{"vulnerability": "cve-2026-9772", "sightings": [{"uuid": "60fb0077-0885-44af-b48d-1ad73359419a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9772", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp3bsetpgr2t", "content": "CVE-2026-9772 - Unraid Web Server FileUpload Command Injection Remote Code Execution Vulnerability\nCVE ID : CVE-2026-9772\n \n Published : June 24, 2026, 9:35 p.m. | 3\u00a0hours, 35\u00a0minutes ago\n \n Description : Unraid Web Server FileUpload Command Injection Remote Code Execution Vul...", "creation_timestamp": "2026-06-25T01:30:41.853881Z"}, {"uuid": "aa807e9b-c540-4d19-b85f-1683f18b7201", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9772", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mp3euei7q32r", "content": "Two flaws turn one Unraid login into full control of the server.\n\nBoth let any logged-in user run commands on the NAS. CVSS 8.8.\n\nFix shipped in Unraid 7.3.0: update, and keep the web panel off the internet. (CVE-2026-9772/9773)", "creation_timestamp": "2026-06-25T02:25:30.238608Z"}]}