{"vulnerability": "CVE-2026-4923", "sightings": [{"uuid": "b965a242-b8b3-4086-ae97-9a8930ab1a34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4923", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3mhybs4t2sk27", "content": "", "creation_timestamp": "2026-03-26T18:56:15.180833Z"}, {"uuid": "8d878b6a-9530-41ac-8b58-ba7a84e3925f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4923", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhygeac6dl2i", "content": "", "creation_timestamp": "2026-03-26T20:17:55.460040Z"}, {"uuid": "3e27037e-4777-420d-b9bd-dc07fc2c1786", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49237", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwbxwuwqy2n", "content": "\ud83d\udfe0 CVE-2026-49237 - High (7.8)\n\nAn issue was discovered in Canonical Multipass for macOS before version 1.16.3 due to an incomple...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-49237/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T15:00:07.100188Z"}, {"uuid": "7881abe0-22eb-4a06-8816-f20760b9230f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49238", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwby5t6o32c", "content": "\ud83d\udfe0 CVE-2026-49238 - High (8.4)\n\nAn issue was discovered in Canonical Multipass before version 1.16.3. The host-side SFTP server c...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-49238/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T15:00:14.408058Z"}, {"uuid": "6ecf5bd3-36bf-42c4-8b03-bd41b4898861", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49238", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmweoupup52n", "content": "CVE-2026-49238 - SFTP Server VM Escape in Canonical Multipass\nCVE ID : CVE-2026-49238\n \n Published : May 28, 2026, 2:16 p.m. | 54\u00a0minutes ago\n \n Description : An issue was discovered in Canonical Multipass before version 1.16.3. The host-side SFTP server component (sshfs_serve...", "creation_timestamp": "2026-05-28T15:48:43.785716Z"}, {"uuid": "9f805b65-5e16-46fe-89a5-02335d9327b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49238", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnaea5idws2i", "content": "\ud83d\udccc CVE-2026-49238 - An issue was discovered in Canonical Multipass before version 1.16.3. The host-side SFTP server component (sshfs_server), which executes with root pri... https://www.cyberhub.blog/cves/CVE-2026-49238", "creation_timestamp": "2026-06-01T15:07:07.083962Z"}, {"uuid": "e4afaf98-03d2-48d8-98c0-a326fb853516", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49235", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnrykghu4t2p", "content": "CVE-2026-49235 - Routinator crashes on specifically crafted RRDP XML files\nCVE ID : CVE-2026-49235\n \n Published : June 8, 2026, 12:59 p.m. | 2\u00a0hours, 16\u00a0minutes ago\n \n Description : When Routinator encounters a file via RRDP using a specifically crafted Document Type Definitio...", "creation_timestamp": "2026-06-08T15:26:14.700095Z"}, {"uuid": "9a51a14b-c774-4814-8d5d-562a42442906", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49233", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnryrdiyxt2n", "content": "CVE-2026-49233 - Routinator cache path traversal using rogue rsync URIs\nCVE ID : CVE-2026-49233\n \n Published : June 8, 2026, 12:58 p.m. | 2\u00a0hours, 16\u00a0minutes ago\n \n Description : Routinator does not properly check the module component of rsync URIs, which are used to create th...", "creation_timestamp": "2026-06-08T15:29:54.125796Z"}, {"uuid": "b656bc10-3ecc-49db-8054-76c6b47e1964", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49234", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnrzkx6ye52n", "content": "CVE-2026-49234 - Routinator crashes on specifically crafted ASN strings in the API\nCVE ID : CVE-2026-49234\n \n Published : June 8, 2026, 12:58 p.m. | 2\u00a0hours, 16\u00a0minutes ago\n \n Description : When sending a specifically crafted non-UTF-8 string as select-asn query parameter to t...", "creation_timestamp": "2026-06-08T15:44:13.824846Z"}, {"uuid": "201a9ceb-4345-4793-9b59-26650f91f7b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49232", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnrztvspks2q", "content": "CVE-2026-49232 - Routinator exits when accepting an incoming HTTP or RTR connection fails\nCVE ID : CVE-2026-49232\n \n Published : June 8, 2026, 12:58 p.m. | 2\u00a0hours, 16\u00a0minutes ago\n \n Description : Routinator exits on any error when accepting incoming HTTP or RTR connections, i...", "creation_timestamp": "2026-06-08T15:49:14.165022Z"}, {"uuid": "660c9f80-1f63-489d-9e7c-5a4e6b8dcc98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49231", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mono2yycz62k", "content": "CVE-2026-49231: Apache APISIX: Identity spoofing issue in APISIX opa plugin", "creation_timestamp": "2026-06-19T15:32:59.931628Z"}, {"uuid": "9806d37f-29de-421c-9ff2-6a1f3798866e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49230", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3monoullf4522", "content": "CVE-2026-49230: Apache APISIX: Authentication bypass in jwe-decrypt", "creation_timestamp": "2026-06-19T15:47:18.497068Z"}, {"uuid": "e437125b-c666-46cc-a321-71cf85df3c18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49230", "type": "seen", "source": "https://t.me/GithubRedTeam/92739", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-49230-APISIX-jwe-decrypt-Auth-Bypass\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a BiiTts\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-09 21:49:01\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for CVE-2026-49230: Apache APISIX jwe-decrypt authentication bypass (missing AES-GCM tag validation, CWE-354, CVSS 9.1)\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-13T22:00:05.934602Z"}, {"uuid": "24531b72-9ce4-4407-b0bc-e4ca836476ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49230", "type": "seen", "source": "https://t.me/GithubRedTeam/92739", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-49230-APISIX-jwe-decrypt-Auth-Bypass\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a BiiTts\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-09 21:49:01\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for CVE-2026-49230: Apache APISIX jwe-decrypt authentication bypass (missing AES-GCM tag validation, CWE-354, CVSS 9.1)\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-14T00:00:09.383064Z"}, {"uuid": "1935d7fe-e086-4655-a37d-f9f392baadb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49230", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/92739", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-49230-APISIX-jwe-decrypt-Auth-Bypass\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a BiiTts\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-09 21:49:01\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for CVE-2026-49230: Apache APISIX jwe-decrypt authentication bypass (missing AES-GCM tag validation, CWE-354, CVSS 9.1)\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-15T00:00:36.688343Z"}, {"uuid": "8b9804bd-8331-4f96-bd69-62c00237267a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49230", "type": "seen", "source": "Telegram/Ptfoq-36JIr04842aRlYyiRH2eHGSh16yRBc9X59r84iQ6U", "content": "", "creation_timestamp": "2026-07-16T19:00:15.086287Z"}, {"uuid": "58d8d777-e480-4013-a614-ef6978b0206c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49230", "type": "seen", "source": "Telegram/Ptfoq-36JIr04842aRlYyiRH2eHGSh16yRBc9X59r84iQ6U", "content": "", "creation_timestamp": "2026-07-17T00:00:30.533652Z"}, {"uuid": "9f5bd4cd-ec4d-4465-9928-0d58a7a2892b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49230", "type": "published-proof-of-concept", "source": "Telegram/Ptfoq-36JIr04842aRlYyiRH2eHGSh16yRBc9X59r84iQ6U", "content": "", "creation_timestamp": "2026-07-18T00:00:42.444707Z"}]}