{"vulnerability": "CVE-2026-1180", "sightings": [{"uuid": "ba475413-75e9-47bf-91c5-05af70e5bad9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11807", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116802141319916316", "content": "CVE-2026-11807 (CRITICAL, CVSS 9.6) affects Red Hat Ansible Automation Platform 2.5: missing authorization in EDA websocket API lets any authenticated user access plaintext credentials. Patch immediately. https://radar.offseq.com/threat/cve-2026-11807-missing-authorization-in-red-hat-re-1c4967af375a0bf5 #OffSeq #RedHat #Ansible #Vuln", "creation_timestamp": "2026-06-24T00:00:37.942065Z"}, {"uuid": "f0f389bf-22ac-45af-8852-b01f516d9230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11807", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3moymcgce3a2j", "content": "Red Hat Ansible Automation Platform 2.5 hit by CRITICAL vuln: missing authorization in EDA API exposes credentials to authenticated users. Update to patched version ASAP. https://radar.offseq.com/threat/cve-2026-11807-missing-authorization-in-red-hat-re-1c4967af375a0bf5 #OffSeq #Ansible #Security", "creation_timestamp": "2026-06-24T00:00:39.208809Z"}, {"uuid": "cdf8e5d1-91f5-4b6b-9731-582d74cd3b2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11807", "type": "seen", "source": "https://bsky.app/profile/devops-daily.com/post/3mp4p2557xo2t", "content": "\ud83d\udcdd Your Automation Platform Is a Credential Honeypot: Ansible CVE-2026-11807\n\nA missing authorization check in Event-Driven Ansible lets any logged-in user pull plaintext vault passwords, SSH keys, and OAuth tokens out of...\n\nRead here: https://devops-daily.com/posts/ansible-automation-platform-c...", "creation_timestamp": "2026-06-25T15:00:21.086337Z"}, {"uuid": "d4bc9fb9-c44c-40aa-9ab7-11b9f9f8f1c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11800", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5hhhr7qa2r", "content": "CVE-2026-11800 - Org.keycloak:keycloak-services: keycloak: authentication bypass via jwt algorithm confusion\nCVE ID : CVE-2026-11800\n \n Published : June 25, 2026, 8:57 p.m. | 47\u00a0minutes ago\n \n Description : A flaw was found in Keycloak. This JWT algorithm confusion vulnerabili...", "creation_timestamp": "2026-06-25T22:17:17.814665Z"}, {"uuid": "3d953cd2-7514-42da-9f21-9c1b24268679", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11807", "type": "seen", "source": "https://bsky.app/profile/davidcorto.bsky.social/post/3mp6dkhapsg2w", "content": "\ud83d\udea8 Alerta DevOps: Fuga de credenciales en Ansible Automation Platform (CVE-2026-11807). Un fallo cr\u00edtico que expone los secretos de tu infraestructura.\n devops-daily.com/posts/ansibl...\n\n#DevSecOps #DevOps #Ansible #Security", "creation_timestamp": "2026-06-26T06:40:04.001455Z"}, {"uuid": "00a0a41e-83e8-4415-9e0b-399ddf1c8bd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11800", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpgkzuo7ml25", "content": "\ud83d\udd17 CVE : CVE-2026-11800, CVE-2026-9083, CVE-2026-9086, CVE-2026-9099, CVE-2026-9705, CVE-2026-9795, CVE-2026-9799, CVE-2026-9800", "creation_timestamp": "2026-06-29T13:15:15.545384Z"}, {"uuid": "e1921285-19fc-4953-b2c7-18594e976dbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-11800", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0815", "content": "", "creation_timestamp": "2026-07-01T02:46:32.353778Z"}, {"uuid": "5be12189-cc9f-4e14-ae8c-5187e82ba65c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11806", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmv3l7pav2u", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-11806 \u0432 IBM WebSphere Application Server: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/9C46A4DE-0EBD-4479-BA07-2335510C6C95", "creation_timestamp": "2026-07-02T01:31:07.877197Z"}, {"uuid": "550b5d56-9f8d-42e3-86f6-d6901d2145bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11800", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpnknfnyrm2u", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-11800 \u0432 Keycloak: \u0443\u0433\u0440\u043e\u0437\u0430 JWT-\u0430\u043b\u0433\u043e\u0440\u0438\u0442\u043c\u043e\u0432 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/42E16BFF-E514-4F14-9E1C-42D82144AD01", "creation_timestamp": "2026-07-02T07:56:54.200886Z"}, {"uuid": "02681efd-0490-4281-8ef7-f9f4bf76f25b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11806", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqc7ffrzs2p", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-11806 \u0432 IBM WebSphere Application Server: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/BD2AD7B8-AAC8-488C-80B5-EC8693654F5B", "creation_timestamp": "2026-07-03T10:03:53.392354Z"}]}