Information Disclosure Vulnerability in Keycloak by Red Hat
CVE-2026-3911

2.7LOW

Key Information:

Vendor

Red Hat
Status
Red Hat Build Of Keycloak 26.4
Red Hat Build Of Keycloak 26.4.11
Vendor
CVE Published:
11 March 2026

What is CVE-2026-3911?

A flaw exists in Keycloak that allows authenticated users with the view-users role to exploit a weakness in the UserResource component. By accessing a specific administrative endpoint, these users can improperly retrieve hidden user attributes. This creates a risk of unauthorized access to sensitive user information, potentially exposing critical data. Organizations using Keycloak should evaluate their configurations and implement necessary security measures to mitigate this risk.

Affected Version(s)

Red Hat build of Keycloak 26.4 26.4.11-1

Red Hat build of Keycloak 26.4 26.4-14

Red Hat build of Keycloak 26.4 26.4-14

References

https://access.redhat.com/errata/RHSA-2026:6477
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:6478
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2026-3911
vdb-entryx_refsource_REDHAT

CVSS V3.1

Score:
2.7
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Red Hat would like to thank drak3hft7 for reporting this issue.
.