VYPR
Unrated severityNVD Advisory· Published Jun 20, 2025· Updated Nov 21, 2025

Keycloak-core: keycloak environment information

CVE-2025-5416

Description

A vulnerability has been identified in Keycloak that could lead to unauthorized information disclosure. While it requires an already authenticated user, the /admin/serverinfo endpoint can inadvertently provide sensitive environment information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.