{"vulnerability": "cve-2026-4859", "sightings": [{"uuid": "95f2fa8b-7597-41a0-bee2-9dd6060b08f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48597", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mndhnkma2l2j", "content": "CVE-2026-48597 - Atom table exhaustion via untrusted URL scheme in Tesla.Adapter.Mint\nCVE ID : CVE-2026-48597\n \n Published : June 2, 2026, 7:08 p.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : Allocation of Resources Without Limits or Throttling vulnerability in elixir-tesla tes...", "creation_timestamp": "2026-06-02T20:46:17.191015Z"}, {"uuid": "3a305021-c9c3-4c1c-82e8-2eb6665b0487", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48595", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mndhqfcwzz23", "content": "CVE-2026-48595 - Authorization header leaks to third-party origin on cross-origin redirect in Tesla.Middleware.FollowRedirects\nCVE ID : CVE-2026-48595\n \n Published : June 2, 2026, 7:08 p.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : Improper Handling of Case Sensitivity vulnera...", "creation_timestamp": "2026-06-02T20:47:52.286572Z"}, {"uuid": "48dd0006-b33f-4155-88c7-f2d6109e337b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48598", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mndhzwkych27", "content": "CVE-2026-48598 - CRLF injection in Tesla.Multipart disposition parameters allows multipart part header injection\nCVE ID : CVE-2026-48598\n \n Published : June 2, 2026, 7:08 p.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : Improper Encoding or Escaping of Output vulnerability in el...", "creation_timestamp": "2026-06-02T20:53:12.402046Z"}, {"uuid": "d6c4bf2f-ab0c-449c-ab48-58af2f946100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48594", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mndk2jnfci2o", "content": "CVE-2026-48594 - Decompression bomb in Tesla.Middleware.DecompressResponse and Tesla.Middleware.Compression\nCVE ID : CVE-2026-48594\n \n Published : June 2, 2026, 7:08 p.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : Improper Handling of Highly Compressed Data (Data Amplification)...", "creation_timestamp": "2026-06-02T21:29:20.103045Z"}, {"uuid": "20199e6e-43ff-41d6-a986-904ba5b404b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48596", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mndkdilowi2f", "content": "CVE-2026-48596 - CRLF injection in Tesla.Multipart.add_content_type_param/2 allows HTTP header injection\nCVE ID : CVE-2026-48596\n \n Published : June 2, 2026, 7:09 p.m. | 1\u00a0hour, 15\u00a0minutes ago\n \n Description : Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Re...", "creation_timestamp": "2026-06-02T21:34:20.714494Z"}]}