{"vulnerability": "cve-2026-4446", "sightings": [{"uuid": "01fcb84d-c292-4800-94a3-d8f60e7ce9b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4446", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mhmkl3iwrw2c", "content": "", "creation_timestamp": "2026-03-22T03:01:24.121056Z"}, {"uuid": "3bdcc4e1-d711-496d-9855-bc5981cca1bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44467", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3mldtsmjz6f2e", "content": "Claude Desktop\u306eSSH\u6a5f\u80fd\u306b\u6f5c\u3093\u3067\u3044\u305fMITM\u8106\u5f31\u6027\u3092\u898b\u3064\u3051\u305f\u8a71\uff08CVE-2026-44467\uff09\nhttps://zenn.dev/aeyesec/articles/0aa59f113a702b", "creation_timestamp": "2026-05-08T13:33:29.268846Z"}, {"uuid": "23f0e7c3-1b22-4487-bbd5-bfa908f88423", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-4446", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities_20260324", "content": "", "creation_timestamp": "2026-03-24T01:00:00.000000Z"}, {"uuid": "7da6b820-6492-4d79-9a01-12da2085f2ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44468", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmqp4vjquf2c", "content": "CVE-2026-44468 - Incorrect Default Permissions in CODESYS Development System\nCVE ID : CVE-2026-44468\n \n Published : May 26, 2026, 6:37 a.m. | 1\u00a0hour, 46\u00a0minutes ago\n \n Description : The affected product creates a directory with insecure default permissions during administrativ...", "creation_timestamp": "2026-05-26T09:39:33.338315Z"}, {"uuid": "bf58edd1-8006-44e9-91ca-4abeeadd6aaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44469", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmqpftxzv42n", "content": "CVE-2026-44469 - Incorrect Default Permissions in CODESYS Development System\nCVE ID : CVE-2026-44469\n \n Published : May 26, 2026, 6:39 a.m. | 1\u00a0hour, 45\u00a0minutes ago\n \n Description : The affected product extracts installation files to a temporary directory with incorrect defaul...", "creation_timestamp": "2026-05-26T09:44:33.681241Z"}, {"uuid": "885fc7a0-3de0-491e-859a-cbeef344fba2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44465", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwm5all6z2l", "content": "\ud83d\udfe0 CVE-2026-44465 - High (8.6)\n\nZed is a code editor. Prior to 0.227.1, Zed IDE executes arbitrary commands when opening a folder...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44465/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T18:02:03.123706Z"}, {"uuid": "242f5aff-57dc-4950-b8ae-c7abbab5b840", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44466", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwm5ilszt2s", "content": "\ud83d\udfe0 CVE-2026-44466 - High (8.6)\n\nZed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed via...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44466/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T18:02:11.512648Z"}, {"uuid": "55910e40-b2c5-49be-87e8-f39f2a403e5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44463", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmww6msug72z", "content": "\ud83d\udfe0 CVE-2026-44463 - High (8.6)\n\nZed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed by ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44463/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T21:01:47.238904Z"}, {"uuid": "e360e195-0cb2-4194-9ed5-baa5f9855903", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44466", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwreavbin2t", "content": "CVE-2026-44466 - Zed: Allowlist Bypass via Bash Arithmetic Expansion in Terminal Tool Permissions\nCVE ID : CVE-2026-44466\n \n Published : May 28, 2026, 5:16 p.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission sys...", "creation_timestamp": "2026-05-28T19:35:25.904534Z"}, {"uuid": "fdef8202-2884-43d6-b3ba-7f7a5266d63e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44465", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwrnb4ih62c", "content": "CVE-2026-44465 - Zed: Zed IDE Arbitrary Code Execution via untrusted repository with poisoned .git/config\nCVE ID : CVE-2026-44465\n \n Published : May 28, 2026, 5:16 p.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Zed is a code editor. Prior to 0.227.1, Zed IDE executes arbitrary...", "creation_timestamp": "2026-05-28T19:40:28.387938Z"}, {"uuid": "629bd9f4-3d89-4864-a0bd-d32325314ff7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44461", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwrqmwito2c", "content": "CVE-2026-44461 - Zed: Remote Command Injection via Unquoted Environment Variable Keys (SSH / WSL Remote)\nCVE ID : CVE-2026-44461\n \n Published : May 28, 2026, 5:16 p.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Zed is a code editor. Prior to 0.227.1, Zed builds SSH/WSL remote c...", "creation_timestamp": "2026-05-28T19:42:21.320722Z"}, {"uuid": "5149881b-717e-443e-9498-17c1b62c41a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44463", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwt7frvk42e", "content": "CVE-2026-44463 - Zed: Allowlist Bypass via Environment Variable Injection in Terminal Tool Permissions\nCVE ID : CVE-2026-44463\n \n Published : May 28, 2026, 5:16 p.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permissio...", "creation_timestamp": "2026-05-28T20:08:30.784625Z"}]}