{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T11:16:09.504","vulnerabilities":[{"cve":{"id":"CVE-2025-11537","sourceIdentifier":"secalert@redhat.com","published":"2026-02-10T11:16:09.397","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Keycloak. When the logging format is configured to a verbose, user-supplied pattern (such as the pre-defined 'long' pattern), sensitive headers including Authorization and Cookie are disclosed to the logs in cleartext. An attacker with read access to the log files can extract these credentials (e.g., bearer tokens, session cookies) and use them to impersonate users, leading to a full account compromise."},{"lang":"es","value":"Se encontró un fallo en Keycloak. Cuando el formato de registro se configura a un patrón detallado, proporcionado por el usuario (como el patrón 'long' predefinido), los encabezados sensibles, incluyendo Autorización y Cookie, se divulgan en los registros en texto claro. Un atacante con acceso de lectura a los archivos de registro puede extraer estas credenciales (por ejemplo, tokens de portador, cookies de sesión) y usarlas para suplantar a los usuarios, lo que lleva a un compromiso total de la cuenta."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.3,"impactScore":3.6}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-117"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2025-11537","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402616","source":"secalert@redhat.com"}]}}]}