{"vulnerability": "CVE-2026-13020", "sightings": [{"uuid": "dd86765d-7795-42be-8640-ce2596589465", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13020", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq3dhu46ku2f", "content": "CVE-2026-13020 - Weak Password Recovery Mechanism in Portal for ArcGIS\nCVE ID : CVE-2026-13020\n \n Published : July 7, 2026, 5:16 p.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 1...", "creation_timestamp": "2026-07-07T19:25:47.871448Z"}, {"uuid": "caf6a98d-8457-4b86-81ec-6ed9606c53e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13020", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq7vo4wlz32b", "content": "CVE-2026-13020 - portal for arcgis\nA security weakness in Portal for ArcGIS versions 12.1 and earlier allows an unauthorized attacker to take control of a user's account. This affects Windows, Linux, and Kubernetes\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#esri #CVE #infosec", "creation_timestamp": "2026-07-09T15:02:04.896477Z"}]}