Lucene search
K

5 matches found

EUVD
EUVD
added 2026/03/18 3:32 a.m.4 views

EUVD-2026-12690

A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML response from an external Identity Provider IdP to the Keycloak SAML endpoint for IdP-initiated broker logins. This allows the attacker to complete broker logins even when the SAML Identity...

8.1CVSS5.8AI score0.00413EPSS
Exploits0References10
OSV
OSV
added 2026/03/18 3:32 a.m.2 views

GHSA-X4P7-7CHP-64HQ Keycloak: Unauthorized authentication via disabled SAML Identity Provider

A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML response from an external Identity Provider IdP to the Keycloak SAML endpoint for IdP-initiated broker logins. This allows the attacker to complete broker logins even when the SAML Identity...

8.1CVSS5.9AI score0.00413EPSS
Exploits0References13
NVD
NVD
added 2026/03/18 2:16 a.m.7 views

CVE-2026-2603

A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML response from an external Identity Provider IdP to the Keycloak SAML endpoint for IdP-initiated broker logins. This allows the attacker to complete broker logins even when the SAML Identity...

8.1CVSS0.00413EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/03/18 1:14 a.m.4 views

CVE-2026-2603

A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML response from an external Identity Provider IdP to the Keycloak SAML endpoint for IdP-initiated broker logins. This allows the attacker to complete broker logins even when the SAML Identity...

8.1CVSS5.8AI score0.00413EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/03/18 1:14 a.m.25 views

CVE-2026-2603 Keycloak: keycloak: unauthorized authentication via disabled saml identity provider

A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML response from an external Identity Provider IdP to the Keycloak SAML endpoint for IdP-initiated broker logins. This allows the attacker to complete broker logins even when the SAML Identity...

8.1CVSS0.00413EPSS
Exploits0References6
Rows per page
Query Builder