{"vulnerability": "CVE-2026-46455", "sightings": [{"uuid": "f1cef729-cb7e-4ed3-b12a-bd31c23eccc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46455", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwcuibuak27", "content": "CVE-2026-46455: Apache Camel: Camel-Keycloak: The access-token validity window is not verified because the IS_ACTIVE check is missing from the TokenVerifier, allowing expired tokens to be accepted", "creation_timestamp": "2026-07-05T19:31:39.358735Z"}, {"uuid": "949fe04d-2b37-4bab-ab77-d3c277e6feaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46455", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywepxbu62k", "content": "CVE-2026-46455 - apache camel\nApache Camel's Keycloak component fails to verify access token expiration dates, allowing expired tokens to be accepted. This issue affects Apache Camel versions\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:26:06.419098Z"}, {"uuid": "27f90899-7d47-4b04-99b2-7b27959ac2b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46455", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6pconfr52w", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-46455 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 Apache Camel Keycloak: \u0443\u0433\u0440\u043e\u0437\u0430 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0433\u043e \u0437\u0430\u0432\u0435\u0440\u0448\u0435\u043d\u0438\u044f \u0441\u0435\u0430\u043d\u0441\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/935A1812-F2FB-462A-8605-62E508A077FE", "creation_timestamp": "2026-07-09T03:35:38.555621Z"}, {"uuid": "d89e3e11-9765-4a3a-b8c7-1ee791db8ba8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46455", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq6w3vdfrp23", "content": "\ud83d\udccc CVE-2026-46455 - Insufficient Session Expiration vulnerability in Apache Camel Keycloak Component.\n\nThe camel-keycloak security helper KeycloakSecurityHelper.parseAndV... https://www.cyberhub.blog/cves/CVE-2026-46455", "creation_timestamp": "2026-07-09T05:37:06.966940Z"}]}