{"vulnerability": "cve-2026-25555", "sightings": [{"uuid": "da5fccc7-5135-47cf-81f4-6ad6be6fcf33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnsgrf6fel23", "content": "CVE-2026-25555 - OpenBullet2 0.3.2 Authentication Bypass via X-Api-Key Header\nCVE ID : CVE-2026-25555\n \n Published : June 8, 2026, 5:16 p.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API k...", "creation_timestamp": "2026-06-08T19:40:54.373974Z"}, {"uuid": "e87c147a-77af-4f56-ad96-3a5098a2edab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-25555.yaml", "content": "", "creation_timestamp": "2026-06-16T03:30:23.000000Z"}, {"uuid": "b92cea3d-586b-41a2-aa2f-2eefc69a5c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motnwzjsrp2l", "content": "\ud83d\udea8  ALERT: CVE-2026-25555\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nOpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows unauthenticated attackers to gain admin access by supplying an empty X-Api-Key header value. Attackers can explo", "creation_timestamp": "2026-06-22T00:46:44.713793Z"}]}