{"vulnerability": "CVE-2026-49844", "sightings": [{"uuid": "aa06a60c-d79a-4c0a-8616-45e0129d7655", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49844", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mqdgqliloj24", "content": "CVE-2026-49844: Apache Log4j API: Improper serialization of non-finite floating-point values in MapMessage.asJson()", "creation_timestamp": "2026-07-11T00:45:40.058034Z"}, {"uuid": "b85998d7-5abc-4d21-8fbf-e9d5e9f9a31e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49844", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mqifb46f5g27", "content": "A new Apache Log4j flaw, CVE-2026-49844, makes log4j-api emit invalid JSON from non-finite numbers. Patch to 2.25.5 or 2.26.1 now.\n\n#Log4j #CVE202649844 #ApacheLog4j #Vulnerability #CyberSecurity", "creation_timestamp": "2026-07-13T00:02:26.044222Z"}]}