{"uuid": "ba7b4708-6638-4699-ab10-d730259bcf45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48207", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116614575641457628", "content": "\ud83d\udea8 CRITICAL: CVE-2026-48207 in Apache Fory <1.0.0 \u2014 Deserialization flaw in PyFory ReduceSerializer bypasses DeserializationPolicy, risking RCE if strict mode is off. Upgrade to 1.0.0+ ASAP! https://radar.offseq.com/threat/cve-2026-48207-cwe-502-deserialization-of-untruste-97a80f2c #OffSeq #CVE202648207 #Vulnerability #ApacheFory", "creation_timestamp": "2026-05-21T21:00:19.017391Z"}