CVEFinder.io

CVE-2026-3121

đŸ”ļ medium
🔍 Scan for this CVE
Summary

A flaw was found in Keycloak. An administrator with `manage-clients` permission can exploit a misconfiguration where this permission is equivalent to `manage-permissions`. This allows the administrator to escalate privileges and gain control over roles, users, or other administrative functions within the realm. This privilege escalation can occur when admin permissions are enabled at the realm level.

CVSS Score
6.5
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2026-03-26
First Seen: 2026-03-27
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 47.9% of all 318,071 vulnerabilities in our database.

#165,874
Below average severity
Severity Percentile
đŸŽ¯ CISA SSVC Assessment Updated: Mar 30, 2026
🔍 Exploitation Status
None
No known exploits
⚙ī¸ Automatable
NO
Requires human interaction
đŸ’Ĩ Technical Impact
Total
Complete system compromise possible
SSVC data provided by CISA
Last Modified 2026-04-02
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
CWE IDs (Weakness Types)
CWE-266

đŸ“Ļ Affected Products 4

Vendor Product Status Affected Versions
redhat jboss_enterprise_application_platform Affected
v8.0.0
redhat single_sign-on Affected
v7.0
redhat jboss_enterprise_application_platform_expansion_pack Affected
v-
redhat build_of_keycloak Affected
v-

🔗 References 4

https://access.redhat.com/errata/RHSA-2026:6477
https://access.redhat.com/errata/RHSA-2026:6478
https://access.redhat.com/security/cve/CVE-2026-3121
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2442277
Issue Tracking Vendor Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-37977 ℹī¸ low 3.7 0.0 A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing (CORS) header injection vuln... 2026-04-06
CVE-2026-28367 ⚠ī¸ high 8.7 0.0 A flaw was found in Undertow. A remote attacker can exploit this vulnerability by sending `\r\r\r` as a header block ter... 2026-03-27
CVE-2026-28368 ⚠ī¸ high 8.7 0.1 A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where ... 2026-03-27
CVE-2026-28369 ⚠ī¸ high 8.7 0.1 A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more... 2026-03-27
CVE-2026-3190 đŸ”ļ medium 4.3 0.0 A flaw was found in Keycloak. The User-Managed Access (UMA) 2.0 Protection API endpoint for permission tickets fails to ... 2026-03-26
CVE-2026-3260 đŸ”ļ medium 5.9 0.6 A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containi... 2026-03-24
These CVEs affect the same products