Home > Vulnerability Database > CVE-2025-14083

Mend.io Vulnerability Database

CVE-2025-14083

Good to know:

Date: January 21, 2026

A flaw was found in the Keycloak Admin REST API. This vulnerability allows the exposure of backend schema and rules, potentially leading to targeted attacks or privilege escalation via improper access control.

Severity Score

2.7

Related Resources (6)

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2419086

Url: https://github.com/keycloak/keycloak/issues/45493

Url: https://access.redhat.com/security/cve/CVE-2025-14083

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-14083

Url: https://github.com/keycloak/keycloak

Url: https://www.mend.io/vulnerability-database/CVE-2025-14083

Severity Score

2.7

Weakness Type (CWE)

Improper Access Control

CWE-284

CVSS v3.1

Base Score:	2.7
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	HIGH
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-14083

Good to know:

Date: January 21, 2026

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?