Home > Vulnerability Database > CVE-2026-1190

Mend.io Vulnerability Database

CVE-2026-1190

Good to know:

Date: January 26, 2026

A flaw was found in Keycloak's SAML brokering functionality. When Keycloak is configured as a client in a Security Assertion Markup Language (SAML) setup, it fails to validate the "NotOnOrAfter" timestamp within the "SubjectConfirmationData". This allows an attacker to delay the expiration of SAML responses, potentially extending the time a response is considered valid and leading to unexpected session durations or resource consumption.

Severity Score

3.1

Related Resources (6)

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2430835

Url: https://nvd.nist.gov/vuln/detail/CVE-2026-1190

Url: https://access.redhat.com/security/cve/CVE-2026-1190

Url: https://github.com/keycloak/keycloak/issues/45646

Url: https://github.com/keycloak/keycloak

Url: https://www.mend.io/vulnerability-database/CVE-2026-1190

Severity Score

3.1

Weakness Type (CWE)

Improper Verification of Cryptographic Signature

CWE-347

Insufficient Session Expiration

CWE-613

Missing XML Validation

CWE-112

CVSS v3.1

Base Score:	3.1
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2026-1190

Good to know:

Date: January 26, 2026

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?