CVE-2026-1035 | Red Hat Keycloak Refresh Token TokenManager toctou

Inserito da Angelo Barbosa | Gen 21, 2026 | CVE

A vulnerability described as problematic has been identified in Red Hat Keycloak. Affected by this vulnerability is the function TokenManager of the component Refresh Token Handler. The manipulation results in time-of-check time-of-use.

This vulnerability is cataloged as CVE-2026-1035. The attack may be launched remotely. There is no exploit available.

CVE-2026-1035 | Red Hat Keycloak Refresh Token TokenManager toctou

Post correlati

CVE-2024-3420 | SourceCodester Online Courseware 1.0 admin/saveedit.php id sql injection

CVE-2024-40680 | IBM MQ Operator 2.0.26/3.2.4 memory allocation (XFDB-297611)

CVE-2024-45844 | F5 BIG-IP up to 15.1.10.4/16.1.4/17.1.1.3 Monitor missing authentication (K000140061)

CVE-2023-4976 | PureStorage FlashBlade up to 3.3.10/4.0.6/4.1.8/4.2.2 Management Interface privileges management