A vulnerability was found in Keycloak on Red Hat. It has been classified as critical. The affected element is an unknown function of the component ClientResource. This manipulation causes permission issues. The identification of this vulnerability is CVE-2026-14614. It is possible to initiate the attack remotely.
| Vendor | Product | Versions |
|---|---|---|
| red hat | red hat build of keycloak | — |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| open source | open source keycloak | cert_advisory | 90% |
Updated severity to CRITICAL, changed exploit availability to false, and added new description details.
Initial creation