What is GHSA-pq65-77rc-7r8c?

GHSA-pq65-77rc-7r8c is a security advisory published by GitHub Security Advisories with Medium severity. A flaw was found in Keycloak. An authenticated administrator with the `manage-clients` role can...

Which CVE IDs does GHSA-pq65-77rc-7r8c cover?

GHSA-pq65-77rc-7r8c covers the following CVE IDs: CVE-2026-9796. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-pq65-77rc-7r8c?

GHSA-pq65-77rc-7r8c has a CVSS v3 base score of 6.5, published by GitHub Security Advisories.

GHSA-pq65-77rc-7r8cMediumCVSS 6.5

A flaw was found in Keycloak. An authenticated administrator with the `manage-clients` role can...

Vendor

GitHub Security Advisories

Published

May 28, 2026

Last Modified

May 28, 2026

🔗 CVE IDs covered (1)

CVE-2026-9796 →

📋 Description

A flaw was found in Keycloak. An authenticated administrator with the manage-clients role can exploit a Time-of-check to time-of-use (TOCTOU) vulnerability in the name-based admin role checks. This allows the attacker to escalate their privileges to realm-admin for all users within the realm, granting them extensive control over the system. The composite role relationship persists even after the attacker's own permissions are revoked and across system reboots.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-9796
https://access.redhat.com/security/cve/CVE-2026-9796
https://bugzilla.redhat.com/show_bug.cgi?id=2482464
https://github.com/advisories/GHSA-pq65-77rc-7r8c