{"vulnerability": "CVE-2026-4224", "sightings": [{"uuid": "3a5af81b-4720-491e-9969-ce9ea69ac528", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4224", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mjouuti2l72i", "content": "", "creation_timestamp": "2026-04-17T12:01:31.728570Z"}, {"uuid": "f1dc5d47-2732-41e7-98d1-d29f8a7d0d4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-4224", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0302/", "content": "", "creation_timestamp": "2026-03-17T00:00:00.000000Z"}, {"uuid": "54f0afc0-d13a-4ee8-9679-9c8b72d11638", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4224", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mhb3er3v2c2v", "content": "", "creation_timestamp": "2026-03-17T13:30:08.411517Z"}, {"uuid": "304497c8-d9ee-4209-beeb-f3871f660d4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42249", "type": "seen", "source": "https://cert.pl/en/posts/2026/04/CVE-2026-42248", "content": "", "creation_timestamp": "2026-04-29T03:55:00.000000Z"}, {"uuid": "fddc827b-73de-4d48-9ad6-b9ff8a395282", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4224", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mij5u6b5i72r", "content": "", "creation_timestamp": "2026-04-02T12:01:02.142400Z"}, {"uuid": "16684571-f171-44a0-b7ac-4c06dbebd614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42248", "type": "seen", "source": "https://cert.pl/en/posts/2026/04/CVE-2026-42248", "content": "", "creation_timestamp": "2026-04-29T03:55:00.000000Z"}, {"uuid": "0f70b73f-6965-4f10-9799-070602249c5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42249", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mknfdxk62b2n", "content": "CVE-2026-42249 - Remote Code Execution in Ollama via Update Mechanism\nCVE ID : CVE-2026-42249\n \n Published : April 29, 2026, 12:16 p.m. | 2\u00a0hours, 1\u00a0minute ago\n \n Description : Ollama for Windows\u00a0contains a Remote Code Execution vulnerability in its update mechanism due to imp...", "creation_timestamp": "2026-04-29T15:16:10.569925Z"}, {"uuid": "ea7d4288-e7ca-4ec0-83e5-2a29e579a687", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42248", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mknfmvzbop2o", "content": "CVE-2026-42248 - Missing Signature Verification for Updates in Ollama\nCVE ID : CVE-2026-42248\n \n Published : April 29, 2026, 12:16 p.m. | 2\u00a0hours, 1\u00a0minute ago\n \n Description : Ollama for Windows does not perform integrity or authenticity verification of downloaded update exec...", "creation_timestamp": "2026-04-29T15:21:10.873776Z"}, {"uuid": "6a4050fc-58fa-43b7-a2b8-d108e389c4fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42248", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mlimbtklpj22", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-42248 Ollama for\u00a0Windows\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nOllama for Windows \u306b\u306f\u3001\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u3057\u305f\u66f4\u65b0\u7528\u5b9f\u884c\u30d5\u30a1\u30a4\u30eb\u306e\u5b8c\u5168\u6027\u304a\u3088\u3073\u771f\u6b63\u6027\u3092\u691c\u8a3c\u3057\u306a\u3044\u554f\u984c\u304c\u3042\u308a\u307e\u3059\u3002", "creation_timestamp": "2026-05-10T11:02:10.052277Z"}, {"uuid": "ba09e0ba-dd5a-4646-a7b8-7590dcb9f2eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42249", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mlimcetpan2k", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-42249 Ollama for\u00a0Windows\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nOllama for Windows \u306b\u306f\u3001\u66f4\u65b0\u6a5f\u69cb\u306b\u304a\u3044\u3066\u653b\u6483\u8005\u304c\u5236\u5fa1\u53ef\u80fd\u306a HTTP \u30ec\u30b9\u30dd\u30f3\u30b9\u30d8\u30c3\u30c0\u30fc\u3092\u4e0d\u9069\u5207\u306b\u51e6\u7406\u3059\u308b\u3053\u3068\u306b\u8d77\u56e0\u3059\u308b\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c\u306e\u8106\u5f31\u6027\u304c\u3042\u308a\u307e\u3059\u3002", "creation_timestamp": "2026-05-10T11:02:26.648922Z"}, {"uuid": "0ed4f154-873a-473a-a3c9-9379ef92b1d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42246", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mliplsspcm2d", "content": "\n\ud83d\udea8 New HIGH CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-42246 impacts net-imap in 4 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/514\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-05-10T12:01:24.164092Z"}, {"uuid": "93297292-0842-4f9d-8e16-bfdf926b088c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42245", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mliplx57y32v", "content": "\n\ud83d\udea8 New LOW CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-42245 impacts net-imap in 4 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/518\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-05-10T12:01:28.451899Z"}, {"uuid": "8b0ce917-cd4e-4057-8118-9fd16bbceb63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42245", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlh5y7rxta2k", "content": "CVE-2026-42245 - net-imap: Quadratic complexity when reading response literals\nCVE ID : CVE-2026-42245\n \n Published : May 9, 2026, 8:16 p.m. | 33\u00a0minutes ago\n \n Description : Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to ve...", "creation_timestamp": "2026-05-09T21:13:33.221232Z"}, {"uuid": "36c49c20-dbf9-43f9-8912-b050a81082f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42246", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlhb56mffj2q", "content": "CVE-2026-42246 - net-imap vulnerable to STARTTLS stripping via invalid response timing\nCVE ID : CVE-2026-42246\n \n Published : May 9, 2026, 8:16 p.m. | 33\u00a0minutes ago\n \n Description : Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Pri...", "creation_timestamp": "2026-05-09T22:10:04.766614Z"}, {"uuid": "79b6604f-fb91-4fd6-af2c-599740d73a1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42246", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116547690805808920", "content": "\ud83d\udd0e CVE-2026-42246 (HIGH): ruby net-imap (<0.3.10, <0.4.24, <0.5.14, <0.6.4) fails to report TLS handshake errors, risking plaintext IMAP traffic under MITM. Patch now to protect email integrity! https://radar.offseq.com/threat/cve-2026-42246-cwe-392-missing-report-of-error-con-229e609d #OffSeq #Ruby #Infosec #EmailSecurity", "creation_timestamp": "2026-05-10T01:30:32.237220Z"}, {"uuid": "fb22469e-dd1c-4524-bfeb-aaa07f12be20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42246", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlhmdq52mi23", "content": "HIGH severity flaw in ruby net-imap (<0.3.10, <0.4.24, <0.5.14, <0.6.4): attackers can bypass TLS, exposing email data. Update to a fixed version now! \ud83d\udd12 https://radar.offseq.com/threat/cve-2026-42246-cwe-392-missing-report-of-error-con-229e609d #OffSeq #Ruby #EmailSecurity", "creation_timestamp": "2026-05-10T01:30:32.439646Z"}]}