{"vulnerability": "CVE-2026-22078", "sightings": [{"uuid": "0797fda6-b60b-411c-a6c8-96fda515d7e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-22078", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116832575628329249", "content": "OPPO O+ Connect v16.0.33 is vulnerable (CVE-2026-22078, HIGH). Lack of IPC client authentication lets external apps escalate privileges \u2014 potential for sensitive actions. Patch unavailable. Monitor and restrict app permissions. #OffSeq #CVE202622078 #OPPO https://radar.offseq.com/threat/cve-2026-22078-cwe-266-incorrect-privilege-assignm-d3bb9a84f0ae01c1", "creation_timestamp": "2026-06-29T09:00:28.911289Z"}, {"uuid": "a3e98ee8-df44-461d-97c7-a15dd03111fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-22078", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpg4sdsfah27", "content": "HIGH severity: OPPO O+ Connect v16.0.33 allows privilege escalation via unauthenticated IPC service. No fix yet \u2014 review permissions and monitor activity. #OffSeq #CVE202622078 https://radar.offseq.com/threat/cve-2026-22078-cwe-266-incorrect-privilege-assignm-d3bb9a84f0ae01c1", "creation_timestamp": "2026-06-29T09:00:29.631254Z"}, {"uuid": "72967ff6-0ed0-4c3e-8d0c-b4ff1208a66f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22078", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpgfio26572d", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-22078 \u0432 O+ Connect: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/B2FFB718-0247-4FB5-B1DB-CB63CC647660", "creation_timestamp": "2026-06-29T11:36:08.950615Z"}, {"uuid": "93ef22d6-b496-4b5b-b54c-d4ba32b32ad2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22078", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpgkwtekze22", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-22078 \u0432 O+ Connect: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438\u0437-\u0437\u0430 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/39346B82-8BC1-4F75-AF5A-D1B9E03E7D9E", "creation_timestamp": "2026-06-29T13:13:32.196611Z"}, {"uuid": "a0ac4895-b38c-494a-be31-2e880f30cfdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22078", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mphe7l7ktn2g", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-22078 \u0432 O+ Connect: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438\u0437-\u0437\u0430 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/C41FE0FB-E168-4DDE-A5B5-A79B2BD0B640", "creation_timestamp": "2026-06-29T20:45:49.026373Z"}]}