{"vulnerability": "cve-2026-5847", "sightings": [{"uuid": "e000058d-78a0-45df-9fdc-058bd88996dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-5847", "type": "seen", "source": "https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-5847", "content": "", "creation_timestamp": "2026-04-08T20:16:06.000000Z"}, {"uuid": "f8650fa5-d1a4-46aa-ad84-4bb8dc92b72b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58473", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3lnftqre2z", "content": "CVE-2026-58473\nAn attacker can create an account and change the way Cognee uses its language model. This allows them to steal information from other users, such as their prompts, documents, and knowledge. To fix this, update\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-07T21:52:04.471387Z"}, {"uuid": "d55352ea-870d-4f5b-9570-84badaf35a70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58473", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq3rk2sdn42k", "content": "CVE-2026-58473 - Cognee\nCVE ID : CVE-2026-58473\n \n Published : July 7, 2026, 9:17 p.m. | 1\u00a0hour, 57\u00a0minutes ago\n \n Description : Cognee before 1.2.0 contains an improper access control vulnerability that allows unauthenticated attackers to overwrite the global LLM provider con...", "creation_timestamp": "2026-07-07T23:37:34.328100Z"}, {"uuid": "b25d2659-e74a-43ef-a31c-4e19d53d5a37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-58473", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116882120754434831", "content": "topoteretes cognee (&lt;1.2.0) is affected by CVE-2026-58473 (CRITICAL, CVSS 9.3): improper access control lets unauth attackers overwrite LLM provider config &amp; exfiltrate sensitive data. Restrict endpoint, monitor configs. https://radar.offseq.com/threat/cve-2026-58473-missing-authorization-in-topoterete-619eb25f0ae3e3eb #OffSeq #CVE #Infosec", "creation_timestamp": "2026-07-08T03:00:26.556037Z"}, {"uuid": "02873064-47e6-4536-a212-da4f28230610", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-58473", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mq44uubeqs23", "content": "CVE-2026-58473: topoteretes cognee (&lt;1.2.0) has a CRITICAL vuln \u2014 unauth attackers can hijack LLM config &amp; exfiltrate user data. No fix yet. Restrict settings endpoint &amp; monitor for changes. https://radar.offseq.com/threat/cve-2026-58473-missing-authorization-in-topoterete-619eb25f0ae3e3eb #OffSe...", "creation_timestamp": "2026-07-08T03:00:29.251058Z"}, {"uuid": "9b8c4c30-cd44-4a45-b9e9-bdc4043ee021", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58477", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmki7bc3l2k", "content": "CVE-2026-58477 - Sustainable Irrigation Platform 5.2.16 Mass Assignment via HTTP Parameters\nCVE ID : CVE-2026-58477\n \n Published : July 14, 2026, 3:17 p.m. | 13\u00a0minutes ago\n \n Description : Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a mass assignment...", "creation_timestamp": "2026-07-14T15:46:32.075252Z"}, {"uuid": "769f3d2e-038c-4d7e-9633-02e7ca7dbe7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58479", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmkz5lbib2g", "content": "CVE-2026-58479 - Sustainable Irrigation Platform 5.2.16 RCE via cli_control Plugin Command Injection\nCVE ID : CVE-2026-58479\n \n Published : July 14, 2026, 3:17 p.m. | 13\u00a0minutes ago\n \n Description : Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a comman...", "creation_timestamp": "2026-07-14T15:56:00.020409Z"}, {"uuid": "8a0c5325-a435-4dee-a779-391f1f3ec327", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58475", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqml5byefk2g", "content": "CVE-2026-58475 - Sustainable Irrigation Platform 5.2.16 Stored XSS via Program Name\nCVE ID : CVE-2026-58475\n \n Published : July 14, 2026, 3:17 p.m. | 13\u00a0minutes ago\n \n Description : Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a stored cross-site scrip...", "creation_timestamp": "2026-07-14T15:58:18.793508Z"}, {"uuid": "4628ffd3-862e-45e6-b4c4-ff8171854dea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58478", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmlryr46i26", "content": "CVE-2026-58478 - Sustainable Irrigation Platform 5.2.16 SSRF via Node-RED Callback URL\nCVE ID : CVE-2026-58478\n \n Published : July 14, 2026, 3:17 p.m. | 13\u00a0minutes ago\n \n Description : Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a server-side request ...", "creation_timestamp": "2026-07-14T16:09:53.831642Z"}, {"uuid": "dc38f56f-1b0d-41b6-9d48-693ba4eab89e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58479", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqmmsjcdhx2r", "content": "CVE-2026-58479 - sip\nAn attacker can execute arbitrary system commands on the Sustainable Irrigation Platform's server, potentially disrupting irrigation operations. This is possible due to a weakness in the optional\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#sip #CVE #infosec", "creation_timestamp": "2026-07-14T16:28:04.860337Z"}, {"uuid": "09f8c91a-0b5c-4a1f-b1c4-bcf53f0fabd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58476", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmnn6ps442w", "content": "CVE-2026-58476 - Sustainable Irrigation Platform 5.2.16 CSRF via Administrative GET Requests\nCVE ID : CVE-2026-58476\n \n Published : July 14, 2026, 3:17 p.m. | 13\u00a0minutes ago\n \n Description : Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a cross-site req...", "creation_timestamp": "2026-07-14T16:42:59.778825Z"}, {"uuid": "3852443a-7d0c-4406-8ea8-8a30aecb1002", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58479", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqntuhmro22u", "content": "\ud83d\udccc CVE-2026-58479 - Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a command injection vulnerability in the optional cli_control plugin that allows... https://www.cyberhub.blog/cves/CVE-2026-58479", "creation_timestamp": "2026-07-15T04:07:07.194101Z"}, {"uuid": "ecf59d5c-57f7-484a-88be-ab4b70d73682", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58477", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqo4ap2chw26", "content": "\ud83d\udccc CVE-2026-58477 - Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a mass assignment vulnerability that allows unauthenticated attackers to overwri... https://www.cyberhub.blog/cves/CVE-2026-58477", "creation_timestamp": "2026-07-15T06:37:06.559185Z"}, {"uuid": "b251ebc7-de1d-4b6b-8410-085ec8704f58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58477", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mqo4apqcos2m", "content": "\ud83d\udccc CVE-2026-58477 - Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a mass assignment vulnerability that allows unauthenticated attackers to overwri... https://www.potatohub.blog/cves/CVE-2026-58477", "creation_timestamp": "2026-07-15T06:37:07.402154Z"}]}