{"vulnerability": "cve-2026-28381", "sightings": [{"uuid": "07e5ddb0-ee49-41a0-a3f1-ed7903e76845", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28381", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3movdgbwzk622", "content": "CVE-2026-28381 - Local File Read/Write to Potential Privilege Escalation via Snowflake GET/PUT\nCVE ID : CVE-2026-28381\n \n Published : June 22, 2026, 1:20 p.m. | 2\u00a0hours, 23\u00a0minutes ago\n \n Description : The Snowflake datasource allows for GET/PUT commands, which can allow any u...", "creation_timestamp": "2026-06-22T16:43:45.264928Z"}, {"uuid": "af3ae275-23a9-409d-8207-9d05090ef332", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28381", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3movepagixn2c", "content": "CVE-2026-28381 - Critical supply chain attack in Grafana. Snowflake datasource GET/PUT commands allow file read/write between server and host. CVSS 9.6. No patch yet - restrict access immediately. #CVE #Grafana #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-28381/", "creation_timestamp": "2026-06-22T17:06:39.507775Z"}]}