Vulnerabilities ›

CVE-2025-12150

Low

CWE-347 — Weakness Type

                    Published: Feb 27, 2026                      ·  Modified: Feb 28, 2026                      ·  Source: NVD                

CVSS v3

3.1

🔗 NVD Official

📄 Description (English)

A flaw was found in Keycloak’s WebAuthn registration component. This vulnerability allows an attacker to bypass the configured attestation policy and register untrusted or forged authenticators via submission of an attestation object with fmt: "none", even when the realm is configured to require direct attestation. This can lead to weakened authentication integrity and unauthorized authenticator registration.

🤖 AI Executive Summary

Keycloak's WebAuthn registration allows attackers to bypass attestation policies by submitting forged authenticators with fmt: 'none', even when direct attestation is required. This weakens authentication integrity and enables unauthorized authenticator registration in affected systems.

📄 Description (Arabic)

يوجد خلل في مكون تسجيل WebAuthn في Keycloak يسمح للمهاجمين بتجاوز سياسات التحقق من الهوية المكونة. يمكن للمهاجمين تقديم كائنات تحقق مزيفة بصيغة 'none' حتى عندما يكون النظام مكونًا لطلب التحقق المباشر. هذا يضعف سلامة المصادقة ويسمح بتسجيل مصادقات غير مصرح بها.

🤖 ملخص تنفيذي (AI)

🤖 AI Intelligence Analysis Analyzed: May 30, 2026 08:34

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

banking government telecom healthcare

🎯 MITRE ATT&CK Techniques

T1556 T1111 T1187

⚖️ Saudi Risk Score (AI)

5.0

/ 10.0

🔧 Remediation Steps (English)

Update Keycloak to the latest patched version that properly validates attestation policies. Enforce direct attestation requirements at the realm level and verify that WebAuthn registration components reject fmt: 'none' attestation objects when direct attestation is mandated. Implement additional authentication controls and monitor for suspicious authenticator registrations.

🔧 خطوات المعالجة (العربية)

قم بتحديث Keycloak إلى أحدث إصدار مصحح يتحقق بشكل صحيح من سياسات التحقق من الهوية. فرض متطلبات التحقق المباشر على مستوى المجال والتحقق من رفض مكونات تسجيل WebAuthn لكائنات التحقق من الهوية fmt: 'none' عند طلب التحقق المباشر. تنفيذ عناصر تحكم مصادقة إضافية ومراقبة التسجيلات المريبة للمصادقات.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

5.1 5.2 5.3

🔵 SAMA CSF

AC-2 AC-3 IA-2 IA-5

🟡 ISO 27001:2022

A.9.2.1 A.9.2.2 A.9.2.4 A.9.4.3

🔗 References & Sources 7

🔗

https://access.redhat.com/errata/RHSA-2025:21370

secalert@redhat.com

🔗

https://access.redhat.com/errata/RHSA-2025:21371

secalert@redhat.com

🔗

https://access.redhat.com/errata/RHSA-2025:22088

secalert@redhat.com

🔗

https://access.redhat.com/errata/RHSA-2025:22089

secalert@redhat.com

🔗

https://access.redhat.com/security/cve/CVE-2025-12150

secalert@redhat.com

🔗

https://bugzilla.redhat.com/show_bug.cgi?id=2406192

secalert@redhat.com

🔗

https://github.com/keycloak/keycloak/issues/43723

secalert@redhat.com

📊 CVSS Score

3.1

/ 10.0 — Low

📊 CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

Attack VectorN — None / Network

Attack ComplexityH — High

Privileges RequiredN — None / Network

User InteractionR — Required

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityL — Low / Local

AvailabilityN — None / Network

📋 Quick Facts

Severity Low

CVSS Score3.1

CWECWE-347

EPSS0.05%

Exploit No

Patch ✗ No

Published 2026-02-27

Source Feed nvd

🇸🇦 Saudi Risk Score

5.0

/ 10.0 — Saudi Risk

Priority: MEDIUM

🏷️ Tags

CWE-347

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2025-12150

💬 Comments

Introduce Yourself

Sign In Required