{"vulnerability": "cve-2026-4820", "sightings": [{"uuid": "505fdd0a-6862-478b-be0d-45ef1e6d0f75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4820", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mihpusgg5427", "content": "", "creation_timestamp": "2026-04-01T22:18:11.104312Z"}, {"uuid": "0a2c81d8-eb2a-461a-bde5-39a13bd9d325", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48207", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmewkfjyo22j", "content": "CVE-2026-48207: Apache Fory: PyFory ReduceSerializer Incomplete Policy Enforcement", "creation_timestamp": "2026-05-21T17:20:27.138375Z"}, {"uuid": "d5fa70bc-63b8-433d-b452-1bab1dcf3ee3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48207", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmf4gxjw3k2o", "content": "CVE-2026-48207 - Apache Fory: PyFory ReduceSerializer Incomplete Policy Enforcement\nCVE ID : CVE-2026-48207\n \n Published : May 21, 2026, 5:16 p.m. | 1\u00a0hour, 2\u00a0minutes ago\n \n Description : Deserialization of untrusted data in Apache Fory PyFory. PyFory's ReduceSerializer could ...", "creation_timestamp": "2026-05-21T19:05:52.589410Z"}, {"uuid": "c5920a12-d53f-4ac8-b789-8cd885c130d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48207", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmf7jhprdt2n", "content": "\ud83d\udd34 CVE-2026-48207 - Critical (9.8)\n\nDeserialization of untrusted data in Apache Fory PyFory. PyFory's ReduceSerializer could bypass d...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-48207/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-21T20:01:11.098097Z"}, {"uuid": "c28ad8fc-0eb6-4761-828a-5044405ed670", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48207", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmfctgmtcc26", "content": "Apache Fory &lt;1.0.0 hit by CRITICAL deserialization bug \u2014 attackers could bypass validation and execute code if strict mode is off. Upgrade to 1.0.0+ now! \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-48207-cwe-502-deserialization-of-untruste-97a80f2c #OffSeq #CVE202648207 #AppSec", "creation_timestamp": "2026-05-21T21:00:13.889401Z"}, {"uuid": "ba7b4708-6638-4699-ab10-d730259bcf45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48207", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116614575641457628", "content": "\ud83d\udea8 CRITICAL: CVE-2026-48207 in Apache Fory &lt;1.0.0 \u2014 Deserialization flaw in PyFory ReduceSerializer bypasses DeserializationPolicy, risking RCE if strict mode is off. Upgrade to 1.0.0+ ASAP! https://radar.offseq.com/threat/cve-2026-48207-cwe-502-deserialization-of-untruste-97a80f2c #OffSeq #CVE202648207 #Vulnerability #ApacheFory", "creation_timestamp": "2026-05-21T21:00:19.017391Z"}, {"uuid": "1e1b9fc4-e4ad-4afb-83a8-558d82e0cc74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48208", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mn7jhzub3w2z", "content": "CVE-2026-48208 - Denial-of-Service via SVG Rendering in Ticket\nCVE ID : CVE-2026-48208\n \n Published : June 1, 2026, 4:16 a.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : An improper neutralization of active SVG content in OTRS or ((OTRS)) Community Edition ticket article renderi...", "creation_timestamp": "2026-06-01T07:08:20.634095Z"}, {"uuid": "a9455ee9-1b09-4e37-ad49-26dc09bfc6f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48209", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mn7jtf3e432e", "content": "CVE-2026-48209 - Reflected XSS in authenticated agent context\nCVE ID : CVE-2026-48209\n \n Published : June 1, 2026, 4:16 a.