Lucene search
K

68 matches found

EUVD
EUVD
added 2026/04/06 9:31 a.m.5 views

EUVD-2026-19201

A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing CORS header injection vulnerability in Keycloak's User-Managed Access UMA token endpoint. This flaw occurs because the azp claim from a client-supplied JSON Web Token JWT is used to set the...

3.7CVSS5.9AI score0.00253EPSS
Exploits0References3
NVD
NVD
added 2026/04/06 9:16 a.m.4 views

CVE-2026-37977

A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing CORS header injection vulnerability in Keycloak's User-Managed Access UMA token endpoint. This flaw occurs because the azp claim from a client-supplied JSON Web Token JWT is used to set the...

5.3CVSS0.00253EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/04/06 8:38 a.m.1 views

CVE-2026-37977 Keycloak: org.keycloak.protocol.oidc.grants.ciba: keycloak: information disclosure via cors header injection due to unvalidated jwt azp claim

A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing CORS header injection vulnerability in Keycloak's User-Managed Access UMA token endpoint. This flaw occurs because the azp claim from a client-supplied JSON Web Token JWT is used to set the...

3.7CVSS5.9AI score0.00253EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/04/06 8:38 a.m.3 views

CVE-2026-37977

A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing CORS header injection vulnerability in Keycloak's User-Managed Access UMA token endpoint. This flaw occurs because the azp claim from a client-supplied JSON Web Token JWT is used to set the...

5.3CVSS5.9AI score0.00253EPSS
Exploits0References7
CVE
CVE
added 2026/04/06 8:38 a.m.23 views

CVE-2026-37977

CVE-2026-37977 affects Keycloak’s User-Managed Access (UMA) token endpoint. A flaw in CORS handling arises when the azp claim from a client-supplied JWT is used to set the Access-Control-Allow-Origin header before JWT validation, allowing an attacker-controlled origin to be reflected in responses...

5.3CVSS5.9AI score0.00253EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/04/06 8:38 a.m.32 views

CVE-2026-37977 Keycloak: org.keycloak.protocol.oidc.grants.ciba: keycloak: information disclosure via cors header injection due to unvalidated jwt azp claim

A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing CORS header injection vulnerability in Keycloak's User-Managed Access UMA token endpoint. This flaw occurs because the azp claim from a client-supplied JSON Web Token JWT is used to set the...

3.7CVSS0.00253EPSS
Exploits0References6
Snyk
Snyk
added 2026/04/06 8:34 a.m.4 views

Origin Validation Error

Overview org.keycloak:keycloak-services is an open source identity and access management solution for modern applications and services. Affected versions of this package are vulnerable to Origin Validation Error in the UMA token endpoint when the azp claim from a client-supplied JWT is used to se...

6.3CVSS5.4AI score0.00253EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.4 views

PT-2026-30582

Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A flaw exists in Keycloak that allows a remote attacker to exploit a Cross-Origin Resource Sharing CORS header injection in the User-Managed Access UMA token endpoint. The issue arises becau...

5.3CVSS5.3AI score0.00253EPSS
Exploits0References13
EUVD
EUVD
added 2026/04/02 3:31 p.m.6 views

EUVD-2026-18213

A flaw was found in Keycloak. An authenticated user with the umaprotection role can bypass User-Managed Access UMA policy validation. This allows the attacker to include resource identifiers owned by other users in a policy creation request, even if the URL path specifies an attacker-owned...

8.1CVSS5.9AI score0.00346EPSS
Exploits1References5
OSV
OSV
added 2026/04/02 3:31 p.m.10 views

GHSA-F2HX-5FX3-HMCV Keycloak: UMA Policy Resource Injection Allows Unauthorized Cross-User Permission Grants

A flaw was found in Keycloak. An authenticated user with the umaprotection role can bypass User-Managed Access UMA policy validation. This allows the attacker to include resource identifiers owned by other users in a policy creation request, even if the URL path specifies an attacker-owned...

