High severity authorization #vulnerability in Keycloak:
1. Of course it's because of JWT
2. If a project with a sole purpose is authn/authz is getting #JWT wrong, you probably are too.
CVE-2026-1529 - GitHub Advisory Database
GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.
GitHub (github.com)