A vulnerability marked as problematic has been reported in Keycloak on Red Hat. This impacts an unknown function of the component Redirect Handler . Performing a manipulation results in cross site scripting. This vulnerability is known as CVE-2026-9086 . Remote exploitation of the attack is possible. No exploit is available.