{"vulnerability": "cve-2026-41492", "sightings": [{"uuid": "c77fd3e0-011c-4d55-b1bb-ab6bf81c2a73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41492", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116462756162944901", "content": "", "creation_timestamp": "2026-04-25T01:30:30.756141Z"}, {"uuid": "fec4d7c6-d1e8-49b0-a487-03d329d107d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41492", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mkbvdwkbgc2v", "content": "", "creation_timestamp": "2026-04-25T01:30:33.455070Z"}, {"uuid": "ed28b6c5-26ac-45ba-b925-893287284328", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41492", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mklbrzbnfi2o", "content": "", "creation_timestamp": "2026-04-28T19:07:07.427463Z"}, {"uuid": "6c9525c8-153a-4822-8521-d2c9a3e7f510", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41492", "type": "seen", "source": "https://bsky.app/profile/cyberlensai.bsky.social/post/3mkeut7xibf2g", "content": "", "creation_timestamp": "2026-04-26T05:59:11.089755Z"}, {"uuid": "207bf2a3-b996-431c-a4f6-fec565e68abc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41492", "type": "seen", "source": "https://bsky.app/profile/hexmortem.bsky.social/post/3mkfpzex4n723", "content": "", "creation_timestamp": "2026-04-26T14:05:49.127450Z"}, {"uuid": "4c585c3b-cce1-4c09-a13c-2d4e897d65f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41492", "type": "seen", "source": "https://bsky.app/profile/hexmortem.com/post/3ml6g7ouh6d2c", "content": "CVE-2026-41492 \u2014 Dgraph admin token leak.\n\nThe prior CVE was fixed by blocking /debug/pprof/cmdline. expvar auto-registers /debug/vars on the same default mux. cmdline leaks there too \u2014 three unauth GETs yield the token, one replay = admin.\n\nv25.3.3 filters cmdline out. Patch.", "creation_timestamp": "2026-05-06T09:46:56.229789Z"}]}