{"vulnerability": "CVE-2026-46456", "sightings": [{"uuid": "c4e9608d-d802-4143-a694-1f0bb6038061", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46456", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwewxwxll2f", "content": "CVE-2026-46456: Apache Camel: Camel-AWS2-SQS: Inbound message attributes are mapped into the Exchange without an inbound HeaderFilterStrategy, allowing a message sender to inject Camel control headers", "creation_timestamp": "2026-07-05T20:08:50.397841Z"}, {"uuid": "e433cae0-e65d-4b12-8042-b45078d7afc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46456", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywerckq62b", "content": "CVE-2026-46456 - apache camel\nApache Camel's SQS component allows malicious users to inject custom headers into messages. This could be exploited by attackers to manipulate the behavior of\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:26:08.615083Z"}]}