7.3

CVE-2026-3872

Keycloak: keycloak: information disclosure due to redirect_uri validation bypass

A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same web server, to bypass the allowed path in redirect Uniform Resource Identifiers (URIs) that use a wildcard. A successful attack may lead to the theft of an access token, resulting in information disclosure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
RedhatBuild Of Keycloak Version- SwEditiontext-only
RedhatBuild Of Keycloak Version26.2 SwEditiontext-only
RedhatBuild Of Keycloak Version26.2.15 SwEditiontext-only
RedhatBuild Of Keycloak Version26.4 SwEditiontext-only
RedhatBuild Of Keycloak Version26.4.11 SwEditiontext-only
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.44% 0.352
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
secalert@redhat.com 7.3 2.1 5.2
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
0b0ca135-0b70-47e7-9f44-1890c2a1c46c 7.3 2.1 5.2
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
CWE-601 URL Redirection to Untrusted Site ('Open Redirect')

The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.

https://access.redhat.com/security/cve/CVE-2026-3872
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2445988
Vendor Advisory
Issue Tracking
https://access.redhat.com/errata/RHSA-2026:6477
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:6478
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:6475
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:6476
Vendor Advisory
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-3872.json