{"vulnerability": "cve-2026-2401", "sightings": [{"uuid": "7d57c65f-3aee-478f-81d6-7120d19c58bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-24017", "type": "seen", "source": "https://www.acn.gov.it/portale/w/vulnerabilita-in-prodotti-fortinet-8", "content": "", "creation_timestamp": "2026-03-11T10:50:56.000000Z"}, {"uuid": "7a6cbee1-8c21-43f3-961a-cd814d5de0ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-24018", "type": "seen", "source": "https://www.acn.gov.it/portale/w/vulnerabilita-in-prodotti-fortinet-8", "content": "", "creation_timestamp": "2026-03-11T10:50:56.000000Z"}, {"uuid": "2257df32-8b40-4dcd-a89b-29fa2020dde9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-24017", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-fortinet-patched-22-vulnerabilities-multiple-products-patch-immediately", "content": "", "creation_timestamp": "2026-03-11T14:43:25.000000Z"}, {"uuid": "a978206e-e540-42f8-a17b-e9cae00e81a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-24018", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-fortinet-patched-22-vulnerabilities-multiple-products-patch-immediately", "content": "", "creation_timestamp": "2026-03-11T14:43:25.000000Z"}, {"uuid": "227de71a-5cc1-4e01-ad85-73d314bbb4d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24016", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcwaortztj2m", "content": "", "creation_timestamp": "2026-01-21T08:25:10.066998Z"}, {"uuid": "a5d90334-5156-4a97-9353-1462ed26e751", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24016", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcwf2qm4zk2h", "content": "", "creation_timestamp": "2026-01-21T09:43:25.792582Z"}, {"uuid": "86adf169-608d-4b31-ad7e-95da73d09f3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24010", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcycj5itac23", "content": "", "creation_timestamp": "2026-01-22T04:03:07.936179Z"}, {"uuid": "23c80fc0-d9c8-4879-854d-78a652915c8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24010", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcycjypyhr2x", "content": "", "creation_timestamp": "2026-01-22T04:03:36.235191Z"}, {"uuid": "e1e5ddab-3f6b-402a-b6f7-05d90442ffb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24010", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcycluxn6r27", "content": "", "creation_timestamp": "2026-01-22T04:04:39.426400Z"}, {"uuid": "38bf6217-d6bc-4672-b351-5413e2a2a9bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24010", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcyd545gsq2n", "content": "", "creation_timestamp": "2026-01-22T04:14:16.903811Z"}, {"uuid": "1106a1fa-0b49-4ce4-ade8-def9f3cdedd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24017", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mguzaqrsqn23", "content": "", "creation_timestamp": "2026-03-12T18:20:08.996946Z"}, {"uuid": "4ec1ec2b-1fb0-4f42-95aa-9a9d82e55a3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-24018", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3migabtumu42d", "content": "", "creation_timestamp": "2026-04-01T08:06:29.370685Z"}, {"uuid": "5f728414-0f45-4c03-8592-5850e07880d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-2401", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjhxbixvqx2o", "content": "", "creation_timestamp": "2026-04-14T17:55:46.102031Z"}, {"uuid": "2f4ba038-cff4-4374-9b82-e7edb8c59f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24018", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/77282", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a Fortinet_FortiClient_Exploit_CVE-2026-24018\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a febin0x10\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Shell\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-03-26 07:01:36\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nFully Working Exploit for CVE-2026-24018: A UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7.4.0 through 7.4.4, FortiClientLinux 7.2.2 through 7.2.12 leads to a local and unprivileged user to escalate their privileges to root.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-03-26T08:00:04.000000Z"}, {"uuid": "57f096f3-ae7d-485f-9004-b8f15f4f6476", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24013", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpys3zc3ua2g", "content": "CVE-2026-24013: Apache IoTDB: Authentication Bypass via Forged SessionID in Thrift RPC", "creation_timestamp": "2026-07-06T19:09:37.781177Z"}, {"uuid": "20ae9aec-7995-4e1f-ab31-925fc743a169", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24012", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpyseyhbm32c", "content": "CVE-2026-24012: Apache IoTDB: Denial of Service via Resource Exhaustion in Aggregation Query", "creation_timestamp": "2026-07-06T19:14:38.761423Z"}, {"uuid": "33fd5114-ced9-4155-8285-dd45e32e4d8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24014", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpysv577xg2h", "content": "CVE-2026-24014: Apache IoTDB: Path Traversal in DataNode Internal RPC Trigger JAR Upload Allows Arbitrary File Write", "creation_timestamp": "2026-07-06T19:23:40.724232Z"}, {"uuid": "5414cdc6-f081-44c0-a391-76321b26e406", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24013", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywluimbu2z", "content": "CVE-2026-24013 - apache iotdb\nApache IoTDB's authentication system can be tricked into accepting fake session IDs, allowing attackers to read sensitive time-series data without permission. This\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apacheiotdb #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:30:07.508044Z"}, {"uuid": "f68fb8fb-3cd6-491d-bb35-00aabcb1b33c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24014", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywlvq6ic2e", "content": "CVE-2026-24014 - apache iotdb\nApache IoTDB allows an attacker to write files on the system if the internal RPC port is exposed to an untrusted network. This could lead to unauthorized data\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apacheiotdb #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:30:08.486559Z"}, {"uuid": "f2c981f3-705c-4271-9ddf-e856b1eeb98c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24014", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq4am2dxdh2f", "content": "\ud83d\udccc CVE-2026-24014 - Apache IoTDB DataNode\u2019s internal RPC interface for creating Trigger instances uses the uploaded Trigger JAR name to build a file path without sufficie... https://www.cyberhub.blog/cves/CVE-2026-24014", "creation_timestamp": "2026-07-08T04:07:07.286154Z"}, {"uuid": "29c20110-b39e-4f1a-bcab-21b21ecead48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24013", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq4iyb7lug2g", "content": "\ud83d\udccc CVE-2026-24013 - Authentication Bypass by Spoofing vulnerability in Apache IoTDB.\nCertain Thrift RPC query handlers lack strict validation of the sessionId\nparameter. ... https://www.cyberhub.blog/cves/CVE-2026-24013", "creation_timestamp": "2026-07-08T06:37:06.994752Z"}, {"uuid": "7dd43028-56f7-4abc-af65-6818449b093b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-2401", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-190-02", "content": "", "creation_timestamp": "2026-07-09T16:15:19.297346Z"}, {"uuid": "766ed8b4-82d3-47f1-9ee3-ced896385c13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24014", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mqdjnn2lds2v", "content": "Three Apache IoTDB vulnerabilities include a critical path traversal (CVE-2026-24014) and an authentication bypass. Upgrade to 2.0.8 now.\n\n#ApacheIoTDB #PathTraversal #AuthBypass #CVE #IoTSecurity #InfoSec", "creation_timestamp": "2026-07-11T01:37:42.865942Z"}, {"uuid": "ae5de92c-89ff-4374-ad0f-8ac9e269f905", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-2401", "type": "seen", "source": "Telegram/ppwP7SjBpII8pgpeh42YlKPHpHf-k-R45TC0ouraRp59JoQ", "content": "", "creation_timestamp": "2026-07-12T22:00:05.809267Z"}, {"uuid": "73bfd285-ffac-443a-8739-26ca0c9905af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-2401", "type": "published-proof-of-concept", "source": "Telegram/ppwP7SjBpII8pgpeh42YlKPHpHf-k-R45TC0ouraRp59JoQ", "content": "", "creation_timestamp": "2026-07-13T00:00:16.780447Z"}]}