{"vulnerability": "cve-2026-34458", "sightings": [{"uuid": "be71e0e7-c7ed-4a9c-912a-17019388b854", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34458", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml537ce7c32i", "content": "CVE-2026-34458 - Sandboxie-Plus privilege escalation via INI CRLF injection bypassing EditAdminOnly\nCVE ID : CVE-2026-34458\n \n Published : May 5, 2026, 7:24 p.m. | 57\u00a0minutes ago\n \n Description : Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In...", "creation_timestamp": "2026-05-05T20:57:12.349843Z"}, {"uuid": "4bc0ae9f-3ee8-4d67-a883-af97ee472f3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-34458", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116524688383360552", "content": "\ud83d\udea8 CVE-2026-34458: Sandboxie-Plus (<=1.17.2) has a CRITICAL CRLF injection bug. Local users can inject config, escape sandboxes, and escalate to SYSTEM. Patch to 1.17.3 ASAP! https://radar.offseq.com/threat/cve-2026-34458-cwe-93-improper-neutralization-of-c-e575dfc0 #OffSeq #SandboxiePlus #Vuln #PrivilegeEscalation", "creation_timestamp": "2026-05-06T00:00:41.746842Z"}, {"uuid": "6feac070-e23a-4ff7-8367-1f82499a2c94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-34458", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3ml5fhgqxev2y", "content": "Sandboxie-Plus CRITICAL vuln: CVE-2026-34458 allows local escape & SYSTEM escalation via CRLF injection (<=1.17.2). Upgrade to 1.17.3 urgently! https://radar.offseq.com/threat/cve-2026-34458-cwe-93-improper-neutralization-of-c-e575dfc0 #OffSeq #SandboxiePlus #SecurityAlert", "creation_timestamp": "2026-05-06T00:00:43.824988Z"}, {"uuid": "8d8f6dcb-ca4b-43c8-80b9-45bf4f0b138f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-34458", "type": "seen", "source": "https://www.acn.gov.it/portale/w/rilevate-vulnerabilita-in-sandboxie-per-windows", "content": "", "creation_timestamp": "2026-05-06T05:36:40.000000Z"}]}