{"vulnerability": "cve-2026-8711", "sightings": [{"uuid": "ff9cf0ed-0774-4e78-a679-63ccd2eadf4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mm7wpfndkg2k", "content": "CVE-2026-8711 - NGINX JavaScript vulnerability\nCVE ID : CVE-2026-8711\n \n Published : May 19, 2026, 3:16 p.m. | 28\u00a0minutes ago\n \n Description : NGINX JavaScript has a vulnerability when the js_fetch_proxy\u00a0directive is configured with at least one client-controlled NGINX variabl...", "creation_timestamp": "2026-05-19T17:39:57.856589Z"}, {"uuid": "dbcf38d9-f0c2-48a1-8686-58ba8e535175", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmalxzeb3x2t", "content": "\ud83d\udfe0 CVE-2026-8711 - High (8.1)\n\nNGINX JavaScript has a vulnerability when the js_fetch_proxy\u00a0directive is configured with at lea...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-8711/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-20T00:00:34.306118Z"}, {"uuid": "1d7aa783-f569-4bb9-9d4e-28ab80694d09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116606661767180775", "content": "Some increased actor activities are shown targeting F5 NGINX JavaScript (CVE-2026-8711) https://vuldb.com/vuln/364689/cti", "creation_timestamp": "2026-05-20T11:27:35.667272Z"}, {"uuid": "0df786cd-66f9-421a-8e1f-e9c3da49a455", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116607257924621907", "content": "The severity is increased for this new vulnerability affecting F5 NGINX JavaScript (CVE-2026-8711) https://vuldb.com/vuln/364689", "creation_timestamp": "2026-05-20T13:59:12.359184Z"}, {"uuid": "22ad0fe9-5d52-4d32-ad4a-c175bfc83be2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3hybojr2k", "content": "\ud83d\udd17 CVE : CVE-2026-8711", "creation_timestamp": "2026-05-20T14:10:33.926720Z"}, {"uuid": "5a467626-1a21-4f24-b437-6bc02a916911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmcca5sgio26", "content": "~Cybergcca~\nCCCS issued 5 advisories, including a critical F5 NGINX flaw and updates for Chrome, HPE, FreePBX, and cPanel.\n-\nIOCs: CVE-2026-8711, CVE-2026-31431\n-\n#Patch #ThreatIntel #Vulnerability", "creation_timestamp": "2026-05-20T16:11:27.703224Z"}, {"uuid": "66911fe5-4f45-44e4-8158-f0c74bbab165", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/f5-security-advisory-av26-485", "content": "", "creation_timestamp": "2026-05-20T08:19:32.000000Z"}, {"uuid": "223997d6-4685-4f68-99a2-c3b5f6f1db28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://bsky.app/profile/mm-ilsoftware-bot.bsky.social/post/3mme5xyxtfd27", "content": "Scoperta nuova grave falla in NGINX: basta una richiesta HTTP per bloccare il server\nLa vulnerabilit\u00e0 CVE-2026-8711 in NGINX JavaScript njs porta a un errore di heap overflow che ha com...\nhttps://www.ilsoftware.it/falla-nginx-javascript-crash-server/", "creation_timestamp": "2026-05-21T10:00:38.639360Z"}, {"uuid": "3eedb4cb-9101-4bcd-8e21-ce0a2ea8b043", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mmeb53yued2i", "content": "NGINX CVE-2026-8711: Unauthenticated Attackers Can Hijack Your Web Server via Malicious JavaScript Fetch\u00a0Requests\n\nIntroduction: A newly discovered critical vulnerability in the NGINX JavaScript (njs) module, tracked as CVE-2026-8711 with a CVSS v4.0 score of 9.2, allows unauthenticated remote\u2026", "creation_timestamp": "2026-05-21T10:57:11.435970Z"}, {"uuid": "153a3505-d643-4e9c-8f9c-7fbde470c1dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/f5-products-multiple-vulnerabilities_20260515", "content": "", "creation_timestamp": "2026-05-14T18:00:00.000000Z"}, {"uuid": "8fd814ac-e328-40f1-895a-cd05330b5875", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8711", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3mms7lua3kk2n", "content": "nginx\u306e\u300cnjs\u300d\u30e2\u30b8\u30e5\u30fc\u30eb\u306bCVSS 9.2\u306e\u6df1\u523b\u306a\u30d2\u30fc\u30d7\u30d0\u30c3\u30d5\u30a1\u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc \u8106\u5f31\u6027 CVE-2026-8711\n\nrocket-boys.co.jp/security-mea...\n\n#\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56Lab #security #securitynews", "creation_timestamp": "2026-05-27T00:06:59.077144Z"}]}