VulnerableCode Package Details - pkg:maven/org.keycloak/keycloak-model-jpa@9.0.13

Search for packages

Package details: pkg:maven/org.keycloak/keycloak-model-jpa@9.0.13

Essentials
History (1)

purl	pkg:maven/org.keycloak/keycloak-model-jpa@9.0.13
Tags	Ghost

Next non-vulnerable version	23.0.0
Latest non-vulnerable version	23.0.0
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-92ky-autp-c7du Aliases: CVE-2021-3461 GHSA-cm29-6wx7-p874	Keycloak insufficient session expiration A flaw was found in keycloak where keycloak may fail to logout user session if the logout request comes from external SAML identity provider and Principal Type is set to Attribute [Name].	10.0.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-31T09:26:31.548835+00:00	GitLab Importer	Affected by	VCID-92ky-autp-c7du	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.keycloak/keycloak-model-jpa/CVE-2021-3461.yml	37.0.0