8.1CVSS5.9AI score0.00346EPSS
Exploits1References10
Github Security Blog
Github Security Blog
added 2026/04/02 3:31 p.m.45 views

Keycloak: UMA Policy Resource Injection Allows Unauthorized Cross-User Permission Grants

A flaw was found in Keycloak. An authenticated user with the umaprotection role can bypass User-Managed Access UMA policy validation. This allows the attacker to include resource identifiers owned by other users in a policy creation request, even if the URL path specifies an attacker-owned...

8.1CVSS5.9AI score0.00346EPSS
Exploits1References10Affected Software1
RedHat Linux
RedHat Linux
added 2026/04/02 1:54 p.m.51 views

keycloak: Keycloak: Information Disclosure via improper role enforcement in UMA 2.0 Protection API

A flaw was found in Keycloak. The User-Managed Access UMA 2.0 Protection API endpoint for permission tickets fails to enforce the umaprotection role check. This allows any authenticated user with a token issued for a resource server client, even without the umaprotection role, to enumerate all...

4.3CVSS5.8AI score0.00319EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/02 1:53 p.m.8 views

keycloak: Keycloak: UMA policy bypass allows authenticated users to gain unauthorized access to victim-owned resources.

A flaw was found in Keycloak. An authenticated user with the umaprotection role can bypass User-Managed Access UMA policy validation. This allows the attacker to include resource identifiers owned by other users in a policy creation request, even if the URL path specifies an attacker-owned...

8.1CVSS5.9AI score0.00346EPSS
Exploits1References4
CVE
CVE
added 2026/04/02 12:45 p.m.104 views

CVE-2026-4636

Keycloak vulnerability CVE-2026-4636: An authenticated user with the uma_protection role can bypass UMA policy validation, allowing inclusion of resource identifiers owned by other users in a policy creation request. This can grant unauthorized permissions to victim-owned resources, enabling retr...

8.1CVSS5.9AI score0.00346EPSS
Exploits1References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/02 12:45 p.m.5 views

CVE-2026-4636

A flaw was found in Keycloak. An authenticated user with the umaprotection role can bypass User-Managed Access UMA policy validation. This allows the attacker to include resource identifiers owned by other users in a policy creation request, even if the URL path specifies an attacker-owned...

8.1CVSS5.9AI score0.00346EPSS
Exploits1References7
Cvelist
Cvelist
added 2026/04/02 12:45 p.m.22 views

CVE-2026-4636 Keycloak: keycloak: uma policy bypass allows authenticated users to gain unauthorized access to victim-owned resources.

A flaw was found in Keycloak. An authenticated user with the umaprotection role can bypass User-Managed Access UMA policy validation. This allows the attacker to include resource identifiers owned by other users in a policy creation request, even if the URL path specifies an attacker-owned...

8.1CVSS0.00346EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/04/02 12:37 p.m.3 views

CVE-2026-4636

A flaw was found in Keycloak. An authenticated user with the umaprotection role can bypass User-Managed Access UMA policy validation. This allows the attacker to include resource identifiers owned by other users in a policy creation request, even if the URL path specifies an attacker-owned...

8.1CVSS5.8AI score0.00346EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.4 views

PT-2026-29732

Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A flaw exists in Keycloak where an authenticated user possessing the uma protection role can circumvent User-Managed Access UMA policy validation. This allows an attacker to include resource...

8.1CVSS5.9AI score0.00346EPSS
Exploits1References13
EUVD
EUVD
added 2026/03/26 9:31 p.m.8 views

EUVD-2026-16309

A flaw was found in Keycloak. The User-Managed Access UMA 2.0 Protection API endpoint for permission tickets fails to enforce the umaprotection role check. This allows any authenticated user with a token issued for a resource server client, even without the umaprotection role, to enumerate all...

4.3CVSS5.7AI score0.00319EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/26 9:31 p.m.6 views

Keycloak: Missing Role Enforcement on UMA 2.0 Permission Ticket Endpoint Leads to Information Disclosure

A flaw was found in Keycloak. The User-Managed Access UMA 2.0 Protection API endpoint for permission tickets fails to enforce the umaprotection role check. This allows any authenticated user with a token issued for a resource server client, even without the umaprotection role, to enumerate all...

4.3CVSS5.8AI score0.00319EPSS
Exploits0References8Affected Software3
Rows per page
Query Builder