CVE-2026-9704 | Keycloak on Red Hat JSON Web Token subject_token improper validation of specified quantity in input

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability was found in Keycloak on Red Hat and classified as problematic. Affected by this vulnerability is an unknown functionality of the component JSON Web Token Handler. Executing a manipulation of the argument subject_token can lead to improper validation of specified quantity in input.

The identification of this vulnerability is CVE-2026-9704. The attack may be launched remotely. There is no exploit available.

CVE-2026-9704 | Keycloak on Red Hat JSON Web Token subject_token improper validation of specified quantity in input

Post correlati

CVE-2026-29066 | tinacms up to 2.1.7 file access (GHSA-m48g-4wr2-j2h6)

CVE-2025-34072 | Anthropic Slack MCP Server unfurling information disclosure

CVE-2024-8165 | Chengdu Everbrite Network Technology BeikeShop up to 1.5.5 export exportZip path path traversal

CVE-2023-47148 | IBM Storage Protect Plus Server up to 10.1.15.2 Admin Console authorization (XFDB-270599)