Search for packages
Package details: pkg:maven/org.keycloak/keycloak-parent@23.0.0
purl pkg:maven/org.keycloak/keycloak-parent@23.0.0
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-1m3m-ay28-aaag
Aliases:
CVE-2019-14910
GHSA-jf86-9434-f8c2
Improper Authentication A vulnerability was found in keycloak, when keycloak is configured with LDAP user federation and StartTLS is used instead of SSL/TLS from the LDAP server (ldaps), in this case user authentication succeeds even if invalid password has entered. There are no reported fixed by versions.
VCID-dgpm-z9v1-aaak
Aliases:
CVE-2023-6927
GHSA-3p75-q5cc-qmj7
A flaw was found in Keycloak. This issue may allow an attacker to steal authorization codes or tokens from clients using a wildcard in the JARM response mode "form_post.jwt" which could be used to bypass the security patch implemented to address CVE-2023-6134.
23.0.4
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-kfzc-yxas-aaad The redirect_uri validation logic allows for bypassing explicitly allowed hosts that would otherwise be restricted CVE-2023-6291
GHSA-mpwq-j3xf-7m5w

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:51:38.413919+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 36.1.3
2025-06-20T16:50:11.831281+00:00 GitLab Importer Affected by VCID-dgpm-z9v1-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/GHSA-3p75-q5cc-qmj7.yml 36.1.3
2025-06-20T15:52:02.904818+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 36.1.3
2025-06-20T15:48:14.008851+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 36.1.3
2025-06-03T23:28:58.078654+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 36.1.0
2025-06-03T23:27:41.154128+00:00 GitLab Importer Affected by VCID-dgpm-z9v1-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/GHSA-3p75-q5cc-qmj7.yml 36.1.0
2025-06-03T22:32:56.927543+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 36.1.0
2025-06-03T22:29:16.081895+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 36.1.0
2025-06-02T23:26:37.538094+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 36.1.2
2025-06-02T23:25:17.070604+00:00 GitLab Importer Affected by VCID-dgpm-z9v1-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/GHSA-3p75-q5cc-qmj7.yml 36.1.2
2025-06-02T22:21:34.305302+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 36.1.2
2025-06-02T22:17:40.508960+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 36.1.2
2025-04-03T21:52:38.224586+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 36.0.0
2025-04-03T21:49:49.446954+00:00 GitLab Importer Affected by VCID-dgpm-z9v1-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/GHSA-3p75-q5cc-qmj7.yml 36.0.0
2025-04-03T19:56:44.605156+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 36.0.0
2025-04-03T19:51:31.516845+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 36.0.0
2025-02-18T06:41:23.825333+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 35.1.0
2025-02-18T06:41:23.294593+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 35.1.0
2025-02-18T01:07:44.702199+00:00 GitLab Importer Affected by VCID-dgpm-z9v1-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/GHSA-3p75-q5cc-qmj7.yml 35.1.0
2025-02-18T01:06:42.306576+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 35.1.0
2024-11-21T02:37:25.681744+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 35.0.0
2024-11-20T23:31:19.882778+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 35.0.0
2024-11-19T02:27:33.565853+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 34.3.2
2024-11-18T23:20:29.387381+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 34.3.2
2024-10-08T03:02:25.725803+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 34.0.2
2024-10-08T00:17:37.592683+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 34.0.2
2024-10-07T21:53:13.600609+00:00 GHSA Importer Affected by VCID-dgpm-z9v1-aaak https://github.com/advisories/GHSA-3p75-q5cc-qmj7 34.0.2
2024-09-23T02:52:17.202987+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 34.0.1
2024-09-22T22:22:28.826938+00:00 GHSA Importer Affected by VCID-dgpm-z9v1-aaak https://github.com/advisories/GHSA-3p75-q5cc-qmj7 34.0.1
2024-09-17T22:41:35.968578+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 34.0.1
2024-05-17T21:08:30.639611+00:00 GHSA Importer Affected by VCID-dgpm-z9v1-aaak https://github.com/advisories/GHSA-3p75-q5cc-qmj7 34.0.0rc4
2024-04-24T05:31:11.736704+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 34.0.0rc4
2024-04-24T05:31:11.299819+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 34.0.0rc4
2024-04-23T19:34:52.518214+00:00 GHSA Importer Affected by VCID-1m3m-ay28-aaag None 34.0.0rc4
2024-04-23T17:43:24.463043+00:00 GitLab Importer Fixing VCID-kfzc-yxas-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2023-6291.yml 34.0.0rc4
2024-01-10T08:03:09.059654+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 34.0.0rc2
2024-01-10T08:03:08.690317+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 34.0.0rc2
2024-01-10T03:14:43.771231+00:00 GHSA Importer Affected by VCID-dgpm-z9v1-aaak https://github.com/advisories/GHSA-3p75-q5cc-qmj7 34.0.0rc2
2024-01-09T21:27:45.789075+00:00 GHSA Importer Affected by VCID-1m3m-ay28-aaag None 34.0.0rc2
2024-01-04T00:48:18.125951+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-parent/CVE-2019-14910.yml 34.0.0rc1
2024-01-04T00:48:17.733049+00:00 GitLab Importer Affected by VCID-1m3m-ay28-aaag None 34.0.0rc1
2024-01-03T16:23:17.864862+00:00 GHSA Importer Affected by VCID-1m3m-ay28-aaag None 34.0.0rc1