{"vulnerability": "cve-2026-4578", "sightings": [{"uuid": "4f594b30-69d8-42d0-bb13-8386dd382365", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4578", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhpmbpdulu2e", "content": "", "creation_timestamp": "2026-03-23T08:09:55.505346Z"}, {"uuid": "c5ee6351-65b9-4824-acca-10cd88b90486", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45781", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mluaol6rpr2o", "content": "CVE-2026-45781 - MCP Registry: OCI ownership validation fails open on upstream rate limits, allowing attacker-controlled package claims\nCVE ID : CVE-2026-45781\n \n Published : May 14, 2026, 9:16 p.m. | 2\u00a0hours, 17\u00a0minutes ago\n \n Description : The MCP Registry provides MCP clien...", "creation_timestamp": "2026-05-15T02:06:27.613758Z"}, {"uuid": "f782187e-e135-413a-b167-529f5ea34957", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45783", "type": "published-proof-of-concept", "source": "https://github.com/libp2p/js-libp2p/security/advisories/GHSA-32mq-hpph-xfvr", "content": "", "creation_timestamp": "2026-05-13T02:15:12.000000Z"}, {"uuid": "44be267a-76fb-4f02-9bdb-20f1905e4c2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45781", "type": "published-proof-of-concept", "source": "https://github.com/modelcontextprotocol/registry/security/advisories/GHSA-2v5f-5r6w-p67r", "content": "", "creation_timestamp": "2026-05-12T21:41:52.000000Z"}, {"uuid": "669966b7-6af0-40e4-bee6-70335f4865a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45785", "type": "published-proof-of-concept", "source": "https://github.com/openmcdf/openmcdf/security/advisories/GHSA-5qwm-7pvp-w988", "content": "", "creation_timestamp": "2026-05-14T03:12:49.000000Z"}, {"uuid": "bf132948-42f6-4955-affd-82a1193df0b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45782", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnvjj7zznp2v", "content": "CVE-2026-45782 - Cloud Hypervisor: Use-after-free in virtio-block Async I/O Completion\nCVE ID : CVE-2026-45782\n \n Published : June 10, 2026, 12:16 a.m. | 20\u00a0minutes ago\n \n Description : Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. From version 21.0 to bef...", "creation_timestamp": "2026-06-10T01:07:35.137802Z"}, {"uuid": "0b53a016-c416-4b16-aaec-fa6dbec26c3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45783", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnyacgz5pr2p", "content": "\ud83d\udfe0 CVE-2026-45783 - High (7.5)\n\nlibp2p is a JavaScript Implementation of libp2p networking stack. Prior to version 16.2.6, an una...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45783/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T03:00:44.403672Z"}, {"uuid": "6aa28afe-cbf4-412b-9236-d4009a6c1cf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45787", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mnzgapn7if2g", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-45787\n\nCVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\nelecterm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to 3.9.5, deterministic AES-192-CBC with a fixed zero IV, constant KDF salt, and no MAC leads to confidentiality and integrity failures for syn", "creation_timestamp": "2026-06-11T14:19:46.669205Z"}, {"uuid": "3e4f5dab-8a45-44de-b204-e05e34937a95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45787", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motms3or4v2f", "content": "\ud83d\udea8  ALERT: CVE-2026-45787\n\nCVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\nelecterm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to 3.9.5, deterministic AES-192-CBC with a fixed zero IV, constant KDF salt, and no MAC leads to confidentiality and integrity failures for synced book", "creation_timestamp": "2026-06-22T00:26:10.273129Z"}]}