{"vulnerability": "cve-2026-40009", "sightings": [{"uuid": "b9cdf73d-1977-4a4a-8531-e55dbdad52a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40009", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbznn7c7g26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-40009 \u0432 Apache IoTDB: \u0443\u0433\u0440\u043e\u0437\u0430 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0433\u043e \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u0438 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430\n\n\n\nhttps://kripta.biz/posts/FEAFC346-4FB6-4643-80BC-BEDC38E6DFEF", "creation_timestamp": "2026-07-10T11:18:42.825034Z"}, {"uuid": "6602e479-8619-4438-bf30-95ede3d81d0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40009", "type": "seen", "source": "https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-40009", "content": "", "creation_timestamp": "2026-07-10T12:15:29.581613Z"}, {"uuid": "f2bb42e9-9237-4f2f-9b09-ab888cadc0f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40009", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mqcaqauw5b24", "content": "CVE-2026-40009: Apache IoTDB: Authenticated users can escalate to full tree-path access by renaming themselves to __internal_auditor", "creation_timestamp": "2026-07-10T13:25:26.828567Z"}, {"uuid": "4c4fa9ca-3b33-42db-baec-99351373c35a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40009", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqd2zv73o52e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-40009 \u0432 Apache IoTDB: \u0440\u0438\u0441\u043a\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/571369A6-7937-4850-AE87-59352D0C2A21", "creation_timestamp": "2026-07-10T21:16:07.254794Z"}, {"uuid": "4dc3d9c0-fd40-4ca1-8608-aec3a05c8b54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40009", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqd5buot5526", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-40009 \u0432 Apache IoTDB: \u0440\u0438\u0441\u043a\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/F0C0C0B5-0675-4B46-9A1D-41A9EC648962", "creation_timestamp": "2026-07-10T21:56:22.624014Z"}]}