216.73.217.98

CVE-2025-11537

· Published 10/02/2026 11:16 · Modified 10/02/2026 15:22

Labels: CVE-2025-11537 2026-02-10CVE-2025-11537CWE-117[email protected]

Essential information

Published
10/02/2026 11:16
Modified
10/02/2026 15:22
Author
Creator
CVSS
5.0 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

CVSS metrics

Description

A flaw was found in Keycloak. When the logging format is configured to a verbose, user-supplied pattern (such as the pre-defined 'long' pattern), sensitive headers including Authorization and Cookie are disclosed to the logs in cleartext. An attacker with read access to the log files can extract these credentials (e.g., bearer tokens, session cookies) and use them to impersonate users, leading to a full account compromise.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
redhat / keycloak cpe:2.3:a:redhat:keycloak:*:*:*:*:*:*:*:*

References