Search for packages
Package details: pkg:maven/org.keycloak/keycloak-core@25.0.4
purl pkg:maven/org.keycloak/keycloak-core@25.0.4
Next non-vulnerable version 26.1.3
Latest non-vulnerable version 26.1.3
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-4mwd-1qk4-6ya1
Aliases:
CVE-2024-4028
GHSA-q4xq-445g-g6ch
keycloak-core: Stored XSS in Keycloak when creating a items in Admin Console
26.1.3
Affected by 0 other vulnerabilities.
VCID-da4z-mr8a-hfek
Aliases:
CVE-2024-10039
GHSA-93ww-43rr-79v3
keycloak-core: mTLS passthrough
26.0.6
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-1dhc-42n6-g3h6 One Time Passcode (OTP) is valid longer than expiration timeSeverity GHSA-xmmm-jw76-q7vg

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:16:43.136232+00:00 GitLab Importer Affected by VCID-4mwd-1qk4-6ya1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-4028.yml 36.1.3
2025-06-20T17:12:52.568741+00:00 GitLab Importer Affected by VCID-da4z-mr8a-hfek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-10039.yml 36.1.3
2025-06-20T17:10:11.890570+00:00 GitLab Importer Fixing VCID-1dhc-42n6-g3h6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/GHSA-xmmm-jw76-q7vg.yml 36.1.3
2025-06-03T23:51:55.270020+00:00 GitLab Importer Affected by VCID-4mwd-1qk4-6ya1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-4028.yml 36.1.0
2025-06-03T23:48:30.466368+00:00 GitLab Importer Affected by VCID-da4z-mr8a-hfek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-10039.yml 36.1.0
2025-06-03T23:46:04.033153+00:00 GitLab Importer Fixing VCID-1dhc-42n6-g3h6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/GHSA-xmmm-jw76-q7vg.yml 36.1.0
2025-06-02T23:50:43.863817+00:00 GitLab Importer Affected by VCID-4mwd-1qk4-6ya1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-4028.yml 36.1.2
2025-06-02T23:47:10.954969+00:00 GitLab Importer Affected by VCID-da4z-mr8a-hfek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-10039.yml 36.1.2
2025-06-02T23:44:35.037362+00:00 GitLab Importer Fixing VCID-1dhc-42n6-g3h6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/GHSA-xmmm-jw76-q7vg.yml 36.1.2
2025-04-03T22:42:01.763899+00:00 GitLab Importer Affected by VCID-4mwd-1qk4-6ya1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-4028.yml 36.0.0
2025-04-03T22:34:31.295652+00:00 GitLab Importer Affected by VCID-da4z-mr8a-hfek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-10039.yml 36.0.0
2025-04-03T22:28:47.722498+00:00 GitLab Importer Fixing VCID-1dhc-42n6-g3h6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/GHSA-xmmm-jw76-q7vg.yml 36.0.0
2025-02-18T03:44:29.147927+00:00 GitLab Importer Affected by VCID-da4z-mr8a-hfek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/CVE-2024-10039.yml 35.1.0
2025-02-18T01:16:32.248188+00:00 GitLab Importer Fixing VCID-1dhc-42n6-g3h6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/GHSA-xmmm-jw76-q7vg.yml 35.1.0
2024-11-20T23:36:33.852167+00:00 GitLab Importer Fixing VCID-1dhc-42n6-g3h6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/GHSA-xmmm-jw76-q7vg.yml 35.0.0
2024-11-19T15:47:58.829086+00:00 GitLab Importer Fixing VCID-1dhc-42n6-g3h6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-core/GHSA-xmmm-jw76-q7vg.yml 34.3.2
2024-10-15T10:21:15.824629+00:00 GithubOSV Importer Fixing VCID-1dhc-42n6-g3h6 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-xmmm-jw76-q7vg/GHSA-xmmm-jw76-q7vg.json 34.0.2
2024-10-15T00:38:11.483525+00:00 GHSA Importer Fixing VCID-1dhc-42n6-g3h6 https://github.com/advisories/GHSA-xmmm-jw76-q7vg 34.0.2