{"vulnerability": "cve-2026-3508", "sightings": [{"uuid": "f087dffd-039f-4ec8-9cac-d0e6f950b1d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35087", "type": "seen", "source": "https://cert.pl/en/posts/2026/05/CVE-2026-35087", "content": "", "creation_timestamp": "2026-05-27T03:55:00.000000Z"}, {"uuid": "233d6916-ddfd-47f5-8f99-c526d9647939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35086", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mm7y5tzwdr25", "content": "CVE-2026-35086: Apache OFBiz: Authenticated Remote Code Execution via Unsafe Template Expansion in email services", "creation_timestamp": "2026-05-19T18:05:53.429498Z"}, {"uuid": "f3408552-3b8d-4995-b350-99f23006095b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35089", "type": "seen", "source": "https://cert.pl/en/posts/2026/05/CVE-2026-35087", "content": "", "creation_timestamp": "2026-05-27T03:55:00.000000Z"}, {"uuid": "ac9a1c51-06c9-42ed-a702-4a5047e301dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35084", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnsgledo4q25", "content": "\ud83d\udccc CVE-2026-35084 - A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root. https://www.cyberhub.blog/cves/CVE-2026-35084", "creation_timestamp": "2026-06-08T19:37:06.373066Z"}, {"uuid": "d24fc3d0-4e05-480b-b7bc-f566ef3a7238", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35084", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnf4zwg6ad2u", "content": "CVE-2026-35084 - Stack buffer overflow in method dali-devconfig\nCVE ID : CVE-2026-35084\n \n Published : June 3, 2026, 10:42 a.m. | 1\u00a0hour, 50\u00a0minutes ago\n \n Description : A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full s...", "creation_timestamp": "2026-06-03T12:41:40.736174Z"}, {"uuid": "c5c54af2-d1c1-47de-b14d-7e6529cfa2fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35080", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnf5gfiav626", "content": "CVE-2026-35080 - Arbitrary file delete vulnerability in method ugw-restoreinfo\nCVE ID : CVE-2026-35080\n \n Published : June 3, 2026, 10:40 a.m. | 1\u00a0hour, 52\u00a0minutes ago\n \n Description : The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary...", "creation_timestamp": "2026-06-03T12:48:39.348382Z"}, {"uuid": "a6a8371e-1cd2-469e-bc4a-7016b1bdb213", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35085", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnf5lbwf2m2m", "content": "CVE-2026-35085 - Stack buffer overflow in method gdv-serverconfig\nCVE ID : CVE-2026-35085\n \n Published : June 3, 2026, 10:42 a.m. | 1\u00a0hour, 50\u00a0minutes ago\n \n Description : A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain fu...", "creation_timestamp": "2026-06-03T12:51:23.125014Z"}, {"uuid": "756e0cdf-5a01-4ca5-93f5-3b5992cc025b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35083", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnf5qnwy422d", "content": "CVE-2026-35083 - Stack buffer overflow in method bac-deviceobject\nCVE ID : CVE-2026-35083\n \n Published : June 3, 2026, 10:41 a.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as ...", "creation_timestamp": "2026-06-03T12:54:23.714406Z"}, {"uuid": "d83e47c1-1219-48f8-b1c8-caa653f7fb7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35082", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnf65dysb72o", "content": "CVE-2026-35082 - Local file inclusion vulnerability and deletion in ugw-logread method\nCVE ID : CVE-2026-35082\n \n Published : June 3, 2026, 10:41 a.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : The ugw-logread method allows a remote attacker with user privileges to access arbit...", "creation_timestamp": "2026-06-03T13:01:29.593095Z"}, {"uuid": "13e5c94a-fa82-43e1-82d2-146f4b4a7dd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35081", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnf6ny6u772v", "content": "CVE-2026-35081 - Arbitrary process termination vulnerability in method ugw-logstop\nCVE ID : CVE-2026-35081\n \n Published : June 3, 2026, 10:40 a.m. | 1\u00a0hour, 52\u00a0minutes ago\n \n Description : The ugw-logstop method allows a remote attacker with user privileges to terminate arbitr...", "creation_timestamp": "2026-06-03T13:10:47.484545Z"}, {"uuid": "8c34cab4-4fbf-431d-b8d4-0c901e922c41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35080", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnsvo726fb2i", "content": "\ud83d\udccc CVE-2026-35080 - The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-contro... https://www.cyberhub.blog/cves/CVE-2026-35080", "creation_timestamp": "2026-06-09T00:09:10.189942Z"}, {"uuid": "79a37dd0-c20e-4daf-8b63-ec1244fbd29a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35089", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmttnp42zq2c", "content": "CVE-2026-35089 - Use of Weak Credentials in Slican telephone exchanges\nCVE ID : CVE-2026-35089\n \n Published : May 27, 2026, 2:16 p.m. | 52\u00a0minutes ago\n \n Description : In Slican telephone exchanges secure key is generated in a predictable manner using properties of the telepho...", "creation_timestamp": "2026-05-27T15:38:31.167985Z"}, {"uuid": "6812f4eb-42cc-4423-aa45-46c682d427a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35087", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtv4w342p2i", "content": "CVE-2026-35087 - Authentication Bypass in Slican telephone exchanges\nCVE ID : CVE-2026-35087\n \n Published : May 27, 2026, 2:16 p.m. | 52\u00a0minutes ago\n \n Description : Slican telephone exchanges allow administrative protocol authentication bypass. An attacker can bypass the need...", "creation_timestamp": "2026-05-27T16:04:55.568219Z"}, {"uuid": "d49cc2a5-b11c-4bd5-937d-61ce3d05e945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35080", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnfyw4lumo22", "content": "\ud83d\udfe0 CVE-2026-35080 - High (8.1)\n\nThe ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary loca...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-35080/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-03T21:00:50.698272Z"}, {"uuid": "3319fcc1-3793-4a75-993d-0a897a0d0971", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35081", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnfywe2uj72n", "content": "\ud83d\udfe0 CVE-2026-35081 - High (8.1)\n\nThe ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary proce...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-35081/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-03T21:00:54.002340Z"}, {"uuid": "194067f5-1b62-4484-8b58-890de5834638", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35082", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mng4beffaa2v", "content": "\ud83d\udfe0 CVE-2026-35082 - High (8.8)\n\nThe ugw-logread method allows a remote attacker with user privileges to access arbitrary local fi...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-35082/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-03T22:00:37.067063Z"}, {"uuid": "f1727b0e-9c92-46e2-8ad8-f55603142aac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35083", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mng4blz6vn2e", "content": "\ud83d\udfe0 CVE-2026-35083 - High (8.8)\n\nA remote attacker with user privileges can exploit a stack buffer overflow to gain full system ac...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-35083/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-03T22:00:44.720176Z"}, {"uuid": "3afe9811-ace0-455b-90d5-776ac8dad024", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35082", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnsjwncnup27", "content": "\ud83d\udccc CVE-2026-35082 - The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplied i... https://www.cyberhub.blog/cves/CVE-2026-35082", "creation_timestamp": "2026-06-08T20:37:11.150908Z"}, {"uuid": "51d5c63c-704d-475b-804f-237c9d025e39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35083", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnslmdy73h2p", "content": "\ud83d\udccc CVE-2026-35083 - A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root. https://www.cyberhub.blog/cves/CVE-2026-35083", "creation_timestamp": "2026-06-08T21:07:08.516109Z"}, {"uuid": "7dabb65e-89d9-44f3-9f37-6e4f7aaa21f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35081", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnsxdtj5fp2b", "content": "\ud83d\udccc CVE-2026-35081 - The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-supplied ... https://www.cyberhub.blog/cves/CVE-2026-35081", "creation_timestamp": "2026-06-09T00:37:07.128030Z"}, {"uuid": "e0c1ea60-b4f6-409e-a5fc-d5f6b0a2429a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35085", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnsib2j5av2e", "content": "\ud83d\udccc CVE-2026-35085 - A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root. https://www.cyberhub.blog/cves/CVE-2026-35085", "creation_timestamp": "2026-06-08T20:07:07.733508Z"}]}