{"vulnerability": "cve-2026-4364", "sightings": [{"uuid": "ec932e27-5d3a-4322-bfd7-66ace589e5aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4364", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mihr4eta2w22", "content": "", "creation_timestamp": "2026-04-01T22:40:19.042564Z"}, {"uuid": "411409d7-db9c-4146-a4bb-09282fa80fba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43646", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml76yfunya2r", "content": "\ud83d\udfe0 CVE-2026-43646 - High (7.5)\n\nExposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Wicket.\n\nThis ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-43646/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-06T17:10:18.749409Z"}, {"uuid": "2a82ce95-6e5c-48df-ad6f-8da2977db9fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43646", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ml5mkh2nvi25", "content": "CVE-2026-43646: Apache Wicket: crafted URLs can bypass PackageResourceGuard", "creation_timestamp": "2026-05-06T02:07:40.148381Z"}, {"uuid": "c2e196ab-f577-4342-bde6-9b130179e957", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43640", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mlygtcyt2i26", "content": "\ud83d\udccc CVE-2026-43640 - Bitwarden Server prior to v2026.4.1 does not require master-password re-authentication when retrieving or rotating an organization's SCIM API key, all... https://www.cyberhub.blog/cves/CVE-2026-43640", "creation_timestamp": "2026-05-16T18:07:08.982098Z"}, {"uuid": "81336988-01c5-4ec9-ab60-95504fb30d73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43640", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mllv3ug34r2k", "content": "\ud83d\udfe0 CVE-2026-43640 - High (8.1)\n\nBitwarden Server prior to v2026.4.1 does not require master-password re-authentication when retri...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-43640/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T18:17:51.432800Z"}, {"uuid": "7ab3025f-6ec7-44b2-8d17-925b72df42e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43640", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mllv3ug34r2k", "content": "\ud83d\udfe0 CVE-2026-43640 - High (8.1)\n\nBitwarden Server prior to v2026.4.1 does not require master-password re-authentication when retri...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-43640/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T18:17:51.444383Z"}]}