CVE-2025-13467

MEDIUM 5.5

Org.keycloak.storage.ldap: keycloak: deserialization of untrusted data in ldap user federation

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

A flaw was found in the Keycloak LDAP User Federation provider. This vulnerability allows an authenticated realm administrator to trigger deserialization of untrusted Java objects via a malicious LDAP server configuration.

CWE	CWE-502
Vendor	keycloak
Product	keycloak
Published	Nov 25, 2025
Last Updated	Dec 23, 2025

Stay Ahead of the Next One

Get instant alerts for keycloak keycloak

Be the first to know when new medium vulnerabilities affecting keycloak keycloak are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Affected Versions

Keycloak / Keycloak

0 < 26.4.6

Red Hat / Red Hat build of Keycloak 26.2

All versions affected

Red Hat / Red Hat build of Keycloak 26.2

All versions affected

Red Hat / Red Hat build of Keycloak 26.2

All versions affected

Red Hat / Red Hat build of Keycloak 26.2.11

All versions affected

Red Hat / Red Hat build of Keycloak 26.4

All versions affected

Red Hat / Red Hat build of Keycloak 26.4

All versions affected

Red Hat / Red Hat build of Keycloak 26.4

All versions affected

Red Hat / Red Hat build of Keycloak 26.4.6

All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗

access.redhat.com: https://access.redhat.com/errata/RHSA-2025:22088 access.redhat.com: https://access.redhat.com/errata/RHSA-2025:22089 access.redhat.com: https://access.redhat.com/errata/RHSA-2025:22090 access.redhat.com: https://access.redhat.com/errata/RHSA-2025:22091 access.redhat.com: https://access.redhat.com/security/cve/CVE-2025-13467 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2416038 github.com: https://github.com/keycloak/keycloak/commit/754c070cf8ca187dcc71f0f72ff3130ff2195328 github.com: https://github.com/keycloak/keycloak/issues/44478

Credits

Red Hat would like to thank Icare & truff (YWH) for reporting this issue.