CVE-2026-2603 | Keycloak SAML Identity Provider improper authentication (EUVD-2026-12690 / WID-SEC-2026-0622)
A vulnerability classified as critical has been found in Keycloak. This impacts an unknown function of the component SAML Identity Provider Handler. Performing a manipulation results in improper authentication.
This vulnerability is known as CVE-2026-2603. Access to the local network is required for this attack. No exploit is available.