{"vulnerability": "cve-2026-1152", "sightings": [{"uuid": "0d3b51f4-b3ea-4c77-806b-17e42ebba032", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11528", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116714772643192342", "content": "We have just added an important vulnerability affecting Tenda AC18 (CVE-2026-11528) https://vuldb.com/vuln/369145", "creation_timestamp": "2026-06-08T13:41:37.158730Z"}, {"uuid": "31c32000-6b7f-4c5c-888d-83df881fed54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11527", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moaw4xpgoy2r", "content": "CVE-2026-11527 - Config::IniFiles versions before 3.001000 for Perl allow OS command injection and file overwrite via a 2-arg open() of the -file argument in _make_filehandle\nCVE ID : CVE-2026-11527\n \n Published : June 14, 2026, 12:16 p.m. | 1\u00a0hour, 12\u00a0minutes ago\n \n Descripti...", "creation_timestamp": "2026-06-14T13:52:39.203520Z"}, {"uuid": "2e6988bf-d2d9-4fb8-b95f-1a41fc868291", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11526", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moawfw6jgb2q", "content": "CVE-2026-11526 - GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open() of filename arguments in _make_filehandle\nCVE ID : CVE-2026-11526\n \n Published : June 14, 2026, 12:16 p.m. | 1\u00a0hour, 12\u00a0minutes ago\n \n Description : GD versions b...", "creation_timestamp": "2026-06-14T13:57:40.481927Z"}, {"uuid": "c9c7bb8a-4550-46da-8e6c-967b5d46aed2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11526", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mobrdrtorx2d", "content": "CVE-2026-11526: GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open() of filename arguments in _make_filehandle", "creation_timestamp": "2026-06-14T21:59:39.002074Z"}, {"uuid": "e4f24a27-a9a6-40fe-ad05-d06c32bfd8b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11527", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mobrmqxnim2v", "content": "CVE-2026-11527: Config::IniFiles versions before 3.001000 for Perl allow OS command injection and file overwrite via a 2-arg open() of the -file argument in _make_filehandle", "creation_timestamp": "2026-06-14T22:04:39.936009Z"}, {"uuid": "dae129e2-f896-46db-a1a3-94bdde4e73d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11526", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3mod763bfml2v", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2026-11526\n\nGD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open() of filename arguments in _make_filehandle.\n\nGD::I...", "creation_timestamp": "2026-06-15T11:39:39.627065Z"}, {"uuid": "16e19ae6-287e-4823-8aef-92916b491e88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11526", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3mog3r7wvp42j", "content": "Perl's GD module patched CVE-2026-11526 in 2.86: passing a filename that begins or ends with a pipe to an image constructor could execute a shell command, thanks to 2-arg open(). The fix uses 3-arg open. When did you last audit your open() calls?\n#Perl", "creation_timestamp": "2026-06-16T15:16:46.264527Z"}, {"uuid": "b7fb9b42-f3e6-47a4-be79-5f249f48fb2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11526", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3moid7rl3ts2b", "content": "\u26a0\ufe0f CVE-2026-11526: falha cr\u00edtica no libgd-perl permite execu\u00e7\u00e3o de comandos no #Debian. Vers\u00e3o corrigida: 2.78-1+deb13u1.  Saiba mais: -&gt;  tinyurl.com/ja7274nf", "creation_timestamp": "2026-06-17T12:35:33.269992Z"}, {"uuid": "04c7c49d-cb2a-4ea7-ac44-b742e2efb3a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11526", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3moid7skjpc2b", "content": "\u26a0\ufe0f CVE-2026-11526: falha cr\u00edtica no libgd-perl permite execu\u00e7\u00e3o de comandos no #Debian. Vers\u00e3o corrigida: 2.78-1+deb13u1.  Saiba mais: -&gt;  tinyurl.com/ja7274nf", "creation_timestamp": "2026-06-17T12:35:33.801233Z"}, {"uuid": "1a6603a6-7f60-4539-8209-94f722390f0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11525", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3moitvr3dbc2g", "content": "\ud83d\udea8 Low-severity security fix in undici (6.26.0, 7.28.0, 8.5.0) just released!\n\nPatches CVE-2026-11525. undici vulnerable to Set-Cookie SameSite attribute downgrade via permissive substring matching.\n\ngithub.com/nodejs/undic...", "creation_timestamp": "2026-06-17T17:34:09.494193Z"}, {"uuid": "016e2496-f040-4be0-b114-72d72ce6c4d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11525", "type": "seen", "source": "https://bsky.app/profile/nodeland.dev/post/3mol72ndrtt2r", "content": "\ud83d\udd35 Low: SameSite downgrade (CVE-2026-11525).\nSubstring matching meant `SameSite=NoneOfYourBusiness` parsed as `None` and `StrictLax` as `Lax`, silently weakening cookie policies. v6/v7/v8.", "creation_timestamp": "2026-06-18T15:59:06.190352Z"}, {"uuid": "2f6f756b-0472-4779-8b9f-e08719cafa33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11527", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mosekpb6ec2i", "content": "CVE-2026-11527: falha no libconfig-inifiles-perl do #Debian / #Ubuntu permite inje\u00e7\u00e3o de comandos via nomes de arquivo maliciosos.   Saiba mais: -&gt;  tinyurl.com/u534n7ye", "creation_timestamp": "2026-06-21T12:26:09.436062Z"}, {"uuid": "3cb93659-856f-49f9-a3cc-0d004a1f9277", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11527", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mosekpzves2i", "content": "CVE-2026-11527: falha no libconfig-inifiles-perl do #Debian / #Ubuntu permite inje\u00e7\u00e3o de comandos via nomes de arquivo maliciosos.   Saiba mais: -&gt;  tinyurl.com/u534n7ye", "creation_timestamp": "2026-06-21T12:26:09.978843Z"}, {"uuid": "9b5c092e-4950-4992-b569-7710744067ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11525", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3moxe4wehti2x", "content": "\n\ud83d\udea8 New LOW CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-11525 impacts undici in 1 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/580\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-06-23T12:01:44.295826Z"}, {"uuid": "eee79fb7-9d57-4fdf-af97-6837a9df4026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11525", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mozuke5jad2f", "content": "\n\ud83d\udea8 New LOW CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-11525 impacts undici in 1 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/581\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-06-24T12:00:54.980245Z"}]}