Vulnerabilities

CVE-2026-3911

by Fred · 11/03/2026

A flaw was found in Keycloak. An authenticated user with the view-users role could exploit a vulnerability in the UserResource component. By accessing a specific administrative endpoint, this user could improperly retrieve user attributes that were configured to be hidden. This unauthorized information disclosure could expose sensitive user data.

More information : https://access.redhat.com/security/cve/CVE-2026-3911

Similar

Tags: Cybersecurity Alert