What is GHSA-fqjh-8322-vgrv?

GHSA-fqjh-8322-vgrv is a security advisory published by GitHub Security Advisories with Medium severity. A flaw was found in Keycloak. A remote, unauthenticated attacker can exploit this vulnerability...

Which CVE IDs does GHSA-fqjh-8322-vgrv cover?

GHSA-fqjh-8322-vgrv covers the following CVE IDs: CVE-2026-9794. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-fqjh-8322-vgrv?

GHSA-fqjh-8322-vgrv has a CVSS v3 base score of 5.3, published by GitHub Security Advisories.

GHSA-fqjh-8322-vgrvMediumCVSS 5.3

A flaw was found in Keycloak. A remote, unauthenticated attacker can exploit this vulnerability...

Vendor

GitHub Security Advisories

Published

May 28, 2026

Last Modified

May 28, 2026

🔗 CVE IDs covered (1)

CVE-2026-9794 →

📋 Description

A flaw was found in Keycloak. A remote, unauthenticated attacker can exploit this vulnerability by sending specially crafted SOAP requests to the SAML ECP (Security Assertion Markup Language Enhanced Client or Proxy) endpoint with varying client IDs. By observing distinct faultstrings in the responses, the attacker can determine the client's protocol type, leading to information disclosure.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-9794
https://access.redhat.com/security/cve/CVE-2026-9794
https://bugzilla.redhat.com/show_bug.cgi?id=2482461
https://github.com/advisories/GHSA-fqjh-8322-vgrv