VDB

CVE-2026-3911

CVE-2026-3911 PUBLISHED CVSS 2.700000047683716 LOW

Keycloak: Information disclosure of disabled user attributes via administrative endpoint

EPSS 0.01% · 2.0th percentile

Risk Scores

CVSS v3.1
2.700000047683716
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.01%
2.0th percentile

Affected Products

VendorProductVersions
Red HatRed Hat build of Keycloak 26.426.4.11-1
Red HatRed Hat build of Keycloak 26.426.4-14
Red HatRed Hat build of Keycloak 26.4.11
Red HatRed Hat build of Keycloak 26.426.4-14
Mavenorg.keycloak:keycloak-services0, 0, 0
Red HatRed Hat Build of Keycloak

Timeline

  • Mar 11, 2026 CVE Published
  • Mar 11, 2026 EPSS Score
  • Mar 12, 2026 EPSS Score
  • Mar 13, 2026 EPSS Score
  • Mar 14, 2026 EPSS Score
  • Mar 15, 2026 EPSS Score
  • Mar 16, 2026 EPSS Score
  • Mar 17, 2026 EPSS Score
  • Mar 17, 2026 Security Advisory
  • Mar 18, 2026 EPSS Score
  • Mar 19, 2026 EPSS Score
  • Mar 20, 2026 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›