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : An improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling al...", "creation_timestamp": "2026-06-01T07:14:41.516939Z"}, {"uuid": "a0d9eacc-b766-45e3-a35c-161b98c63d3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48208", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/86815", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-48208\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a Habuon\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-01 11:44:15\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nThis is POC repo for CVE-2026-48208\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-01T12:00:04.000000Z"}, {"uuid": "c8e6fda7-547e-4ee4-b2fb-444530c16c90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48207", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mnjyepqdhn25", "content": "\u3010\u7dca\u6025\u3011CVE-2026-48207 Apache Fory\u306b\u6df1\u523b\u306a\u8106\u5f31\u6027\uff5c\u5373\u6642\u5bfe\u5fdc\u304c\u5fc5\u8981\n\nCVE-2026-48207 Apache Fory\u306ePyFory\u306b\u304a\u3044\u3066\u3001\u4fe1\u983c\u3067\u304d\u306a\u3044\u30c7\u30fc\u30bf\u306e\u9006\u30b7\u30ea\u30a2\u30eb\u5316\u304c\u767a\u751f\u3059\u308b\u8106\u5f31\u6027\u304c\u3042\u308a\u307e\u3059\u3002", "creation_timestamp": "2026-06-05T11:01:32.764166Z"}, {"uuid": "d6881fdb-c3a3-4eed-9383-67697f7edff2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48207", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mnjyepqdhn25", "content": "\u3010\u7dca\u6025\u3011CVE-2026-48207 Apache Fory\u306b\u6df1\u523b\u306a\u8106\u5f31\u6027\uff5c\u5373\u6642\u5bfe\u5fdc\u304c\u5fc5\u8981\n\nCVE-2026-48207 Apache Fory\u306ePyFory\u306b\u304a\u3044\u3066\u3001\u4fe1\u983c\u3067\u304d\u306a\u3044\u30c7\u30fc\u30bf\u306e\u9006\u30b7\u30ea\u30a2\u30eb\u5316\u304c\u767a\u751f\u3059\u308b\u8106\u5f31\u6027\u304c\u3042\u308a\u307e\u3059\u3002", "creation_timestamp": "2026-06-05T11:01:32.777086Z"}, {"uuid": "baaa2a84-8c5e-4531-8995-2cc3308f0dea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48207", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moqrm346uk25", "content": "\u300cApache Fory\u300dPython\u5411\u3051\u5b9f\u88c5\u306b\u8106\u5f31\u6027 - \u4fee\u6b63\u7248\u3092\u63d0\u4f9b\n\n\u30c7\u30fc\u30bf\u306e\u30b7\u30ea\u30a2\u30e9\u30a4\u30ba\u306b\u6d3b\u7528\u3055\u308c\u308b\u30e9\u30a4\u30d6\u30e9\u30ea\u300cApache Fory\u300d\u306ePython\u5411\u3051\u5b9f\u88c5\u300cPyFory\u300d\u306b\u8106\u5f31\u6027\u304c\u660e\u3089\u304b\u3068\u306a\u3063\u305f\u3002\n\n\u4fe1\u983c\u3067\u304d\u306a\u3044\u30c7\u30fc\u30bf\u3092\u30c7\u30b7\u30ea\u30a2\u30e9\u30a4\u30ba\u51e6\u7406\u3059\u308b\u8106\u5f31\u6027\u300cCVE-2026-48207\u300d\u304c\u5224\u660e\u3057\u305f\u3082\u306e\u3002\u300cpyfory 0.17.0\u300d\u304b\u3089\u300c\u540c0.13.0\u300d\u307e\u3067\u304c\u5f71\u97ff\u3092\u53d7\u3051\u308b\u3002\n\n\u7279\u5b9a\u306e\u69cb\u6210\u3067\u30c7\u30b7\u30ea\u30a2\u30e9\u30a4\u30ba\u51e6\u7406\u306e\u30dd\u30ea\u30b7\u30fc\u304c\u56de\u907f\u3055\u308c\u308b\u304a\u305d\u308c\u304c\u3042\u308b\u3002\u958b\u767a\u30c1\u30fc\u30e0\u3067\u306f\u91cd\u8981\u5ea6\u3092\u300c\u91cd\u8981\uff08Important\uff09\u300d\u3068\u30ec\u30fc\u30c6\u30a3\u30f3\u30b0\u3057\u3066\u3044\u308b\u3002", "creation_timestamp": "2026-06-20T21:14:15.481134Z"}, {"uuid": "6a721f9c-d277-417a-9070-0e86f9b83e39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48204", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwfbr7xxk2r", "content": "CVE-2026-48204: Apache Camel: Camel-MongoDB-GridFS: The gridfs.* control headers used non-Camel-prefixed names that bypass the HTTP header filter, allowing an HTTP client to switch the GridFS operation - including destructive file deletion - in the default configuration", "creation_timestamp": "2026-07-05T20:14:52.487008Z"}, {"uuid": "1583d36a-e8b7-44a4-bca8-cdaf0dbe38eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48205", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwfofkvu425", "content": "CVE-2026-48205: Apache Camel: Camel-DNS: The dns.* and term Exchange header constants used non-Camel-prefixed names that bypass the HTTP header filter, allowing an HTTP client to redirect DNS queries to an attacker-controlled server (server-side request forgery) and enumerate internal", "creation_timestamp": "2026-07-05T20:21:56.336436Z"}, {"uuid": "d60e73f0-ad9d-45e9-956a-d82684d0b027", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48206", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwftcmt4q2i", "content": "CVE-2026-48206: Apache Camel: Camel-JIRA: A set of non-Camel-prefixed Exchange header constants (IssueKey, ProjectKey, IssueTransitionId, ...) bypass the HTTP header filter, allowing an HTTP client to drive arbitrary JIRA issue operations using the endpoint's configured