Skip to content

CVE-2026-4636 UMA Policy Resource Injection Allows Unauthorized Cross-User Permission Grants #47717

Closed
cve
#47803
Closed
CVE-2026-4636 UMA Policy Resource Injection Allows Unauthorized Cross-User Permission Grants#47717
cve
#47803
Assignees
pedroigor
Labels
kind/cveIssues identified as CVEs on third-party dependencies, or issues which Keycloak is not affectedrelease/26.2.15release/26.4.11release/26.5.7release/26.6.0
Milestone
26.6.0
@stianst

Description

@stianst
stianst
opened on Apr 2, 2026
No description provided.

Metadata

Metadata

Assignees

Labels

kind/cveIssues identified as CVEs on third-party dependencies, or issues which Keycloak is not affectedrelease/26.2.15release/26.4.11release/26.5.7release/26.6.0

Type

cve

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions