{"uuid": "acc9531d-c390-4d81-86a4-e3d9b9fcaad0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3321", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mlu2phqvlp2e", "content": "CVE-2026-3321 is a CVSS 9.8 RCE in libmodsecurity (the core of ModSecurity WAF).\n\nExploitable via the JSON body parser. No auth needed.\n\nIf you're running ModSecurity: patch to 3.0.14 NOW. Detection rules\u2026\n\n\ud83d\udd01 RT @lippebsd | reposted by @HackingDave\nhttps://x.com/lippebsd/status/2055034238513123543", "creation_timestamp": "2026-05-15T00:19:35.541165Z"}