{"vulnerability": "cve-2026-4250", "sightings": [{"uuid": "bd404a01-dd86-464d-a955-012340d39e63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42509", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ml5n4hflr42s", "content": "CVE-2026-42509: Apache Wicket: crafted strings can break out of the JavaScript sequence", "creation_timestamp": "2026-05-06T02:17:44.490192Z"}, {"uuid": "4b327f2e-b0b9-458c-93ad-220583484d47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42503", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml77ltfzn42n", "content": "\ud83d\udfe0 CVE-2026-42503 - High (8.8)\n\ngopls by default communicates via pipe. However, -port and -listen flags are supported as means o...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42503/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-06T17:21:07.732545Z"}, {"uuid": "20d6c0eb-ffcf-498e-b3f0-84077883b2d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42502", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mnafjazque2y", "content": "\ud83d\udd17 CVE : CVE-2026-25680, CVE-2026-25681, CVE-2026-39827, CVE-2026-39828, CVE-2026-39835, CVE-2026-41401, CVE-2026-42502, CVE-2026-46598, CVE-2026-8466, CVE-2026-25680, CVE-2026-25681, CVE-2026-39827, CVE-2026-39828, CVE-2026-39835, CVE-2026-41401, CVE-2026-42502, CVE-2026-46598, CVE-2026-8466", "creation_timestamp": "2026-06-01T15:38:41.349290Z"}, {"uuid": "97d53f8d-23a7-4e36-8e39-e1b52e7b6796", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42501", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlc5lyf2ry2c", "content": "CVE-2026-42501 - Malicious module proxy can bypass checksum database in cmd/go\nCVE ID : CVE-2026-42501\n \n Published : May 7, 2026, 7:41 p.m. | 44\u00a0minutes ago\n \n Description : A malicious module proxy can exploit a flaw in the go command's validation of module checksums to bypa...", "creation_timestamp": "2026-05-07T21:23:24.122618Z"}, {"uuid": "35649702-7ea7-4153-902f-e6fdc312a66c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42508", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgdgzxl4w2i", "content": "CVE-2026-42508 - Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts\nCVE ID : CVE-2026-42508\n \n Published : May 22, 2026, 4:16 a.m. | 1\u00a0hour, 34\u00a0minutes ago\n \n Description : Previously, a revoked 'SignatureKey' belonging to a CA was not co...", "creation_timestamp": "2026-05-22T06:43:50.971854Z"}, {"uuid": "5fa5691b-3e46-4c21-baa4-be6c84e35709", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42506", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmhej6i35b2c", "content": "CVE-2026-42506 - Invoking incorrect handling of namespaced elements in foreign content in golang.org/x/net/html\nCVE ID : CVE-2026-42506\n \n Published : 22 mai 2026 15:01 | 49\u00a0minutes ago\n \n Description : Parsing arbitrary HTML which is then rendered using Render can result in a...", "creation_timestamp": "2026-05-22T16:35:36.456427Z"}, {"uuid": "1f65e14c-6534-41e1-894e-8522e11d6b3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42502", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmheoytrrm2r", "content": "CVE-2026-42502 - Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html\nCVE ID : CVE-2026-42502\n \n Published : 22 mai 2026 15:01 | 49\u00a0minutes ago\n \n Description : Parsing arbitrary HTML which is then rendered using Render can result in an unex...", "creation_timestamp": "2026-05-22T16:38:51.822309Z"}, {"uuid": "ddb6fdbb-a0fe-4d3f-b65c-d9512808781d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42507", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mne3iwbcgy25", "content": "CVE-2026-42507 - Arbitrary inputs are included in errors without any escaping in net/textproto\nCVE ID : CVE-2026-42507\n \n Published : June 2, 2026, 11:16 p.m. | 3\u00a0hours, 16\u00a0minutes ago\n \n Description : When returning errors, functions in the net/textproto package would include...", "creation_timestamp": "2026-06-03T02:41:36.702296Z"}, {"uuid": "d53b3d3d-4b46-4fb4-b786-045ac6c07f86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42504", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mne3ga4eue23", "content": "CVE-2026-42504 - Quadratic complexity in WordDecoder.DecodeHeader in mime\nCVE ID : CVE-2026-42504\n \n Published : June 2, 2026, 11:16 p.m. | 3\u00a0hours, 16\u00a0minutes ago\n \n Description : Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume exc...", "creation_timestamp": "2026-06-03T02:40:06.818766Z"}, {"uuid": "0e1af7bb-8dd8-44cd-8595-29850223cc1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42504", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mnf2rgkfkm2f", "content": "\n\ud83d\udea8 New UNKNOWN CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-42504 impacts stdlib in 26 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/544\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-06-03T12:01:07.923514Z"}, {"uuid": "8f5d3102-1463-4dd3-a1ac-1c286a5e1c56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42507", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mnf2rtqtu32f", "content": "\n\ud83d\udea8 New UNKNOWN CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-42507 impacts stdlib in 26 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/545\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-06-03T12:01:22.342155Z"}, {"uuid": "7ba05050-e489-4578-a04d-c5793c895f3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42504", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mngx35ltr62l", "content": "\ud83d\udfe0 CVE-2026-42504 - High (7.5)\n\nDecoding a maliciously-crafted MIME header containing many invalid encoded-words can consume exce...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42504/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-04T06:00:20.152680Z"}, {"uuid": "d9b0e497-1e0e-4d69-ba09-f124eaf482d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42504", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mnu5kolpvk2r", "content": "\ud83d\udd0d Lambda Watchdog detected that CVE-2026-42504 is no longer present in latest AWS Lambda base image scans. https://github.com/aws/aws-lambda-base-images/issues/544 #AWS #Lambda #Security #CVE #DevOps #SecOps", "creation_timestamp": "2026-06-09T12:01:00.024847Z"}, {"uuid": "b8b4e732-4cde-44f8-ab33-afc30793a7bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42504", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mnrrjo3cdf2d", "content": "\ud83d\udd17 CVE : CVE-2026-42504, CVE-2026-42507, CVE-2026-42504, CVE-2026-42507", "creation_timestamp": "2026-06-08T13:20:20.329890Z"}, {"uuid": "4a7ecb5b-e7d9-4004-ba6b-34f96e3b82b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42507", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mnrrjo3cdf2d", "content": "\ud83d\udd17 CVE : CVE-2026-42504, CVE-2026-42507, CVE-2026-42504, CVE-2026-42507", "creation_timestamp": "2026-06-08T13:20:20.481798Z"}, {"uuid": "7b8dbbcd-09e9-482d-b702-f2079e78bd56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42507", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mnu5kzbt4b2p", "content": "\ud83d\udd0d Lambda Watchdog detected that CVE-2026-42507 is no longer present in latest AWS Lambda base image scans. https://github.com/aws/aws-lambda-base-images/issues/545 #AWS #Lambda #Security #CVE #DevOps #SecOps", "creation_timestamp": "2026-06-09T12:01:10.038119Z"}]}