{"uuid": "b92cea3d-586b-41a2-aa2f-2eefc69a5c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motnwzjsrp2l", "content": "\ud83d\udea8  ALERT: CVE-2026-25555\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nOpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows unauthenticated attackers to gain admin access by supplying an empty X-Api-Key header value. Attackers can explo", "creation_timestamp": "2026-06-22T00:46:44.713793Z"}