{"vulnerability": "cve-2026-42497", "sightings": [{"uuid": "60cb60e2-f6bf-433a-97a3-20092eaed2c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42497", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmq5u64eak2m", "content": "HIGH severity: CVE-2026-42497 in BINGOS Archive::Tar <3.08 \u26a0\ufe0f lets attackers create hardlinks outside the extraction dir. Avoid untrusted tar files; no patch yet. Stay alert! https://radar.offseq.com/threat/cve-2026-42497-cwe-59-improper-link-resolution-bef-91880c39 #OffSeq #Vulnerability #Infosec", "creation_timestamp": "2026-05-26T04:30:27.754901Z"}, {"uuid": "82e6f1b7-06c9-43bb-9675-b331cf02161e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42497", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmqmnt47gt2b", "content": "CVE-2026-42497: Archive::Tar versions before 3.08 for Perl extract hardlinks to attacker controlled paths outside the extraction directory", "creation_timestamp": "2026-05-26T08:55:19.933305Z"}]}