{"uuid": "06487d60-75dc-4dde-b9f3-5586ecb25f10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55518", "type": "seen", "source": "https://mastodon.social/users/hugovalters/statuses/116937850284003911", "content": "CVE-2026-55518 - Critical privilege escalation in Avo admin panel. Ruby on Rails users: authorization bypass in association attach workflow lets authenticated low-privilege users mutate associations. CVSS 9.6. No patch yet - monitor updates. #CVE #RubyOnRails #infosec\nhttps://www.valtersit.com/cve/CVE-2026-55518/", "creation_timestamp": "2026-07-17T23:13:12.408713Z"}