|
2931
|
9.1 |
CRITICAL
Network
|
projectcapsule
|
capsule
|
Capsule is a multi-tenancy and policy-based framework for Kubernetes. The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets th…
|
CWE-20
CWE-863
Improper Input Validation
Incorrect Authorization
|
CVE-2026-22872
|
2026-06-4 04:40 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2932
|
4.9 |
MEDIUM
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak. A remote attacker with high privileges, such as a realm administrator configuring a malicious Lightweight Directory Access Protocol (LDAP) server or an attacker compromi…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-9801
|
2026-06-4 04:38 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2933
|
4.3 |
MEDIUM
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak, an open-source identity and access management solution. When a user account is temporarily locked due to repeated failed login attempts, an attacker with valid client cr…
|
CWE-305
Authentication Bypass by Primary Weakness
|
CVE-2026-9798
|
2026-06-4 04:38 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2934
|
6.5 |
MEDIUM
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak. An authenticated administrator with the `manage-clients` role can exploit a Time-of-check to time-of-use (TOCTOU) vulnerability in the name-based admin role checks. This…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-9796
|
2026-06-4 04:38 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2935
|
7.3 |
HIGH
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. An administrator with limited client management permissions can exploit this vulnerability to assign any realm role, in…
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2026-9795
|
2026-06-4 04:38 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2936
|
5.3 |
MEDIUM
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak. A remote, unauthenticated attacker can exploit this vulnerability by sending specially crafted SOAP requests to the SAML ECP (Security Assertion Markup Language Enhanced…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2026-9794
|
2026-06-4 04:37 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2937
|
6.5 |
MEDIUM
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak's Client Policies, specifically within the `org.keycloak.protocol.oidc` component. When certain condition providers (client-type, client-roles, client-attributes, client-…
|
CWE-280
Improper Handling of Insufficient Permissions or Privileges
|
CVE-2026-9792
|
2026-06-4 04:37 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2938
|
6.8 |
MEDIUM
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak. When revokeRefreshToken=true is enabled and persistent session storage is in use, a server restart can reset internal timing mechanisms. This allows a remote attacker, w…
|
CWE-613
Insufficient Session Expiration
|
CVE-2026-9802
|
2026-06-4 04:36 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2939
|
7.5 |
HIGH
Network
|
winmtr
|
winmtr
|
WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload file containing a large buffer of repeated characters. Attackers c…
|
CWE-120
Classic Buffer Overflow
|
CVE-2018-25426
|
2026-06-4 04:31 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2940
|
5.3 |
MEDIUM
Network
|
redhat
|
build_of_keycloak
|
A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authori…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-9803
|
2026-06-4 04:28 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
