What is GHSA-hf67-5vvq-fm3r?

GHSA-hf67-5vvq-fm3r is a security advisory published by GitHub Security Advisories with High severity. A session fixation vulnerability was found in Keycloak's login-actions endpoints. An...

Which CVE IDs does GHSA-hf67-5vvq-fm3r cover?

GHSA-hf67-5vvq-fm3r covers the following CVE IDs: CVE-2026-7507. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-hf67-5vvq-fm3r?

GHSA-hf67-5vvq-fm3r has a CVSS v3 base score of 7.5, published by GitHub Security Advisories.

GHSA-hf67-5vvq-fm3rHighCVSS 7.5

A session fixation vulnerability was found in Keycloak's login-actions endpoints. An...

Vendor

GitHub Security Advisories

Published

May 19, 2026

Last Modified

May 20, 2026

🔗 CVE IDs covered (1)

CVE-2026-7507 →

📋 Description

A session fixation vulnerability was found in Keycloak's login-actions endpoints. An unauthenticated attacker could exploit this flaw by pre-creating an authentication session and tricking a victim into visiting a maliciously crafted link. By leveraging the /login-actions/restart endpoint—which processes session handles without adequate CSRF protection or cookie ownership validation—an attacker can reset the authentication flow state. This causes Single Sign-On (SSO) to authenticate the victim transparently upon clicking the link, allowing the attacker to hijack the required-action form without needing the victim's credentials. A successful exploit could lead to complete account takeover, including highly privileged administrative accounts.

🔗 CVE IDs covered (1)

📋 Description

🔗 References (8)