{"vulnerability": "CVE-2026-2789", "sightings": [{"uuid": "9d5ba7f0-7102-46cb-aae3-dc5eb582dfd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27899", "type": "seen", "source": "https://gist.github.com/alon710/0d260fd55b7736ebaf5b86e89cb62237", "content": "", "creation_timestamp": "2026-02-27T04:40:18.000000Z"}, {"uuid": "e4268b3f-7edd-491d-9ba1-1be58207fc19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-27899", "type": "seen", "source": "https://bsky.app/profile/flarestart.bsky.social/post/3mfswa3m56p2e", "content": "", "creation_timestamp": "2026-02-27T04:55:35.056876Z"}, {"uuid": "81dac82e-1bad-4e7d-b245-4bc2afe30597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27896", "type": "seen", "source": "https://gist.github.com/alon710/69aa4a4739e67bd07fef8e710308767b", "content": "", "creation_timestamp": "2026-02-27T05:10:18.000000Z"}, {"uuid": "6e8099aa-e99f-4fc8-8245-8c607be54c32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27898", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mgbjtd7dnk2y", "content": "", "creation_timestamp": "2026-03-05T00:23:37.514188Z"}, {"uuid": "d7e96c3a-3338-4403-8ebb-f10f407b1f4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-27896", "type": "seen", "source": "https://bsky.app/profile/flarestart.bsky.social/post/3mfsyhmdof22s", "content": "", "creation_timestamp": "2026-02-27T05:35:34.670122Z"}, {"uuid": "f817d5f6-5f1f-4509-a432-82d138705df3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27896", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mfq5377qt324", "content": "", "creation_timestamp": "2026-02-26T02:20:07.736269Z"}, {"uuid": "6f9bf551-6ce4-43d5-88ca-d3158785e990", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-2789", "type": "seen", "source": "https://bsky.app/profile/slackers.it/post/3mfv4yh74bv2y", "content": "", "creation_timestamp": "2026-02-28T02:01:57.858865Z"}, {"uuid": "fa41b49b-abb5-440d-a2a4-4af32600f3f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27899", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mg5hynbe3n2a", "content": "", "creation_timestamp": "2026-03-03T09:40:10.301797Z"}, {"uuid": "c6e05e8d-3b72-461e-8176-3452da91cc0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27899", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mfqfn3nav62k", "content": "", "creation_timestamp": "2026-02-26T04:53:17.731047Z"}, {"uuid": "bee438f2-80ab-4d02-a620-ae090fb68df9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27899", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfqkmizhno2s", "content": "", "creation_timestamp": "2026-02-26T06:22:27.383184Z"}, {"uuid": "e8d1d8be-8278-4d07-a180-e9b71381fe92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27897", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhirsmclvp2h", "content": "", "creation_timestamp": "2026-03-20T15:00:13.795926Z"}, {"uuid": "bc86d64b-fad7-4350-a077-e57e379e0271", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-2789", "type": "seen", "source": "https://bsky.app/profile/slackers.it/post/3mfnevtu6ue22", "content": "", "creation_timestamp": "2026-02-25T00:02:22.949133Z"}, {"uuid": "895c638c-2186-4299-a105-ac275684488a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27894", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhqygqnnnr2y", "content": "", "creation_timestamp": "2026-03-23T21:20:09.244351Z"}, {"uuid": "9754e0b5-02c1-44ac-86af-e3b3193e11eