CVE-2026-4628 — A flaw was found in Keycloak. An improper Access Control vulnerability in…

/HIGH
CVE Notify vulnerabilitycvephishingidentityendpointdata-breach
CVE-2026-4628 — A flaw was found in Keycloak. An improper Access Control vulnerability in…

🚨 CVE-2026-4628 A flaw was found in Keycloak. An improper Access Control vulnerability in Keycloak’s User-Managed Access (UMA) resource_set endpoint allows attackers with valid…

https://access.redhat.com/security/cve/CVE-2026-4628

What This Means For You

  • New vulnerability disclosed — verify if your stack is exposed.
  • Phishing or social engineering activity — brief your users and SOC team.

Indicators of Compromise

IDTypeIndicator
CVE-2026-4628 Auth Bypass Keycloak, User-Managed Access (UMA) resource_set endpoint, improper Access Control
Source & Attribution
Source PlatformTelegram
ChannelCVE Notify
Channel ID1129491012
Message ID157563
PublishedApril 01, 2026 at 17:56 UTC
Original Linkhttps://access.redhat.com/security/cve/CVE-2026-4628

This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.

Believe this infringes your rights? Submit a takedown request.

Found this interesting? Follow us on LinkedIn to stay ahead.

Follow Shimi Cohen Follow Shimi's Cyber World
Share
LinkedIn WhatsApp Reddit