Keycloak group-admin to realm-admin privilege escalation

cve · CVE-2026-9099

Coverage timeline

first 2026-06-28 → last 2026-06-28

Briefs

1 distinct

Sources cited

7 hosts

Sections touched

—

Co-occurring entities

no co-occurrence

Story timeline

2026-06-28CTI Daily Brief — 2026-06-28

Source distribution

keycloak.org3 (30%)
wid.cert-bund.de2 (20%)
advisories.ncsc.nl1 (10%)
content.naic.org1 (10%)
github.com1 (10%)
techcrunch.com1 (10%)
vulncheck.com1 (10%)

External references

NVD · cve.org · CISA KEV

All cited sources (10)

keycloak.orgprimaryinlineKeycloakhttps://www.keycloak.org/2026/05/keycloak-2662-released
source profile · cited in 2026-W21, 2026-05-21
keycloak.orgprimaryinlineKeycloakhttps://www.keycloak.org/2026/06/keycloak-2663-released
source profile · cited in 2026-W23, 2026-06-07
keycloak.orgprimaryinlineKeycloak Project, 2026-06-26https://www.keycloak.org/2026/06/keycloak-2664-released
source profile · cited in 2026-06-28
advisories.ncsc.nlinlineNCSC-NL, 2026-06-24https://advisories.ncsc.nl/advisory?id=NCSC-2026-0210
source profile · cited in 2026-06-28
content.naic.orginlineNAIC, 2026-06-26https://content.naic.org/about/security-update
cited in 2026-06-28
github.cominlineGitHub Advisory GHSA-gqj5-2xp5-3qmp, 2026-06-25https://github.com/advisories/GHSA-gqj5-2xp5-3qmp
source profile · cited in 2026-06-28
techcrunch.cominlineTechCrunch, 2026-06-26https://techcrunch.com/2026/06/26/russian-hackers-were-behind-2-5-billion-hack-of-jaguar-land-rover-report/
cited in 2026-06-28
vulncheck.cominlineVulnCheck, 2026-06-27https://www.vulncheck.com/advisories/gitea-act-runner-container-hardening-bypass-via-workflow-container-options
source profile · cited in 2026-06-28
wid.cert-bund.deinlineBSI CERT-Bund WID-SEC-2026-1612https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1612
source profile · cited in 2026-W21, 2026-05-21
wid.cert-bund.deinlineBSI WID-SEC-2026-2093, 2026-06-26https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-2093
source profile · cited in 2026-06-28

Items in briefs about Keycloak group-admin to realm-admin privilege escalation

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.