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-27897", "type": "seen", "source": "https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-27897", "content": "", "creation_timestamp": "2026-03-11T15:16:40.000000Z"}, {"uuid": "fd843fe3-bc92-45f2-951a-bde32089014a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27894", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mheezkcu762c", "content": "", "creation_timestamp": "2026-03-18T21:00:49.042415Z"}, {"uuid": "57ccd232-0dde-4016-b458-862b964dfb3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27893", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mi5tqmctmz2x", "content": "", "creation_timestamp": "2026-03-29T00:00:49.690601Z"}, {"uuid": "f63eb8ec-13fd-41d3-9c89-6de61e9e8cf2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27893", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhz5ocijg62t", "content": "", "creation_timestamp": "2026-03-27T03:15:09.568804Z"}, {"uuid": "e649ba82-1a13-48fe-b1ac-59443d1296d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27890", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mkbxfeae4x2h", "content": "", "creation_timestamp": "2026-04-25T02:07:08.223074Z"}, {"uuid": "ba256d8c-a3e1-45c9-98c7-bc1af0e13296", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27890", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjppngjaeg26", "content": "", "creation_timestamp": "2026-04-17T20:00:33.770203Z"}, {"uuid": "39e5e333-d217-4936-9d0a-6900c8034827", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27890", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mjpv5ej5fn2v", "content": "", "creation_timestamp": "2026-04-17T21:38:56.913181Z"}, {"uuid": "12e2f7b1-50b4-4687-9001-ac0134d86309", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27893", "type": "published-proof-of-concept", "source": "Telegram/iwwl46KpLYwipk_JFr9bJW43ngNWdoc7X8GY9RAN-oHOG28", "content": "", "creation_timestamp": "2026-03-27T01:18:44.000000Z"}, {"uuid": "d169e030-c99b-4878-9bbe-d9ef043fddb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27896", "type": "seen", "source": "https://t.me/poxek/5964", "content": "\u2328\ufe0f \u0413\u0440\u0430\u043c\u043e\u0442\u0430 \u043e \u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 MCP, \u043b\u0435\u0442\u0430 7534 \u043e\u0442 \u0441\u043e\u0442\u0432\u043e\u0440\u0435\u043d\u0438\u044f \u043c\u0438\u0440\u0430\n\n\u042f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-27896 \u043e\u0446\u0435\u043d\u0435\u043d\u0430 \u043c\u0443\u0434\u0440\u0435\u0446\u0430\u043c\u0438 \u0432 7.0 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS, \u0441\u0438\u0440\u0435\u0447\u044c \u00ab\u0412\u044b\u0441\u043e\u043a\u0430\u044f\u00bb \u2014 \u0431\u0440\u0435\u0448\u044c \u0438\u0437\u0440\u044f\u0434\u043d\u0430\u044f, \u0445\u043e\u0442\u044f \u0438 \u043d\u0435 \u043d\u0430\u0438\u043f\u0430\u0433\u0443\u0431\u043d\u0435\u0439\u0448\u0430\u044f. \n\n\u0421\u0443\u0442\u044c \u0436\u0435 \u0432\u043e\u0442 \u0432 \u0447\u0435\u043c: \u0444\u0443\u043d\u043a\u0446\u0438\u044f json.Unmarshal() \u044f\u0437\u044b\u043a\u0430 Go \u0441\u043b\u0438\u0447\u0430\u0435\u0442 \u043f\u043e\u043b\u044f JSON-\u0433\u0440\u0430\u043c\u043e\u0442 \u0431\u0435\u0437 \u0440\u0430\u0437\u043b\u0438\u0447\u0435\u043d\u0438\u044f \u0431\u043e\u043b\u044c\u0448\u0438\u0445 \u0438 \u043c\u0430\u043b\u044b\u0445 \u043b\u0438\u0442\u0435\u0440 \u2014 \u0434\u043b\u044f \u043d\u0435\u0435 Method \u0438 method \u0441\u0443\u0442\u044c \u0435\u0434\u0438\u043d\u043e, \u0430 \u0443\u043b\u043e\u0436\u0435\u043d\u0438\u0435 JSON-RPC 2.0 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0441\u043e\u0432\u043f\u0430\u0434\u0435\u043d\u0438\u044f \u0442\u043e\u0447\u043d\u043e\u0433\u043e, \u0434\u043e \u0435\u0434\u0438\u043d\u043e\u0439 \u0431\u0443\u043a\u0432\u0438\u0446\u044b. \u0412\u044b\u0445\u043e\u0434\u0438\u0442 \u043d\u0435\u0441\u043e\u0432\u043f\u0430\u0434\u0435\u043d\u0438\u0435 \u0443\u0441\u0442\u0430\u0432\u0430 \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a \u0432 \u043a\u043e\u0434\u0435 \u2014 \u0441\u0442\u0440\u0430\u0436\u0438 \u043f\u0440\u043e\u043c\u0435\u0436\u0443\u0442\u043e\u0447\u043d\u044b\u0435 (WAF, \u043f\u0440\u043e\u043a\u0441\u0438) \u0434\u043e\u0441\u043c\u0430\u0442\u0440\u0438\u0432\u0430\u044e\u0442 \u0433\u0440\u0430\u043c\u043e\u0442\u044b \u0441\u0442\u0440\u043e\u0433\u043e \u043f\u043e \u0443\u043b\u043e\u0436\u0435\u043d\u0438\u044e \u0438 \u0443\u0433\u0440\u043e\u0437\u044b \u043d\u0435 \u0437\u0440\u044f\u0442, \u0430 MCP Go SDK \u0432\u0442\u0438\u0445\u043e\u043c\u043e\u043b\u043a\u0443 \u043f\u0440\u0438\u043d\u0438\u043c\u0430\u0435\u0442 \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u0437\u0430\u043c\u0430\u0441\u043a\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435. \u041d\u0430 \u0434\u0435\u043b\u0435 \u0436\u0435 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u043e\u0431\u043e\u0439\u0442\u0438 \u0437\u0430\u0441\u0442\u0430\u0432\u044b \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043c\u0435\u0436 AI-\u0430\u0433\u0435\u043d\u0442\u043e\u043c \u0438 MCP-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u043c, \u0442\u043e\u043a\u043c\u043e \u043c\u0435\u043d\u044f\u044f \u043d\u0430\u0447\u0435\u0440\u0442\u0430\u043d\u0438\u0435 \u043b\u0438\u0442\u0435\u0440 \u0432 \u043f\u043e\u043b\u044f\u0445 JSON. \n\n\u0418 \u0437\u0435\u043b\u043e \u0432\u0430\u0436\u0435\u043d \u043a\u043e\u043d\u0442\u0435\u043a\u0441\u0442: \u0441\u0438\u0435 \u0443\u0436\u0435 30-\u044f \u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0437\u0435\u043c\u043b\u044f\u0445 MCP \u0441 \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 \u0432 \u043b\u0435\u0442\u043e 2024-\u0435, \u0430 \u043f\u043e\u043b\u043e\u0432\u0438\u043d\u0430 \u043e\u043d\u044b\u0445 \u044f\u0432\u0438\u043b\u0430\u0441\u044c \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u0442\u0440\u0438 \u043c\u0435\u0441\u044f\u0446\u0430 \u2014 \u0442\u043e \u0431\u0438\u0448\u044c \u0440\u0435\u0447\u044c \u043d\u0435 \u043e\u0431 \u043e\u0434\u043d\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u0435, \u0430 \u043e \u0445\u0432\u043e\u0440\u044f\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0445 \u0432\u0441\u0435\u0433\u043e \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430.