Vulnerability Description
Cross-Realm Token Acceptance Bypass in KeycloakSecurityPolicy Apache Camel Keycloak component. The Camel-Keycloak KeycloakSecurityPolicy does not validate the iss (issuer) claim of JWT tokens against the configured realm. A token issued by one Keycloak realm is silently accepted by a policy configured for a completely different realm, breaking tenant isolation. This issue affects Apache Camel: from 4.15.0 before 4.18.0. Users are recommended to upgrade to version 4.18.0, which fixes the issue.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Camel | >= 4.15.0, < 4.18.0 |
Related Weaknesses (CWE)
References
- https://camel.apache.org/security/CVE-2026-23552.htmlVendor Advisory
- https://github.com/oscerd/CVE-2026-23552ExploitThird Party Advisory
- http://www.openwall.com/lists/oss-security/2026/02/18/7Mailing ListThird Party Advisory
FAQ
What is CVE-2026-23552?
CVE-2026-23552 is a vulnerability with a CVSS score of 9.1 (CRITICAL). Cross-Realm Token Acceptance Bypass in KeycloakSecurityPolicy Apache Camel Keycloak component. The Camel-Keycloak KeycloakSecurityPolicy does not validate the iss (issuer) claim of JWT tokens agains...
How severe is CVE-2026-23552?
CVE-2026-23552 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2026-23552?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Camel.