{"vulnerability": "cve-2026-4718", "sightings": [{"uuid": "f61d0788-abf4-4013-be5f-8a96751c1b37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4718", "type": "seen", "source": "https://bsky.app/profile/slackers.it/post/3mhu7d6hbhv2w", "content": "", "creation_timestamp": "2026-03-25T04:01:27.583836Z"}, {"uuid": "bfaaf389-63e5-4dfc-8c6c-335888707482", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47187", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mn34f42qcq2r", "content": "CVE-2026-47187, CVE-2026-48711: sshfs", "creation_timestamp": "2026-05-30T13:03:24.621529Z"}, {"uuid": "ec3a706b-0d64-4703-aafe-2d118ef8d8ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47187", "type": "seen", "source": "https://infosec.exchange/users/harrysintonen/statuses/116663533676457323", "content": "CVE-2026-47187: Symlink escape - rogue SFTP server -&gt; local file read/writeSeverity: Critical (CVSS 9.3, CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N)CWE: CWE-59 (Improper Link Resolution Before File Access)\nA rogue SFTP server can return symlink targets (absolute paths or relative \"../../../\" escapes) that sshfs passes to the kernel unchanged. The kernel resolves them on the client's local filesystem, so an ordinary \"cp\" through the mountpoint can read local files back to the server or write server-controlled bytes to local files. transform_symlinks does not cover relative targets.\nhttps://www.openwall.com/lists/oss-security/2026/05/30/3\n#CVE_2026_47187", "creation_timestamp": "2026-05-30T12:30:53.342192Z"}, {"uuid": "49babe28-0d2f-41c2-82c6-44e8ef6b3054", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47187", "type": "seen", "source": "https://bsky.app/profile/evirus.bsky.social/post/3mo734wrr2c2x", "content": "I updated sshfs to 3.7.6-bp160.1.1 on Leap 16 and all my symlinks that traversed folders on remote machines broke.  Looks like this is a deliberate change to fix CVE-2026-47187 symlink escape shenanigans.  Adding follow_symlinks after -o restores the old behavior.", "creation_timestamp": "2026-06-13T20:17:04.767870Z"}, {"uuid": "e427d50b-3507-456b-ac35-0681ea822a7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47184", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mquk3hsae622", "content": "CVE-2026-47184 - Zeroconf: Unbounded DNS record cache allows LAN-local memory exhaustion via multicast flood\nCVE ID : CVE-2026-47184\n \n Published : July 17, 2026, 7:17 p.m. | 21\u00a0minutes ago\n \n Description : Zeroconf is a pure Python implementation of multicast DNS service disc...", "creation_timestamp": "2026-07-17T20:00:42.077688Z"}, {"uuid": "f09d17ba-38b6-4cb9-9310-ed724bab6a7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47180", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mquk7cskbr2q", "content": "CVE-2026-47180 - Zeroconf: Unbounded recursion in DNS compression-pointer decoder allows LAN-local denial of service\nCVE ID : CVE-2026-47180\n \n Published : July 17, 2026, 7:17 p.m. | 21\u00a0minutes ago\n \n Description : Zeroconf is a pure Python implementation of multicast DNS serv...", "creation_timestamp": "2026-07-17T20:02:51.207597Z"}, {"uuid": "bda9767d-dac0-4657-81d2-aa980d3238d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47183", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqukmt4krc23", "content": "CVE-2026-47183 - Zeroconf: Unbounded exception-dedup state retains packet buffers via traceback frame locals, enabling LAN-local memory exhaustion\nCVE ID : CVE-2026-47183\n \n Published : July 17, 2026, 7:17 p.m. | 21\u00a0minutes ago\n \n Description : Zeroconf is a pure Python implem...", "creation_timestamp": "2026-07-17T20:10:24.455647Z"}]}