\n\n\u041e\u0442 \u0441\u0435\u0439 \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u043e\u0439 \u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441\u043f\u0430\u0441\u0430\u0435\u0442 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 MCP Go SDK \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1.3.1, \u0433\u0434\u0435 \u043f\u0430\u0440\u0441\u0438\u043d\u0433 JSON \u0437\u0430\u043c\u0435\u043d\u0438\u043b\u0438 \u043d\u0430 \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u043e\u0447\u0443\u0432\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0439. \u041e\u0434\u043d\u0430\u043a\u043e \u0435\u0434\u0438\u043d\u044b\u043c \u0437\u0430\u043f\u043b\u0430\u0442\u0430\u043d\u0438\u0435\u043c \u0431\u0435\u0434\u044b \u043d\u0435 \u043e\u0434\u043e\u043b\u0435\u0442\u044c: 36% MCP-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0442 \u0432\u043e\u0432\u0441\u0435 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u0430\u043a\u0438 \u0432\u043e\u0440\u043e\u0442\u0430 \u043d\u0430\u0440\u0430\u0441\u043f\u0430\u0448\u043a\u0443. \n\n\u0410\u0437 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044e \u043e\u0431\u043e\u0440\u043e\u043d\u0443 \u0433\u043b\u0443\u0431\u043e\u043a\u0443\u044e: \u0432\u0437\u0430\u0438\u043c\u043d\u043e\u0435 TLS-\u0440\u0443\u043a\u043e\u043f\u043e\u0436\u0430\u0442\u0438\u0435 \u043c\u0435\u0436 MCP-\u0447\u0430\u0441\u0442\u044f\u043c\u0438, \u0441\u0442\u0440\u043e\u0433\u0443\u044e \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u0432\u0441\u0435\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043e\u0442 MCP-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 (AI-\u0430\u0433\u0435\u043d\u0442 \u0434\u043e\u043b\u0436\u0435\u043d \u043f\u043e\u0447\u0438\u0442\u0430\u0442\u044c \u0432\u0441\u044f\u043a\u0438\u0439 \u043e\u0442\u0432\u0435\u0442 MCP \u0437\u0430 \u043d\u0435\u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0439), \u0440\u0430\u0437\u0434\u0435\u043b\u0435\u043d\u0438\u0435 \u0441\u0435\u0442\u0435\u0439 \u0438 \u0437\u0430\u0442\u043e\u0447\u0435\u043d\u0438\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0432 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u044b. \u041d\u0430\u0434\u043b\u0435\u0436\u0438\u0442 \u0432\u0435\u0441\u0442\u0438 \u043b\u0435\u0442\u043e\u043f\u0438\u0441\u044c \u0432\u0441\u0435\u0445 tool calls \u0438 \u0432\u044b\u0438\u0441\u043a\u0438\u0432\u0430\u0442\u044c \u0430\u043d\u043e\u043c\u0430\u043b\u0438\u0438. \u0410 \u043d\u0430\u0438\u043f\u0430\u0447\u0435 \u0434\u0435\u0439\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u043d\u044b\u043d\u0435 \u2014 \u0443\u0431\u0430\u0432\u0438\u0442\u044c \u0447\u0438\u0441\u043b\u043e \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u043d\u044b\u0445 MCP-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0438 \u043a\u0430\u0436\u0434\u044b\u0439 \u0442\u0449\u0430\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c, \u0438\u0431\u043e \u0432\u0441\u044f\u043a\u0438\u0439 \u043d\u043e\u0432\u044b\u0439 \u0441\u0435\u0440\u0432\u0435\u0440 \u0440\u0430\u0441\u0448\u0438\u0440\u044f\u0435\u0442 \u0440\u0443\u0431\u0435\u0436\u0438, \u043a\u043e\u0438\u0445 \u043d\u0430\u0434\u043e\u0431\u043d\u043e \u043e\u0431\u043e\u0440\u043e\u043d\u044f\u0442\u044c.\n\n\u041f\u0438\u0441\u0430\u043d\u043e \u0440\u0443\u043a\u043e\u044e \u0418\u043d\u043d\u043e\u043a\u0435\u043d\u0442\u0438\u044f, \u0434\u044c\u044f\u043a\u0430 \u043f\u0440\u0438\u043a\u0430\u0437\u0430 \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438\n\n#red_team #memes", "creation_timestamp": "2026-03-03T15:22:03.000000Z"}, {"uuid": "aade98bf-a81b-4020-9356-34a4139c22ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-27890", "type": "seen", "source": "Telegram/1afGr9vW06Zk0J3YeUW4MdlUf8TA53EPyuLeVgpLZqfvxp8", "content": "", "creation_timestamp": "2026-04-17T21:22:32.000000Z"}]}