CVE-2026-1190

{"id": "CVE-2026-1190", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.1, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 1.6}]}, "published": "2026-01-26T20:16:09.813", "references": [{"url": "https://access.redhat.com/errata/RHSA-2026:3947", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2026:3948", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2026-1190", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430835", "source": "secalert@redhat.com"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-112"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in Keycloak's SAML brokering functionality. When Keycloak is configured as a client in a Security Assertion Markup Language (SAML) setup, it fails to validate the `NotOnOrAfter` timestamp within the `SubjectConfirmationData`. This allows an attacker to delay the expiration of SAML responses, potentially extending the time a response is considered valid and leading to unexpected session durations or resource consumption."}, {"lang": "es", "value": "Se encontr\u00f3 un fallo en la funcionalidad de intermediaci\u00f3n SAML de Keycloak. Cuando Keycloak est\u00e1 configurado como un cliente en una configuraci\u00f3n de Security Assertion Markup Language (SAML), falla al validar la marca de tiempo 'NotOnOrAfter' dentro de 'SubjectConfirmationData'. Esto permite a un atacante retrasar la expiraci\u00f3n de las respuestas SAML, extendiendo potencialmente el tiempo que una respuesta se considera v\u00e1lida y llevando a duraciones de sesi\u00f3n inesperadas o consumo de recursos."}], "lastModified": "2026-04-15T00:35:42.020", "sourceIdentifier": "secalert@redhat.com"}