{"vulnerability": "cve-2026-42811", "sightings": [{"uuid": "aa648ebe-1c29-494d-ab1e-f1e9a0785487", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42811", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml2awtnhos2e", "content": "\ud83d\udd34 CVE-2026-42811 - Critical (9.9)\n\nIn plain terms, Apache Polaris is supposed to issue short-lived GCS credentials\nthat\nonly work fo...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42811/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-04T18:01:52.576959Z"}, {"uuid": "7785bb17-33e2-47cb-8026-64bd315a55e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42811", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml2foaah4a2q", "content": "CVE-2026-42811 - Apache Polaris: could broaden vended GCS credentials through unescaped identifier content in access-boundary CEL conditions\nCVE ID : CVE-2026-42811\n \n Published : May 4, 2026, 5:16 p.m. | 1\u00a0hour, 4\u00a0minutes ago\n \n Description : In plain terms, Apache Polaris is...", "creation_timestamp": "2026-05-04T19:26:31.598153Z"}, {"uuid": "0f3ca759-d865-4eef-b2e8-73534242f7a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42811", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mlnza4nzej2o", "content": "\ud83d\udccc CVE-2026-42811 - In plain terms, Apache Polaris is supposed to issue short-lived GCS credentials\nthat\nonly work for one table's files, but a crafted namespace or table... https://www.cyberhub.blog/cves/CVE-2026-42811", "creation_timestamp": "2026-05-12T14:37:08.029596Z"}]}