Detections
Analytics

Keycloak < 26.4.4 Debug Mode JDWP Port Exposure (CVE-2025-11538)

medium Nessus Plugin ID 297528

Language:

Version 1.3

Feb 25, 2026, 1:08 AM

  • IAVM reference

Plugin Feed: 202602250108

Version 1.2

Feb 3, 2026, 2:33 PM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "False")
  • Exploit attributes ("Exploitability ease" set to "No known exploits are available")

Plugin Feed: 202602031433

Version 1.1

Feb 2, 2026, 1:44 PM

  • New

Plugin Feed: 202602021344

* Changelogs are generally available for changes made after Nov 1, 2022