What is the CVSS score of EUVD-2026-12762?

EUVD-2026-12762 has a CVSS 3.1 base score of 5.8 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N. EPSS exploitation probability: 0.0%.

Which versions of Red Hat Build Of Keycloak are affected by EUVD-2026-12762?

Organizations using A flaw should be aware of moderate risk from CVE-2026-4366, a server-side request forgery vulnerability rated CVSS 5.8. Users could be tricked into performing unintended actions.

Red Hat Build Of Keycloak EUVD-2026-12762

| CVE-2026-4366 MEDIUM

Server-Side Request Forgery (SSRF) (CWE-918)

2026-03-18 redhat

Information Disclosure SSRF Red Hat Build Of Keycloak Red Hat Jboss Enterprise Application Platform 8 Red Hat Jboss Enterprise Application Platform Expansion Pack Red Hat Single Sign On 7

5.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

5.8 MEDIUM

AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Red Hat

5.8 MEDIUM

qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

Low

Integrity

None

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 18, 2026 - 04:30 euvd

EUVD-2026-12762

Analysis Generated

Mar 18, 2026 - 04:30 vuln.today

CVE Published

Mar 18, 2026 - 04:02 nvd

MEDIUM 5.8

DescriptionCVE.org

A flaw was identified in Keycloak, an identity and access management solution, where it improperly follows HTTP redirects when processing certain client configuration requests. This behavior allows an attacker to trick the server into making unintended requests to internal or restricted resources. As a result, sensitive internal services such as cloud metadata endpoints could be accessed. This issue may lead to information disclosure and enable attackers to map internal network infrastructure.

AnalysisAI

A remote code execution vulnerability in A flaw (CVSS 5.8) that allows an attacker. Remediation should follow standard vulnerability management procedures.

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Vulnerability AssessmentAI

Risk Assessment	CVSS 5.8. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker could exploit this vulnerability in A flaw to compromise the security of affected deployments, potentially impacting confidentiality, integrity, or availability.
Remediation	Monitor vendor channels for patch availability. Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. …

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

Debian

Bug #1088287

keycloak

Release	Status	Fixed Version	Urgency
	open	-	-

EUVD-2026-12762 vulnerability details – vuln.today

Back

Red Hat Build Of Keycloak EUVD-2026-12762

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Vulnerability AssessmentAI

Recommended ActionAI

Vendor StatusVendor

Debian

Share

External POC / Exploit Code