{"vulnerability": "CVE-2026-5021", "sightings": [{"uuid": "b7c0cbf4-d1ea-4b32-a17b-ea96dfe415f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5021", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116301640210905220", "content": "", "creation_timestamp": "2026-03-27T14:36:37.910827Z"}, {"uuid": "5e6401c8-7373-49c8-b53e-8001c2beb499", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5021", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3micmswobep23", "content": "", "creation_timestamp": "2026-03-30T21:40:08.739569Z"}, {"uuid": "2f14951f-4de7-4d47-bcb3-13c8bcf9d535", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5021", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mi64wy5frl2g", "content": "", "creation_timestamp": "2026-03-29T02:45:25.629266Z"}, {"uuid": "53f7ac87-4017-4eee-a661-da5f668d769f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-5021", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116310227539695954", "content": "", "creation_timestamp": "2026-03-29T03:00:28.671149Z"}, {"uuid": "091c9cb2-2a22-4c43-921c-17e094003616", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-5021", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mi65rwlmmp2s", "content": "", "creation_timestamp": "2026-03-29T03:00:30.409925Z"}, {"uuid": "83660511-c384-4369-8fb5-216265b00380", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50211", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhgrli5m32d", "content": "CVE-2026-50211 - Exposed Factory Testing App Boundaries\nCVE ID : CVE-2026-50211\n \n Published : June 4, 2026, 9:16 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : Leftover engineering diagnostics and factory-level diagnostic software remain exposed on retail builds, giving malic...", "creation_timestamp": "2026-06-04T10:41:47.493993Z"}, {"uuid": "dc7588b4-512f-461b-b540-99d780846a67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5021", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mi6eslbj6h2q", "content": "", "creation_timestamp": "2026-03-29T05:06:08.068348Z"}, {"uuid": "2b34e369-09a6-47ad-8b8d-7accb8bf8243", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5021", "type": "published-proof-of-concept", "source": "Telegram/uLsG1F3rRMuZRy4SE2GPACGkc6X3xLO2jk7e7xZLXH2BzSc", "content": "", "creation_timestamp": "2026-03-29T03:15:24.000000Z"}, {"uuid": "8b8df761-498d-4ae9-b4c5-6325b037b2f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50219", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mngzdwoihc2c", "content": "CVE-2026-50219 - Expat Use-After-Free Vulnerability\nCVE ID : CVE-2026-50219\n \n Published : June 4, 2026, 6:16 a.m. | 16\u00a0minutes ago\n \n Description : libexpat before 2.8.2 lacks handler call depth tracking for calls to XML_GetBuffer, XML_Parse, XML_ParseBuffer, XML_ParserFree, ...", "creation_timestamp": "2026-06-04T06:41:01.088775Z"}, {"uuid": "e2747837-81ff-4eac-a0e2-0f87cd687869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50210", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhivlg2rw2b", "content": "CVE-2026-50210 - Weak Static Cryptographic Initialization Vectors\nCVE ID : CVE-2026-50210\n \n Published : June 4, 2026, 9:16 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : The device encrypts data using AES-CBC with static zero-filled Initialization Vectors (IVs), making it sus...", "creation_timestamp": "2026-06-04T11:19:19.430092Z"}, {"uuid": "18967d29-0c3b-4560-b86c-0252f2c41d8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50213", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhgxfu2cx22", "content": "CVE-2026-50213 - Bulk User Private Data Harvesting\nCVE ID : CVE-2026-50213\n \n Published : June 4, 2026, 9:16 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : The account validation endpoint\u00a0/v1/User/validate\u00a0returns comprehensive user profile data sheets, which can be crawled by...", "creation_timestamp": "2026-06-04T10:44:33.192898Z"}, {"uuid": "4adb20d9-b750-42ce-924e-d81eea43707c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50212", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhh5wuoi52g", "content": "CVE-2026-50212 - Arbitrary Remote Device Unbinding\nCVE ID : CVE-2026-50212\n \n Published : June 4, 2026, 9:16 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : Weak validation logic within device dissociation API routines allows a remote entity to forcefully unbind unrelated user ...", "creation_timestamp": "2026-06-04T10:48:12.414419Z"}, {"uuid": "88018a32-b6f3-4918-b812-d3aeba230b16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50214", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhjqgwkbs2b", "content": "CVE-2026-50214 - Shared Secret Quota Inflation\nCVE ID : CVE-2026-50214\n \n Published : June 4, 2026, 10:16 a.m. | 16\u00a0minutes ago\n \n Description : The\u00a0/v1/Plan\u00a0service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of...", "creation_timestamp": "2026-06-04T11:34:20.558224Z"}, {"uuid": "3ff606cb-1cb1-4750-a1a7-be166f1b1fb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50211", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116693597828292612", "content": "We have just added an important vulnerability affecting Acer Connect M6E 5G Portable WiFi Router (CVE-2026-50211) https://vuldb.com/vuln/368285", "creation_timestamp": "2026-06-04T19:56:40.034327Z"}]}