CVE-2026-1180 | Red Hat Keycloak OpenID Connect Dynamic Client Registration server-side request forgery

Inserito da Angelo Barbosa | Gen 20, 2026 | CVE

A vulnerability has been found in Red Hat Keycloak and classified as critical. This issue affects some unknown processing of the component OpenID Connect Dynamic Client Registration. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2026-1180. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-1180 | Red Hat Keycloak OpenID Connect Dynamic Client Registration server-side request forgery

Post correlati

CVE-2024-43913 | Linux Kernel up to 6.10.4 nvme_uninit_ctrl reference count (d59c4d0eb6ad/b9ecbfa45516)

CVE-2023-52943 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 Alerting authorization (SA_24_04)

CVE-2024-32952 | BloomPixel Max Addons Pro for Bricks Plugin up to 1.6.1 on WordPress cross site scripting

CVE-2024-1878 | SourceCodester Employee Management System 1.0 /myprofile.php id sql injection