Vulnerability Database

318,638

Total vulnerabilities in the database

CVE-2024-10973

A vulnerability was found in Keycloak. The environment option KC_CACHE_EMBEDDED_MTLS_ENABLED does not work and the JGroups replication configuration is always used in plain text which can allow an attacker that has access to adjacent networks related to JGroups to read sensitive information.

Published: Feb 5, 2025
Updated: Jan 19, 2026
CVE: CVE-2024-10973
GHSA: GHSA-g6qq-c9f9-2772
Severity: Medium
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-319

OWASP TOP 10:

A3 - Sensitive Data Exposure

Affected Software
References

Software	From	Fixed in
org.keycloak / keycloak-quarkus-server	25.0.0	26.0.6

https://access.redhat.com/security/cve/CVE-2024-10973
https://bugzilla.redhat.com/show_bug.cgi?id=2324361
https://github.com/keycloak/keycloak/commit/071032a108bd9e9fce9e66d00c36d56bd4b334df
https://github.com/keycloak/keycloak/commit/36defd5f33b2da5d705f179bbaa21c28b13a9996
https://github.com/keycloak/keycloak/issues/28750
https://github.com/keycloak/keycloak/issues/34644
https://github.com/keycloak/keycloak/pull/28756
https://github.com/keycloak/keycloak/pull/34668
https://github.com/keycloak/keycloak/security/advisories/GHSA-g6qq-c9f9-2772

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo