CVE-2026-9800
HIGHDescription
A flaw was found in Keycloak Policy Enforcer. This vulnerability allows any authenticated user to bypass all authorization policies, including role, scope, and User-Managed Access (UMA) permission checks. By including the configured access-denied page path within a request URL, either as a path segment or a query parameter, an attacker can gain unauthorized access to protected resources.
CVSS v3.1 Score
EPSS — Exploit Prediction
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| redhat | build_of_keycloak |
| redhat | build_of_keycloak |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2026-9800? +
How severe is CVE-2026-9800? +
What products are affected by CVE-2026-9800? +
How do I check if I'm vulnerable to CVE-2026-9800? +
Related Vulnerabilities
Misskey is an open source, federated social media platform. The patch for CVE-2024-52591 did not sufficiently validate the relation between …
ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.1 and zebra-consensus version 5.0.2, a logic …
HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sample_conv_regsub heap-based buffer overflow because of mishandling of the replacement …
Reliance on IP Address for Authentication vulnerability in Erlang/OTP ssl (inet_tls_dist module) allows unauthenticated bypass of the distribution-over-TLS LAN allowlist. …
Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could …
During a target rollback, the client fails to detect the rollback for delegated targets. This could cause the client to …