A vulnerability identified as problematic has been detected in Red Hat Keycloak . The impacted element is an unknown function. This manipulation of the argument organization.alias causes cross site scripting. This vulnerability is handled as CVE-2026-37980 . The attack can be initiated remotely. There is not any exploit available.