Org.keycloak:keycloak-server-spi-private
This hub aggregates every CVE we track for Org.keycloak:keycloak-server-spi-private, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
0
Critical
0
High
0
In CISA KEV
Severity distribution
MEDIUM2LOW1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Org.keycloak:keycloak-server-spi-private.
- CVE-2026-0871Org.keycloak/keycloak-services: keycloak: unauthorized modification of unmanaged user attributes by administrators4.9
- CVE-2023-2585Keycloak: client access via device auth request spoof3.5
- CVE-2020-10776A flaw was found in Keycloak before version 12.0.0, where it is possible to add unsafe schemes for the redirect_uri parameter. This flaw allows an attacker to perform a Cross-site scripting attack.4.8
Product normalization is registry-driven with AI assist and human review. How it works