{"uuid": "d60e73f0-ad9d-45e9-956a-d82684d0b027", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48206", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwftcmt4q2i", "content": "CVE-2026-48206: Apache Camel: Camel-JIRA: A set of non-Camel-prefixed Exchange header constants (IssueKey, ProjectKey, IssueTransitionId, ...) bypass the HTTP header filter, allowing an HTTP client to drive arbitrary JIRA issue operations using the endpoint's configured credentials", "creation_timestamp": "2026-07-05T20:24:43.431675Z"}