Keycloak SingleUseObjectProvider Authorization Code Forgery Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability exists in Keycloak's SingleUseObjectProvider, which serves as a global key-value store. This flaw arises from inadequate type and namespace isolation, enabling an unauthenticated attacker to forge authorization codes. Exploiting this vulnerability can result in the creation of access tokens with administrative privileges, leading to unauthorized privilege escalation.

Impact

Exploitation of this vulnerability allows for privilege escalation by forging authorization codes and obtaining admin-capable access tokens.

Added: Apr 2, 2026, 1:21 PM

Updated: Apr 2, 2026, 1:21 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

5.0

exploitability

7.6

remediation

0.0

relevance

5.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

5.0

exploitability

7.6

remediation

0.0

relevance

5.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Keycloak SingleUseObjectProvider Authorization Code Forgery Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Affected Products

Red Hat Build of Keycloak

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating