{"vulnerability": "cve-2026-40931", "sightings": [{"uuid": "2724b603-e543-4676-8036-eb065a5197b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40931", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mk22btobow2e", "content": "", "creation_timestamp": "2026-04-21T22:37:34.183547Z"}, {"uuid": "0bc2b53f-70d5-4869-80fc-f584c107510f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40931", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mk2fjwdzfw23", "content": "", "creation_timestamp": "2026-04-22T01:58:55.267904Z"}, {"uuid": "35656d68-d136-4985-b800-34033628059e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40931", "type": "published-proof-of-concept", "source": "https://github.com/node-modules/compressing/security/advisories/GHSA-4c3q-x735-j3r5", "content": "", "creation_timestamp": "2026-04-13T14:02:27.000000Z"}, {"uuid": "75a394ba-30d8-472a-a2a1-2b6f75f23acc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40931", "type": "seen", "source": "Telegram/WzFh75qC0rKhc-ksOtYvdTuNUy7-5M1wjcl5aTvCRw8jriM", "content": "", "creation_timestamp": "2026-04-21T23:30:49.000000Z"}, {"uuid": "3256cdc5-3fec-42c5-a23f-c57ebe5635f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40931", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mnfbmwaha72h", "content": "Silent Supply Chain Break: CVE-2026-40931 Uncovers a Dangerous Patch Bypass in Nodejs Compressing Library +\u00a0Video\n\n\ud83e\udde0 Introduction: When a Fixed Bug Comes Back Stronger A vulnerability that was once believed to be fully resolved has resurfaced in a far more dangerous form. CVE-2026-40931 reveals\u2026", "creation_timestamp": "2026-06-03T14:03:53.927777Z"}]}