Keycloak has an Out-of-bounds Read
Moderate severity
GitHub Reviewed
Published
May 28, 2026
to the GitHub Advisory Database
•
Updated Jul 1, 2026
Package
Affected versions
<= 26.4.7
>= 26.5.0, < 26.6.3
Patched versions
26.6.3
Description
Published by the National Vulnerability Database
May 28, 2026
Published to the GitHub Advisory Database
May 28, 2026
Reviewed
Jul 1, 2026
Last updated
Jul 1, 2026
A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authorization: Bearer' header to any client registration endpoint. This can lead to an ArrayIndexOutOfBoundsException, causing the server to return an HTTP 500 error and resulting in a Denial of Service (DoS) for the affected service.
References