CVE-2025-12390

EPSS 0.02%
Veröffentlicht 28.10.2025 13:23:34
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Org.keycloak.protocol.oidc.endpoints.logoutendpoint: offline session takeover due to reused authentication session id

A flaw was found in Keycloak. In Keycloak where a user can accidentally get access to another user's session if both use the same device and browser. This happens because Keycloak sometimes reuses session identifiers and doesn’t clean up properly during logout when browser cookies are missing. As a result, one user may receive tokens that belong to another user.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 10

CNA 9 VulnDex Vulnerability Enrichment 2

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerKeycloak

≫

Produkt keycloak

Default Statusunaffected

Version 0

Version < 26.0.0

Status affected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.2

Default Statusaffected

Version 26.2.11-1

Version < *

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.2

Default Statusaffected

Version 26.2-12

Version < *

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.2

Default Statusaffected

Version 26.2-12

Version < *

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.2.11

Default Statusunaffected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.4

Default Statusaffected

Version 26.4.4-1

Version < *

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.4

Default Statusaffected

Version 26.4-3

Version < *

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.4

Default Statusaffected

Version 26.4-3

Version < *

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat build of Keycloak 26.4.4

Default Statusunaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.031

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
secalert@redhat.com	6	0.8	5.2	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N

CWE-384 Session Fixation

Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

https://access.redhat.com/security/cve/CVE-2025-12390

https://bugzilla.redhat.com/show_bug.cgi?id=2406793

https://access.redhat.com/errata/RHSA-2025:21370

https://access.redhat.com/errata/RHSA-2025:21371

https://access.redhat.com/errata/RHSA-2025:22089

https://access.redhat.com/errata/RHSA-2025:22088

https://github.com/keycloak/keycloak/issues/43853

https://nvd.nist.gov/vuln/detail/CVE-2025-12390

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-12390

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-12390

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-12390