CVE-2026-7500 | Keycloak Account REST API /account/v1alpha1 checkAccountApiEnabled direct request

A vulnerability, which was classified as problematic, has been found in Keycloak. This vulnerability affects the function checkAccountApiEnabled of the file /account/v1alpha1 of the component Account REST API. This manipulation causes direct request.

The identification of this vulnerability is CVE-2026-7500. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More