CVE-2025-13467 | Keycloak LDAP User Federation deserialization

Inserito da Angelo Barbosa | Nov 25, 2025 | CVE

A vulnerability identified as critical has been detected in Keycloak. Affected is an unknown function of the component LDAP User Federation Handler. This manipulation causes deserialization.

This vulnerability is registered as CVE-2025-13467. The attack requires access to the local network. No exploit is available.

CVE-2025-13467 | Keycloak LDAP User Federation deserialization

Post correlati

CVE-2024-3258 | SourceCodester Internship Portal Management System 1.0 admin/add_activity.php title/description/start/end sql injection

CVE-2010-20115 | Arcane Vermillion FTP Daemon up to 1.31 PORT Command out-of-bounds write

CVE-2025-55810 | Alaga Home Security WiFi Camera 3K S-CW2503C-H 1.4.2 Local Privilege Escalation

CVE-2023-6322 | Roku/Wyze Camera Message stack-based overflow