Package impact
Maven / org.keycloak:keycloak-saml-core
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-3827 | high | — | 8.0 | 4y ago | ECP SAML binding bypasses authentication flows | |||
| CVE-2026-2575 | medium | 5.3 | 5.3 | 3mo ago | A flaw was found in Keycloak. An unauthenticated remote attacker can trigger an application level Denial of Service (DoS) by sending a highly compressed SAMLRequest through the SAML Redirect Binding.… | |||
| CVE-2026-2092 | unknown | — | — | 3mo ago | Keycloak: Unauthorized access via improper validation of encrypted SAML assertions | |||
| CVE-2024-8698 | unknown | — | — | 2y ago | Improper Verification of SAML Responses Leading to Privilege Escalation in Keycloak |