credentials", "creation_timestamp": "2026-07-05T20:24:43.431675Z"}, {"uuid": "22b91d6a-73f4-49ec-a6fc-2e50c9510a85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48203", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwg6pj4kz2a", "content": "CVE-2026-48203: Apache Camel: Camel-Solr: The SolrParam. and SolrField. Exchange header prefixes used non-Camel-prefixed names that bypass the HTTP header filter, allowing an HTTP client to inject Solr query parameters (server-side request forgery) and document fields", "creation_timestamp": "2026-07-05T20:31:08.779392Z"}, {"uuid": "09786bff-5895-414c-9d7b-9987707a521f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48203", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywpgyich2h", "content": "CVE-2026-48203 - apache camel\nApache Camel Solr's security filter failed to block certain header names, allowing an attacker to inject malicious data into Solr queries and indexed documents.\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:32:04.748255Z"}, {"uuid": "b1dfaf9a-5d58-4e6d-b6d8-5a40a61a45fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48204", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywpibcwx2h", "content": "CVE-2026-48204 - apache camel\nApache Camel's MongoDB component allows unauthenticated HTTP clients to switch MongoDB operations, including deleting files, without a password. This means that\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:32:05.711354Z"}, {"uuid": "16744b96-9375-4806-a635-05bc100c024b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48205", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywszkc562b", "content": "CVE-2026-48205 - apache camel dns\nApache Camel's DNS component allows an attacker to control which DNS server is used, potentially revealing internal network information. This can happen if an attacker sends\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:34:04.668530Z"}, {"uuid": "651428bb-a25c-4350-a237-0c7233f4395a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48203", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6pe244zn2d", "content": "CVE-2026-48203: \u0423\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u043c\u0435\u0442\u043e\u0434\u044b \u0437\u0430\u0449\u0438\u0442\u044b \u043e\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445\n\n\n\nhttps://kripta.biz/posts/03102D75-D87C-4F83-AAEA-EBB1E9C75BC8", "creation_timestamp": "2026-07-09T03:36:23.994931Z"}, {"uuid": "1928f95c-21a5-4088-8049-31a48c432320", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48204", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6peorkp62a", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-48204 \u0432 Apache Camel: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/6F91E94E-C46E-4DF0-A061-5228A177042B", "creation_timestamp": "2026-07-09T03:36:45.883207Z"}, {"uuid": "eae6f90d-c3aa-4583-9614-dcbc0dbf9531", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48204", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq6sqmddak2g", "content": "\ud83d\udccc CVE-2026-48204 - Improper Input Validation, Improper Access Control vulnerability in Apache Camel in Camel Mongodb Gridfs component.\n\nThe camel-mongodb-gridfs producer... https://www.cyberhub.blog/cves/CVE-2026-48204", "creation_timestamp": "2026-07-09T04:37:07.617808Z"}, {"uuid": "fa6fcd47-a997-4807-8f9d-cbffb831f6a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48203", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq74shhd2c2k", "content": "\ud83d\udccc CVE-2026-48203 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), Improper Input Validation, Server-Side Request For... https://www.cyberhub.blog/cves/CVE-2026-48203", "creation_timestamp": "2026-07-09T07:37:06.924484Z"}, {"uuid": "bd0541ef-35ff-4fcd-87b1-ff453a05920b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48205", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq76i42nok26", "content": "\ud83d\udccc CVE-2026-48205 - Improper Input Validation, Server-Side Request Forgery (SSRF) vulnerability in Apache Camel DNS component.\n\nThe camel-dns producers read DNS operation... https://www.cyberhub.blog/cves/CVE-2026-48205", "creation_timestamp": "2026-07-09T08:07:07.290405Z"}]}