{"vulnerability": "cve-2026-4128", "sightings": [{"uuid": "52d7ed81-3dac-4885-8f0a-5ed8e2264a24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41285", "type": "seen", "source": "https://bsky.app/profile/nadsec.online/post/3mk2ktdpjec2b", "content": "", "creation_timestamp": "2026-04-22T03:33:40.760725Z"}, {"uuid": "f22f6e56-6a56-4fe2-84c4-11e2da1f7c37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41285", "type": "seen", "source": "https://bsky.app/profile/nadsec.online/post/3mjvxh67zhc2d", "content": "", "creation_timestamp": "2026-04-20T07:36:11.930579Z"}, {"uuid": "0c7a02cf-9629-478b-b2ac-c0d42704a31e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4128", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mk6xmhhxy52l", "content": "", "creation_timestamp": "2026-04-23T21:33:07.089143Z"}, {"uuid": "d238b799-833b-475e-adb5-d1fe2a326a02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41288", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/watchguard-security-advisory-av26-428", "content": "", "creation_timestamp": "2026-05-06T10:24:20.000000Z"}, {"uuid": "254c694d-30cf-4b70-aba1-ca8c7b07a75f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41286", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml7ahe667o2h", "content": "CVE-2026-41286 - Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant B\nCVE ID : CVE-2026-41286\n \n Published : May 6, 2026, 3:46 p.m. | 37\u00a0minutes ago\n \n Description : Stack-based Buffer Overflow vulnerability in the W...", "creation_timestamp": "2026-05-06T17:36:30.728470Z"}, {"uuid": "cdc63eeb-33ac-459a-a864-e5ac63cb9695", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41288", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml7ak7bskn2c", "content": "CVE-2026-41288 - WatchGuard Agent on Windows Privilege Escalation Vulnerability\nCVE ID : CVE-2026-41288\n \n Published : May 6, 2026, 3:45 p.m. | 37\u00a0minutes ago\n \n Description : Incorrect permission assignment for a resource in the patch management component of the WatchGuard Ag...", "creation_timestamp": "2026-05-06T17:38:06.456018Z"}, {"uuid": "7848a037-86ea-40fe-8ba5-549f5050be8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41287", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml7b7fxkr32p", "content": "CVE-2026-41287 - Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant A\nCVE ID : CVE-2026-41287\n \n Published : May 6, 2026, 3:16 p.m. | 1\u00a0hour, 7\u00a0minutes ago\n \n Description : Stack-based Buffer Overflow vulnerability i...", "creation_timestamp": "2026-05-06T17:49:58.041754Z"}, {"uuid": "3ed23920-b911-4d61-beef-daf0d92061b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41286", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/watchguard-security-advisory-av26-428", "content": "", "creation_timestamp": "2026-05-06T10:24:20.000000Z"}, {"uuid": "c9ebbe1b-8b7d-493c-82a4-1213147eda5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41287", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/watchguard-security-advisory-av26-428", "content": "", "creation_timestamp": "2026-05-06T10:24:20.000000Z"}, {"uuid": "6b75554d-38e1-4236-835b-9e1d549a69b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41287", "type": "seen", "source": "https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-prodotti-watchguard", "content": "", "creation_timestamp": "2026-05-07T02:36:02.000000Z"}, {"uuid": "bfafc6e6-d4f4-45ce-811d-f04b8d862483", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41288", "type": "seen", "source": "https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-prodotti-watchguard", "content": "", "creation_timestamp": "2026-05-07T02:36:02.000000Z"}, {"uuid": "3507049f-2763-4946-8fad-c62fae5ed1c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41286", "type": "seen", "source": "https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-prodotti-watchguard", "content": "", "creation_timestamp": "2026-05-07T02:36:02.000000Z"}, {"uuid": "e9c616fd-cb24-47cc-bbec-36df2071a28d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41285", "type": "seen", "source": "https://t.me/bdufstecru/3140", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u0435\u043c\u043e\u043d\u043e\u0432 slaacd \u0438 rad \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b OpenBSD \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0437\u0430\u0446\u0438\u043a\u043b\u0438\u0432\u0430\u043d\u0438\u0435\u043c \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u0446\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438\n\nBDU:2026-06323\nCVE-2026-41285\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://github.com/openbsd/src/commit/086c5738bcd3c203bcc08d024fcf983cb409115f\nhttps://www.openbsd.org/errata78.html", "creation_timestamp": "2026-05-08T13:55:50.000000Z"}, {"uuid": "ed3945a3-e7b4-4910-9890-b4bc314f7b8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41281", "type": "seen", "source": "https://jvn.jp/en/jp/JVN24167657", "content": "", "creation_timestamp": "2026-05-12T20:00:15.000000Z"}, {"uuid": "c24072d6-795d-4217-b236-00d2797b23b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41281", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlrs5lypms2v", "content": "CVE-2026-41281 - KDDI CORPORATION Android App \"\u3042\u3093\u3057\u3093\u30d5\u30a3\u30eb\u30bf\u30fc for au\" Cleartext Transmission of Sensitive Information\nCVE ID : CVE-2026-41281\n \n Published : May 14, 2026, 12:16 a.m. | 14\u00a0minutes ago\n \n Description : Android App \"\u3042\u3093\u3057\u3093\u30d5\u30a3\u30eb\u30bf\u30fc for au\" provided by KDDI CORPORATION contai...", "creation_timestamp": "2026-05-14T02:41:06.596102Z"}, {"uuid": "d9af0a21-fa88-4425-adb4-196f57f98145", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41283", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mnfngopmqq2d", "content": "[OSSA-2026-020] OpenStack Mistral: Mistral policy enforcement bypass allows unauthorized public resource creation and arbitrary code execution (CVE-2026-41283)", "creation_timestamp": "2026-06-03T17:37:06.756620Z"}, {"uuid": "1888f049-6e1f-4527-bf06-541094cb7d9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41283", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mngub7hyjf24", "content": "CVE-2026-41283 - Critical RCE in OpenStack Mistral. API exposure allows code exec & credential exfiltration. CVSS 9.9. No patch yet - restrict API access immediately. #CVE #OpenStack #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-41283/", "creation_timestamp": "2026-06-04T05:10:01.573685Z"}, {"uuid": "bdc24a94-23a5-42be-a144-4673f9440a6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41283", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mngtqx3mc725", "content": "\ud83d\udd34 CVE-2026-41283 - Critical (9.9)\n\nOpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-41283/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-04T05:00:56.289674Z"}, {"uuid": "ea064604-39e1-417b-9985-cd52c90966b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41283", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mngx3zokns2v", "content": "CRITICAL: Remote code execution in OpenStack Mistral (20.0.0 \u2013 22.0.0) via exposed API (CVE-2026-41283). No patch yet \u2014 restrict API access now! Full system risk. https://radar.offseq.com/threat/cve-2026-41283-cwe-863-incorrect-authorization-in--186d9351 #OffSeq #OpenStack #Vulnerability", "creation_timestamp": "2026-06-04T06:00:48.895316Z"}, {"uuid": "604a6fc7-c22b-4608-b610-1780f85c84d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41283", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116690311321671815", "content": "\ud83d\udea8 CRITICAL: CVE-2026-41283 in OpenStack Mistral (v20.0.0 \u2013 22.0.0) allows remote code execution via exposed API. No patch yet. Restrict API to trusted users & monitor closely. Full system compromise possible. https://radar.offseq.com/threat/cve-2026-41283-cwe-863-incorrect-authorization-in--186d9351 #OffSeq #OpenStack #Vuln #CloudSec", "creation_timestamp": "2026-06-04T06:00:56.654286Z"}, {"uuid": "8783c9eb-287a-475d-8115-b9d485f178f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41283", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mngzknmbyz2x", "content": "CVE-2026-41283 - OpenStack Mistral Arbitrary Remote Code Execution\nCVE ID : CVE-2026-41283\n \n Published : June 4, 2026, 4:17 a.m. | 2\u00a0hours, 15\u00a0minutes ago\n \n Description : OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There a...", "creation_timestamp": "2026-06-04T06:44:46.446719Z"}]}