Keycloak: UMA Policy Resource Injection Allows Unauthorized Cross-User Permission Grants
High severity
GitHub Reviewed
Published
Apr 2, 2026
to the GitHub Advisory Database
•
Updated Apr 4, 2026
Give feedback on Dependabot alerts