CVE-2026-2733
Awaiting Analysis Awaiting Analysis - Queue
Authentication Bypass in Keycloak Docker v2 Endpoint Enables Unauthorized Access

Publication date: 2026-02-19

Last updated on: 2026-03-05

Assigner: Red Hat, Inc.

Description
A flaw was identified in the Docker v2 authentication endpoint of Keycloak, where tokens continue to be issued even after a Docker registry client has been administratively disabled. This means that turning the client β€œEnabled” setting to OFF does not fully prevent access. As a result, previously valid credentials can still be used to obtain authentication tokens. This weakens administrative controls and could allow unintended access to container registry resources.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-19
Last Modified
2026-03-05
Generated
2026-06-16
AI Q&A
2026-02-19
EPSS Evaluated
2026-06-14
NVD
CVE-2026-2733
EUVD
EUVD-2026-7669
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
keycloak keycloak *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-285 The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

[{'type': 'paragraph', 'content': 'This vulnerability is an improper authorization flaw in the Docker v2 authentication endpoint of Keycloak. Specifically, the server does not check if a Docker registry client is enabled before issuing access tokens. Even if a client has been administratively disabled, the endpoint will still issue valid authentication tokens when valid user credentials and the disabled client\'s ID are presented. This means that turning off the client\'s "Enabled" setting does not fully prevent access.'}, {'type': 'paragraph', 'content': 'As a result, previously valid credentials can still be used to obtain authentication tokens, bypassing intended administrative restrictions.'}] [1]

Impact Analysis

This vulnerability weakens administrative controls by allowing authentication tokens to be issued even for disabled clients. Consequently, authenticated users may gain unauthorized access to container registry resources that should have been restricted.

This could lead to unintended access to sensitive container images or data stored in the registry, potentially compromising security.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-2733. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart