{"vulnerability": "cve-2026-41856", "sightings": [{"uuid": "3aa39cd2-48f7-4449-b0c0-16b0dcc45705", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41856", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnyr3dgend2x", "content": "\ud83d\udfe0 CVE-2026-41856 - High (7.5)\n\nThe Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-41856/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T08:00:59.240717Z"}, {"uuid": "cec747a7-022d-4b5e-ad04-b1e3a6af14cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41856", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnyufqlyyh2r", "content": "Spring for GraphQL faces a HIGH severity flaw (CVE-2026-41856) \u2014 security annotations may be ignored, risking unauthorized access. Review auth logic ASAP. Versions 1.0.0 \u2013 2.0.3 affected. https://radar.offseq.com/threat/cve-2026-41856-cwe-284-improper-access-control-in--4879e7fe #OffSeq #SpringSe...", "creation_timestamp": "2026-06-11T09:00:29.202536Z"}, {"uuid": "df0acd39-7052-4fc8-b2a1-70dda62b8c30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41856", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116730653982449979", "content": "\ud83d\udd12 HIGH severity: Spring for GraphQL (v1.0.0 \u2013 2.0.3) is affected by CVE-2026-41856 \u2014 improper access control can bypass security annotations, risking unauthorized access. Review your authorization logic ASAP. https://radar.offseq.com/threat/cve-2026-41856-cwe-284-improper-access-control-in--4879e7fe #OffSeq #SpringSecurity #GraphQL", "creation_timestamp": "2026-06-11T09:00:29.905279Z"}]}