CVE-2026-2366 — A flaw was found in Keycloak. An authorization bypass vulnerability in the Keycloak Admin API allows any authenticated user, even those without administrative privileges, to enumerate the organization — CVE Database · The Intelligence Room