CVE-2026-9087 Blast Radius

MEDIUM • CVSS 6.4A flaw was found in Keycloak. The cross-session verification proof is keyed only by (local userId, idpAlias) and is not bound to the upstream identity…

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-9087.

Start Free Scan →← Back to CVE-2026-9087