{"uuid": "e2dc75bc-ebee-4e85-a0ab-8b423342a377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42864", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116560431114423075", "content": "\ud83d\udd25 CVE-2026-42864: CRITICAL vuln in ManoManoTech firefighter-incident (<0.0.54). Missing auth lets attackers fetch arbitrary URLs & exfil AWS creds if IMDSv2 not enforced. Update to 0.0.54+ & check your cloud configs! https://radar.offseq.com/threat/cve-2026-42864-cwe-306-missing-authentication-for--60c5ba57 #OffSeq #CVE202642864 #CloudSecurity", "creation_timestamp": "2026-05-12T07:30:50.570874Z"}