{"vulnerability": "CVE-2026-55441", "sightings": [{"uuid": "64832c6d-d30d-4e70-a34f-cad1cb5dde0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-55441", "type": "published-proof-of-concept", "source": "https://github.com/jdx/mise/security/advisories/GHSA-77g9-363w-rccq", "content": "", "creation_timestamp": "2026-06-12T15:56:47.000000Z"}, {"uuid": "5e029218-09f1-4165-894b-35437c86b450", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55441", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp7nj3eykd2n", "content": "CVE-2026-55441 - mise: Arbitrary command execution via task-include files in an untrusted, config-less repository\nCVE ID : CVE-2026-55441\n \n Published : June 26, 2026, 4:48 p.m. | 56\u00a0minutes ago\n \n Description : mise manages dev tools like node, python, cmake, and terraform. P...", "creation_timestamp": "2026-06-26T19:10:55.166477Z"}, {"uuid": "9df87b07-8569-485e-87cd-93963c3dd87c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55441", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mpdx3k2zqp2y", "content": "CVE-2026-55441 - Critical RCE in Mise. Trust bypass via task-include files allows tera exec() before trust_check. CVSS 8.6. No patch yet. Disable task-includes or block untrusted dirs. #CVE #Mise #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-55441/", "creation_timestamp": "2026-06-28T12:12:56.211843Z"}]}