Sign In

CVE-2026-37977

ADVISORY - github

Summary

A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing (CORS) header injection vulnerability in Keycloak's User-Managed Access (UMA) token endpoint. This flaw occurs because the azp claim from a client-supplied JSON Web Token (JWT) is used to set the Access-Control-Allow-Origin header before the JWT signature is validated. When a specially crafted JWT with an attacker-controlled azp value is processed, this value is reflected as the CORS origin, even if the grant is later rejected. This can lead to the exposure of low-sensitivity information from authorization server error responses, weakening origin isolation, but only when a target client is misconfigured with webOrigins: ["*"].

EPSS Score: 0.00007 (0.005)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-346

Origin Validation Error

ADVISORY - github

CWE-346

Origin Validation Error

ADVISORY - redhat

CWE-346

Origin Validation Error

Impacted images

Advisories

NIST

CREATED

UPDATED

ADVISORY IDCVE-2026-37977
EXPLOITABILITY SCORE

2.2

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-346

CVSS SCORE

3.7low

GitHub

CREATED

UPDATED

ADVISORY IDGHSA-5v8v-xvjv-57x7
EXPLOITABILITY SCORE

2.2

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-346

CVSS SCORE

3.7low

Red Hat

CREATED

UPDATED

ADVISORY IDCVE-2026-37977
EXPLOITABILITY SCORE

2.2

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-346

CVSS SCORE

3.7low

minimos

CREATED

UPDATED

ADVISORY ID

MINI-4jx5-hmg6-3qmv

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

UPDATED

ADVISORY ID

MINI-7wm3-grjx-7m6q

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY