Description

A flaw was found in Keycloak. This vulnerability allows an unauthenticated remote attacker to cause a denial of service (DoS) by repeatedly initiating TLS 1.2 client-initiated renegotiation requests to exhaust server CPU resources, making the service unavailable.

INFO

Published Date :

2025-12-23T20:42:38.699Z

Last Modified :

2026-04-20T17:45:58.307Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2025-11419 vulnerability.

Vendors Products
Redhat
  • Build Keycloak
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-11419.

URL Resource
https://access.redhat.com/errata/RHSA-2025:18254 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:18255 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:18889 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:18890 cve-icon cve-icon
https://access.redhat.com/security/cve/CVE-2025-11419 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2402142 cve-icon cve-icon
https://github.com/keycloak/keycloak/discussions/25209 cve-icon cve-icon
https://github.com/keycloak/keycloak/issues/43020 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-11419 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-11419 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact