{"vulnerability": "CVE-2026-4802", "sightings": [{"uuid": "e1fb8098-2cc8-4a4d-be3e-5c4533d079e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmucnfq3w323", "content": "~Cisa~\nCISA added three actively exploited vulnerabilities to the KEV catalog.\n-\nIOCs: CVE-2026-8398, CVE-2026-45321, CVE-2026-48027\n-\n#CISA #KEV #threatintel", "creation_timestamp": "2026-05-27T20:06:47.890100Z"}, {"uuid": "8a18d033-cfae-4b4f-b8d5-e81bf3a0a544", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4802", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmcoexw5k52m", "content": "CVE-2026-4802 [cockpit] Arbitrary code execution in the logs page via a specially crafted link", "creation_timestamp": "2026-05-20T19:48:54.273053Z"}, {"uuid": "2d594745-8ea2-4456-85fc-b959da64566c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6591185", "content": "2026-05-27: [CVE-2026-48027] Nx Console Embedded Malicious Code VulnerabilityNx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfuscated payload that could harvested credentials from multiple sources on disk and in memory.\ncisakev", "creation_timestamp": "2026-05-27T19:09:46.684896Z"}, {"uuid": "a769fddd-99f9-451e-b504-296c06d02651", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4802", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlljizydxu2p", "content": "CVE-2026-4802 - Cockpit: cockpit: arbitrary command execution via crafted links in system logs ui\nCVE ID : CVE-2026-4802\n \n Published : May 11, 2026, 2:16 p.m. | 14\u00a0minutes ago\n \n Description : A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve...", "creation_timestamp": "2026-05-11T14:50:27.996304Z"}, {"uuid": "f2b82b1b-0be1-409c-a7bf-10cdb2939750", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4802", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mllk2366jn2n", "content": "\ud83d\udfe0 CVE-2026-4802 - High (8)\n\nA flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary com...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-4802/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T15:00:00.243503Z"}, {"uuid": "1fcf8dfe-5d6a-4d79-bfd4-a7e767eea191", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/23d94b6e-e10b-4ed3-9304-fbf1858a9ac5", "content": "", "creation_timestamp": "2026-05-27T18:00:02.229951Z"}, {"uuid": "1b8c7fe8-d62f-4b80-815a-94a3f2ce4d2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mmu45p54pa2c", "content": "\ud83d\uded1 CVE-2026-48027\nNx Nx Console\nCVSS 9.3 / KEV\nTL;DR: Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console, 18.95.0\u2026\nhttps://cvesentinel.com/report/CVE-2026-48027?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-05-27T18:10:41.545491Z"}]}