{"vulnerability": "cve-2026-49017", "sightings": [{"uuid": "5b6a2e70-d868-4919-9360-46f5186c6169", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-49017", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116644303789823901", "content": "CVE-2026-49017: HIGH-severity in OpenStack Swift 2.36.0 & 2.37.0. Infinite loop in s3api lets authenticated attackers exhaust proxy workers \u2192 DoS risk. Patch to 2.36.2 or 2.37.2+ now! \ud83d\udd04 https://radar.offseq.com/threat/cve-2026-49017-cwe-835-loop-with-unreachable-exit--0557d1bf #OffSeq #OpenStack #Vuln #DoS", "creation_timestamp": "2026-05-27T03:00:27.932207Z"}, {"uuid": "0a448c4a-1429-47aa-833a-a53593024e2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49017", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmspyuw3jw2p", "content": "CVE-2026-49017 - OpenStack Swift S3API Middleware Infinite Loop Denial of Service Vulnerability\nCVE ID : CVE-2026-49017\n \n Published : May 27, 2026, 2:16 a.m. | 2\u00a0hours, 15\u00a0minutes ago\n \n Description : In OpenStack Swift before 2.36.2 and 2.37.2, s3api middleware enters an inf...", "creation_timestamp": "2026-05-27T05:00:31.515729Z"}, {"uuid": "f37f43fa-d077-4a46-8430-54f538d5c127", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-49017", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmsjca6nvq2v", "content": "OpenStack Swift 2.36.0 & 2.37.0 hit by HIGH-severity infinite loop flaw \u2014 risk of denial of service! Patch to 2.36.2/2.37.2+ after checking vendor advisory. \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-49017-cwe-835-loop-with-unreachable-exit--0557d1bf #OffSeq #OpenStack #Security", "creation_timestamp": "2026-05-27T03:00:29.536628Z"}, {"uuid": "dc583595-aaad-46af-be5b-1758f9414f0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49017", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmtzqnpwan2b", "content": "[OSSA-2026-014] OpenStack Swift: Swift proxy-server denial of service via truncated s3api chunked upload (CVE-2026-49017)", "creation_timestamp": "2026-05-27T17:27:32.775252Z"}]}