{"vulnerability": "CVE-2026-5398", "sightings": [{"uuid": "f86c9a2a-78b6-4f85-8052-b5fd7495de47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53982", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo4fikpduf2f", "content": "CVE-2026-53982 - Capgo Console\nCVE ID : CVE-2026-53982\n \n Published : June 12, 2026, 4:25 p.m. | 57\u00a0minutes ago\n \n Description : Capgo Console prior to 12.28.2 contains a denial-of-service vulnerability in its account deletion flow that allows an attacker to block authenticati...", "creation_timestamp": "2026-06-12T18:44:15.557814Z"}, {"uuid": "630c4c42-96a1-415d-9397-c00810a3b5a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5398", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mk4g4rep222f", "content": "", "creation_timestamp": "2026-04-22T21:14:47.794622Z"}, {"uuid": "9d876ccb-99d2-45b8-976e-cbe92a5f472d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5398", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mk2nsadkcu2i", "content": "", "creation_timestamp": "2026-04-22T04:26:44.169652Z"}, {"uuid": "c9e1d58e-d2fc-497d-a807-213f44e568d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5398", "type": "seen", "source": "Telegram/GWv-rb7UfX_BXuTinSPZbLsKECuSpybC90nlKZTm2UKU7Bs", "content": "", "creation_timestamp": "2026-04-22T17:24:29.000000Z"}, {"uuid": "a0fffe2d-67fc-4124-92f9-6f67c51b188e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5398", "type": "seen", "source": "https://infosec.exchange/users/wdormann/statuses/116675497913967123", "content": "Not even mentioned in the blog post because Calif didn't discover them are two more LPEs:CVE-2026-6386 - amd64CVE-2026-5398 - tty\nAnd an RCE in dhclient (\ud83d\ude2e)CVE-2026-42511 - dhclient\nThat's right, a malicious DHCP server on your network can run commands as root on FreeBSD that isn't fully patched. (Yes, I ran dhclient as root here to demonstrate the vul, but the same thing would happen automatically with a couple of boots of the victim).", "creation_timestamp": "2026-06-01T15:15:43.345722Z"}, {"uuid": "edb105e4-66fe-4595-83bb-7e3e8fde5d86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53981", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mo7odisauw26", "content": "\ud83d\udfe0 CVE-2026-53981 - High (7.6)\n\nCap-go prior to 12.128.2 contains an account takeover vulnerability in its email change mechanism...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53981/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T02:02:35.883396Z"}]}