{"vulnerability": "cve-2026-45374", "sightings": [{"uuid": "1c83b31b-8fb8-4ce3-a4e6-d27b932aa581", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45374", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwtrcv6dj2p", "content": "CVE-2026-45374 - CodeWhale: task_create Insecure Defaults Enable RCE via Prompt Injection in Project Files\nCVE ID : CVE-2026-45374\n \n Published : May 28, 2026, 6:16 p.m. | 54\u00a0minutes ago\n \n Description : CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26,...", "creation_timestamp": "2026-05-28T20:18:31.994327Z"}, {"uuid": "c9472ebe-6312-41f9-991e-6cba4e44b1cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45374", "type": "published-proof-of-concept", "source": "https://github.com/Hmbown/DeepSeek-TUI/security/advisories/GHSA-72w5-pf8h-xfp4", "content": "", "creation_timestamp": "2026-05-10T07:52:47.000000Z"}, {"uuid": "10e04d71-b360-4903-adcc-d30731eea1d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45374", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwpiscdn52z", "content": "\ud83d\udd34 CVE-2026-45374 - Critical (9.6)\n\nCodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, the task_create tool sp...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45374/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T19:02:11.973546Z"}]}