Vulnerability in Red Hat Build Of Keycloak
CVE-2026-16104
A flaw was found in the authentication configuration endpoint of the keycloak-services component, which is the core engine for Red Hat Build of Keycloak identity and access management. The issue occurs because the system fails to mask sens…
CVSS v3 metric
CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N.
Affected products
Weakness classification (CWE)
References
- secalert@redhat.com (x_refsource_REDHAT, vdb-entry)
- secalert@redhat.com (x_refsource_REDHAT, issue-tracking)
Frequently asked questions
- What is CVE-2026-16104?
- CVE-2026-16104 is a medium-severity vulnerability in Red Hat Build Of Keycloak, classified under Insufficiently Protected Credentials. CVSS score: 4.3/10. Published 2026-07-17.
- How severe is CVE-2026-16104?
- Medium severity. CVSS v3 base score is 4.3 out of 10.