CVE-2026-9796EPSS p8.3%

CVE-2026-9796CVE-2026-9796

redhat / build_of_keycloak

Description

A flaw was found in Keycloak. An authenticated administrator with the `manage-clients` role can exploit a Time-of-check to time-of-use (TOCTOU) vulnerability in the name-based admin role checks. This allows the attacker to escalate their privileges to `realm-admin` for all users within the realm, granting them extensive control over the system. The composite role relationship persists even after the attacker's own permissions are revoked and across system reboots.

Scoring

CVSS 6.5 ()
VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
EPSS0.19% probability of exploitation · percentile 8.3% · 2026-06-18T12:00:27Z
Last modified2026-06-03

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-9795
CVE
CVE-2026-9802
CVE
CVE-2026-37978
CVE
CVE-2026-9704
CVE
CVE-2026-9792
CVE
CVE-2026-9791
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.