.keycloak:keycloak-server-spi-private

所有已知漏洞

• HIGH8.1CVE-2026-2603Keycloak: Unauthorized authentication via disabled SAML Identity Provider
  from 0, < 26.5.5
• MEDIUM4.9CVE-2026-0871Keycloak Server Private SPI: Improper Access Control Allows Administrators to Bypass Attribute Visibility Restrictions and Modify Unmanaged User Profile Attributes
  from 0, < 26.5.2
• MEDIUM4.8CVE-2020-10776Cross-site Scripting in keycloak
  from 0, < 12.0.0
• MEDIUM4.3CVE-2026-3190Keycloak: Missing Role Enforcement on UMA 2.0 Permission Ticket Endpoint Leads to Information Disclosure
  from 0, < 26.5.6
• LOW3.5CVE-2023-2585Client Spoofing within the Keycloak Device Authorisation Grant
  from 0, < 21.1.2