CVE-2026-9791

CVE Database · CVE-2026-9791

CVE-2026-9791

· MEDIUMModified

CVSS v3.1

4.3

EPSS

0.20%

Published

May 28, 2026

Modified

Jun 10, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A flaw was found in Keycloak. An authenticated user with existing organization membership can exploit this flaw by accessing user-facing APIs, such as the account API or by requesting an OpenID Connect (OIDC) token with the 'organization' scope. This allows organization metadata to be disclosed in tokens, even after an administrator has explicitly disabled the Organizations feature, potentially leading to incorrect authorization decisions by resource servers.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Weaknesses (CWE)

CWE-863

Affected Products (1)

redhat · build_of_keycloakvulnerable

References (4)

https://access.redhat.com/errata/RHSA-2026:25097

https://access.redhat.com/errata/RHSA-2026:25098

https://access.redhat.com/security/cve/CVE-2026-9791

MitigationVendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2482458

Issue TrackingVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs