{"vulnerability": "cve-2026-5599", "sightings": [{"uuid": "93540fda-2463-438f-9c6e-21280c075532", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5599", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mir4f2ag5j2j", "content": "", "creation_timestamp": "2026-04-05T15:55:58.895454Z"}, {"uuid": "9d8aa673-834b-4d63-b63c-451f52e88d4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5599", "type": "published-proof-of-concept", "source": "Telegram/bba5KoRxZjw4aUqHfMWZuI7ux276_2ZWKOY2q9V8MiGPKQ0", "content": "", "creation_timestamp": "2026-04-05T15:16:27.000000Z"}, {"uuid": "05fc12c4-f35e-45d1-aa39-138c45e60d99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55993", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwh77eadh25", "content": "CVE-2026-55993: Apache Camel: Camel-Atmosphere-Websocket: The inbound consumer maps externally-supplied WebSocket query parameters into the Exchange without a HeaderFilterStrategy, allowing injection of Camel control headers - enabling server-side request forgery and disclosure of secr", "creation_timestamp": "2026-07-05T20:49:14.323898Z"}, {"uuid": "86520ed9-08ec-4455-8c44-b1f5df06347f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55994", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwhi6z42b25", "content": "CVE-2026-55994: Apache Camel: Camel-Iggy: The inbound consumer maps externally-supplied Iggy message user-headers into the Exchange without a HeaderFilterStrategy, allowing injection of Camel control headers - enabling server-side request forgery and disclosure of secrets when bridged", "creation_timestamp": "2026-07-05T20:54:15.775504Z"}, {"uuid": "37f0134f-1f60-4215-8a31-631720f19b61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55994", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpy4fz3bvs2k", "content": "CVE-2026-55994 - Apache Camel Iggy: The inbound consumer maps externally-supplied Iggy message user-headers into the Exchange without a HeaderFilterStrategy, allowing injection of Camel control headers - enabling control over internal behaviour\nCVE ID : CVE-2026-55994\n \n Publi...", "creation_timestamp": "2026-07-06T12:41:30.938137Z"}, {"uuid": "f9a1f723-93ca-4df7-b88f-df37ef1d3808", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55993", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpy4xvx6z62s", "content": "CVE-2026-55993 - Apache Camel Atmosphere Websocket: The inbound consumer maps externally-supplied WebSocket query parameters into the Exchange without a HeaderFilterStrategy, allowing injection of Camel control headers - enabling influencing internal behaviour\nCVE ID : CVE-202...", "creation_timestamp": "2026-07-06T12:51:31.478567Z"}, {"uuid": "c7af2f4c-997e-4ca5-ac7f-456f40d5f2af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55999", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq4vbsaacp2g", "content": "CVE-2026-55999 - xorg-server / xwayland glamor font atlas Heap Buffer Overflow\nCVE ID : CVE-2026-55999\n \n Published : July 8, 2026, 8:07 a.m. | 1\u00a0hour, 7\u00a0minutes ago\n \n Description : Local attackers with a X connection able to provide PCX fonts to the X \nserver xorg-server bef...", "creation_timestamp": "2026-07-08T10:17:14.858327Z"}, {"uuid": "3edc6f3d-3416-426e-a236-34b6201f737c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-55999", "type": "seen", "source": "https://www.acn.gov.it/portale/w/rilevate-vulnerabilita-in-componenti-x.org", "content": "", "creation_timestamp": "2026-07-08T16:45:33.247886Z"}, {"uuid": "b24d21ab-bb84-4067-ae23-9d09173810e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55999", "type": "seen", "source": "https://bsky.app/profile/slackers.it/post/3mq6dedr4k22i", "content": "11/13\n\nFor more information, see:\n    https://lists.x.org/archives/xorg/2026-July/062255.html\n    https://www.cve.org/CVERecord?id=CVE-2026-55999\n    https://www.cve.org/CVERecord?id=CVE-2026-56000\n  (* Security fix *)\nx/xorg-server-xephyr-21.1.24-x86_64-1.txz:  Upgraded.", "creation_timestamp": "2026-07-09T00:01:49.275205Z"}, {"uuid": "78affdf4-e7d2-4ce5-8f01-983381f00aa6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55999", "type": "seen", "source": "https://bsky.app/profile/slackers.it/post/3mq6defxija2a", "content": "13/13\n\nGLX contextTags Use-After-Free in CommonMakeCurrent().\n  For more information, see:\n    https://lists.x.org/archives/xorg/2026-July/062255.html\n    https://www.cve.org/CVERecord?id=CVE-2026-55999\n    https://www.cve.org/CVERecord?id=CVE-2026-56000\n  (* Security fix *)", "creation_timestamp": "2026-07-09T00:01:51.990759Z"}, {"uuid": "2391c8f1-4e1a-4bbb-80e4-c294df69754d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55993", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6qitll422f", "content": "CVE-2026-55993: \u0423\u0433\u0440\u043e\u0437\u0430 \u0443\u0442\u0435\u0447\u043a\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u0437-\u0437\u0430 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0439 \u0432\u0430\u043b\u0438\u0434\u0430\u0446\u0438\u0438 \u0432\u0432\u043e\u0434\u0430\n\n\n\nhttps://kripta.biz/posts/82C599E4-8FC5-412F-BF35-3A7D9A99E780", "creation_timestamp": "2026-07-09T03:56:59.420656Z"}, {"uuid": "a14f418b-9d87-4a8e-a574-a04850722a7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55994", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6qjhd5m62e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-55994: \u0440\u0438\u0441\u043a\u0438 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0439 \u0432\u0430\u043b\u0438\u0434\u0430\u0446\u0438\u0438 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0443\u0442\u0435\u0447\u043a\u0438 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438\n\n\n\nhttps://kripta.biz/posts/543ECF00-9A95-4D07-BE12-08A41605DC77", "creation_timestamp": "2026-07-09T03:57:19.695298Z"}, {"uuid": "b1c061d2-6bf5-4226-9e19-8018dc67f5aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55999", "type": "seen", "source": "https://bsky.app/profile/slackers.it/post/3mqb2jbxzsj2l", "content": "7/7\n\nhttps://www.cve.org/CVERecord?id=CVE-2026-55999\n    https://www.cve.org/CVERecord?id=CVE-2026-56000\n  (* Security fix *)", "creation_timestamp": "2026-07-10T02:01:31.060036Z"}]}