keycloak-services is vulnerable to Authorization Bypass
81
High Risk
The Keycloak policy enforcement compares request URIs incorrectly when matching the configured access-denied page path. By placing that path inside a request URL as a path segment or a query parameter, an authenticated user can make the server treat protected requests as the public access-denied page. This bypasses all role, scope, and UMA permission checks and grants access to protected resources. The fix corrects the URI comparison so the access-denied path no longer disables enforcement.
You are affected if you are using a version that falls within the vulnerable range and your deployment relies on Keycloak authorization policy enforcement with a configured access-denied page.
keycloak-services is vulnerable to Authorization Bypass in versions 1.0.1 - 26.6.3.
Upgrade the org.keycloak:keycloak-services library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant