From f499ab1b929668934a1e51e42cb1d758bc054002 Mon Sep 17 00:00:00 2001
From: coffeemakr <5737978+coffeemakr@users.noreply.github.com>
Date: Wed, 20 May 2026 12:21:33 +0200
Subject: [PATCH] Improve GHSA-c739-f6xw-6pv2

---
 .../GHSA-c739-f6xw-6pv2.json                  | 37 ++++++++++++++++++-
 1 file changed, 35 insertions(+), 2 deletions(-)

diff --git a/advisories/unreviewed/2026/05/GHSA-c739-f6xw-6pv2/GHSA-c739-f6xw-6pv2.json b/advisories/unreviewed/2026/05/GHSA-c739-f6xw-6pv2/GHSA-c739-f6xw-6pv2.json
index 861fbb0d15198..54d9e17f88fb5 100644
--- a/advisories/unreviewed/2026/05/GHSA-c739-f6xw-6pv2/GHSA-c739-f6xw-6pv2.json
+++ b/advisories/unreviewed/2026/05/GHSA-c739-f6xw-6pv2/GHSA-c739-f6xw-6pv2.json
@@ -1,11 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-c739-f6xw-6pv2",
-  "modified": "2026-05-19T12:31:41Z",
+  "modified": "2026-05-19T12:31:42Z",
   "published": "2026-05-19T12:31:41Z",
   "aliases": [
     "CVE-2026-4630"
   ],
+  "summary": "Keycloak Authorization Services Protection API IDOR (Cross-Resource Server Access)",
   "details": "A flaw was found in Keycloak. An authenticated client could exploit an Insecure Direct Object Reference (IDOR) vulnerability in the Authorization Services Protection API endpoint. By knowing or obtaining a resource's unique identifier (UUID) belonging to another Resource Server within the same realm, the client could bypass authorization checks. This allows the client to perform unauthorized GET, PUT, and DELETE operations on resources, leading to information disclosure and potential unauthorized modification or deletion of data.",
   "severity": [
     {
@@ -13,12 +14,40 @@
       "score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"
     }
   ],
-  "affected": [],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Maven",
+        "name": "org.keycloak:keycloak-services"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "26.6.2"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4630"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/keycloak/keycloak/issues/49115"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/keycloak/keycloak/pull/49121"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2026-4630"
@@ -26,6 +55,10 @@
     {
       "type": "WEB",
       "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450245"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/keycloak/keycloak"
     }
   ],
   "database_specific": {