{"vulnerability": "CVE-2026-28701", "sightings": [{"uuid": "6e3caaec-a549-4bd2-85c1-b104dda0d345", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-28701", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-176-04", "content": "", "creation_timestamp": "2026-06-25T17:15:07.412574Z"}, {"uuid": "ea528819-af72-458d-974c-03a5b7da443a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28701", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpa5fuicyu2l", "content": "CVE-2026-28701 - Daktronics Controller Firmware Path Traversa\nCVE ID : CVE-2026-28701\n \n Published : June 26, 2026, 10:40 p.m. | 31\u00a0minutes ago\n \n Description : Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users to esc...", "creation_timestamp": "2026-06-26T23:55:25.951515Z"}, {"uuid": "3bd4bccc-b00e-423f-9613-adfdbbd469c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-28701", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpa5pckhft2d", "content": "CRITICAL vuln (CVE-2026-28701) in Daktronics VFC-DMP-5000: remote attackers can enumerate file paths via directory traversal \u2014 no auth needed. Restrict access & monitor until patched. https://radar.offseq.com/threat/cve-2026-28701-cwe-22-in-daktronics-vfc-dmp-5000-fcca115843b7a100 #OffSeq #CVE #I...", "creation_timestamp": "2026-06-27T00:00:43.111919Z"}, {"uuid": "0cc40de9-88b9-41fd-bbf1-0fcb9099d1b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-28701", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116819128489204925", "content": "Daktronics VFC-DMP-5000 firmware has a CRITICAL vuln (CVE-2026-28701, CVSS 9.8): remote attackers can traverse directories & enumerate file paths \u2014 no auth needed. No patch yet. Restrict network access & monitor closely. https://radar.offseq.com/threat/cve-2026-28701-cwe-22-in-daktronics-vfc-dmp-5000-fcca115843b7a100 #OffSeq #CVE #Infosec #IoT", "creation_timestamp": "2026-06-27T00:00:44.494482Z"}, {"uuid": "b24cb109-d5de-4952-b540-b58decd47497", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28701", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mpbpyscipb26", "content": "\ud83d\udd34 CVE-2026-28701 - Critical (9.8)\n\nVarious versions of Daktronics Controller Firmware could allow authenticated and unauthenticated ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-28701/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-27T15:00:49.265033Z"}]}