U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2025-8419

Change History

CVE Modified by CISA-ADP 6/17/2026 6:06:57 AM

Action Type Old Value New Value
Added SSVC

                  
                
              
{"timestamp":"2025-08-06T17:23:42.798821Z","id":"CVE-2025-8419","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}

CVE Modified by Red Hat, Inc. 6/17/2026 6:06:57 AM

Action Type Old Value New Value
Added Affected

                  
                
              
[{"vendor":"Keycloak","product":"keycloak","defaultStatus":"unaffected","collectionURL":"https://github.com/keycloak/keycloak","packageName":"keycloak","versions":[{"version":"0","lessThan":"26.3.3","versionType":"semver","status":"affected"}]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.0","defaultStatus":"unaffected","collectionURL":"https://access.redhat.com/downloads/content/package-browser/","packageName":"org.keycloak/keycloak-services","cpes":["cpe:/a:redhat:build_keycloak:26.0"]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.0","defaultStatus":"affected","collectionURL":"https://catalog.redhat.com/software/containers/","packageName":"rhbk/keycloak-operator-bundle","cpes":["cpe:/a:redhat:build_keycloak:26.0::el9"],"versions":[{"version":"26.0.15-1","lessThan":"*","versionType":"rpm","status":"unaffected"}]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.0","defaultStatus":"affected","collectionURL":"https://catalog.redhat.com/software/containers/","packageName":"rhbk/keycloak-rhel9","cpes":["cpe:/a:redhat:build_keycloak:26.0::el9"],"versions":[{"version":"26.0-18","lessThan":"*","versionType":"rpm","status":"unaffected"}]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.0","defaultStatus":"affected","collectionURL":"https://catalog.redhat.com/software/containers/","packageName":"rhbk/keycloak-rhel9-operator","cpes":["cpe:/a:redhat:build_keycloak:26.0::el9"],"versions":[{"version":"26.0-19","lessThan":"*","versionType":"rpm","status":"unaffected"}]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.2","defaultStatus":"unaffected","collectionURL":"https://access.redhat.com/downloads/content/package-browser/","packageName":"org.keycloak/keycloak-services","cpes":["cpe:/a:redhat:build_keycloak:26.2"]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.2","defaultStatus":"affected","collectionURL":"https://catalog.redhat.com/software/containers/","packageName":"rhbk/keycloak-operator-bundle","cpes":["cpe:/a:redhat:build_keycloak:26.2::el9"],"versions":[{"version":"26.2.8-1","lessThan":"*","versionType":"rpm","status":"unaffected"}]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.2","defaultStatus":"affected","collectionURL":"https://catalog.redhat.com/software/containers/","packageName":"rhbk/keycloak-rhel9","cpes":["cpe:/a:redhat:build_keycloak:26.2::el9"],"versions":[{"version":"26.2-8","lessThan":"*","versionType":"rpm","status":"unaffected"}]},{"vendor":"Red Hat","product":"Red Hat build of Keycloak 26.2","defaultStatus":"affected","collectionURL":"https://catalog.redhat.com/software/containers/","packageName":"rhbk/keycloak-rhel9-operator","cpes":["cpe:/a:redhat:build_keycloak:26.2::el9"],"versions":[{"version":"26.2-8","lessThan":"*","versionType":"rpm","status":"unaffected"}]}]