{"vulnerability": "CVE-2026-22872", "sightings": [{"uuid": "145aeff0-f8ce-4682-968e-6ccc5bb4ea4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22872", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mobw3vpzl22j", "content": "\ud83d\udea8  ALERT: CVE-2026-22872\n\nCVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\n\n\n\ud83c\udfaf WHO'S AFFECTED:\n  \u2022 Unknown\n\n\u2694\ufe0f HOW IT'S EXPLOITED:\nAttack vector: unknown vector\nImpact: high impact on confidentiality, integrity, availability\n\n\u2705 WHAT TO DO:\n  1. Check if you're running affected software NOW\n  2. Apply patches immediately ", "creation_timestamp": "2026-06-14T23:24:43.211089Z"}, {"uuid": "0c940816-5f0c-47eb-b9a4-b524d2c0cf14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22872", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mo4hl7tkp32x", "content": "\ud83d\udea8 CRITICAL: CVE-2026-22872 \u2014 CVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\nCapsule Kubernetes Controller < 0.13.0 \u2014 Tenant namespace isolation bypass. Capsule Controller runs with cluster-admin privileges but fails to enforce namespace restrictions on cluster-scoped resources. Tenant admins can escalate to full cluste", "creation_timestamp": "2026-06-12T19:21:32.114556Z"}, {"uuid": "070534db-13d7-4468-a698-1555bfae948e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22872", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mo4hqoxhvg2x", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-22872\n\nCVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\nCapsule is a multi-tenancy and policy-based framework for Kubernetes. The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets the namespace, this is ineffective for clu", "creation_timestamp": "2026-06-12T19:24:35.822172Z"}, {"uuid": "3dbe776b-16ac-4a01-832d-61dc7ef2be3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22872", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mo75l6slp22l", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-22872\n\nCVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\nCapsule is a multi-tenancy and policy-based framework for Kubernetes. The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets the namespace, this is ineffective for clu", "creation_timestamp": "2026-06-13T21:01:20.544590Z"}, {"uuid": "02fc195e-360e-443a-9fb2-4ab9d3a56c85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-22872", "type": "published-proof-of-concept", "source": "https://github.com/projectcapsule/capsule/security/advisories/GHSA-qjjm-7j9w-pw72", "content": "", "creation_timestamp": "2026-05-28T05:53:43.000000Z"}, {"uuid": "83b4afdb-623c-42ae-8612-84d918e4c84f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22872", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mo643hhhgt2g", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-22872\n\nCVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\nCapsule is a multi-tenancy and policy-based framework for Kubernetes. The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets the namespace, this is ineffective for clu", "creation_timestamp": "2026-06-13T11:01:11.627332Z"}, {"uuid": "4a1f024a-8a25-42ab-a28b-0a4a31195405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22872", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mo7q2adu6z2y", "content": "Top 3 CVE for last 7 days:\nCVE-2026-35273: 50 interactions\nCVE-2026-11645: 30 interactions\nCVE-2025-10263: 25 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-22872: 8 interactions\nCVE-2026-50751: 4 interactions\nCVE-2026-53608: 4 interactions\n", "creation_timestamp": "2026-06-14T02:39:19.879266Z"}]}