CVE-2026-37979 | Keycloak on Red Hat Token Introspection Endpoint access control

Inserito da Angelo Barbosa | Mag 19, 2026 | CVE

A vulnerability was found in Keycloak on Red Hat. It has been rated as critical. The affected element is an unknown function of the component Token Introspection Endpoint. Performing a manipulation results in improper access controls.

This vulnerability was named CVE-2026-37979. The attack may be initiated remotely. There is no available exploit.

CVE-2026-37979 | Keycloak on Red Hat Token Introspection Endpoint access control

Post correlati

CVE-2024-43746 | Adobe Experience Manager up to 6.5.21 Form Field cross site scripting (apsb24-69)

CVE-2026-44159 | Tyler TID-L default credentials

CVE-2026-4190 | JawherKl node-api-postgres up to 2.5 models/user.js User.getAll sort sql injection

CVE-2025-6812 | Parallels Client uncontrolled search path