CVE-2025-12150 — A flaw was found in Keycloak’s WebAuthn registration component. This vulnerability allows an attacker to bypass the configured attestation policy and register untrusted or forged authenticators via su — CVE Database · The Intelligence Room