{"vulnerability": "cve-2026-5022", "sightings": [{"uuid": "c1f2b06a-7fc5-406e-ac45-d5a05683b1bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50225", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhimmvm3s2b", "content": "CVE-2026-50225 - Account Creation Exhaustion\nCVE ID : CVE-2026-50225\n \n Published : June 4, 2026, 10:16 a.m. | 16\u00a0minutes ago\n \n Description : The registration path\u00a0/v1/account/register\u00a0provides no bot mitigation mechanisms, allowing malicious automated systems to flood the da...", "creation_timestamp": "2026-06-04T11:14:18.894260Z"}, {"uuid": "67eb9817-8f10-4f37-b78e-1a970e6e0458", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50226", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhj6jvfsw2p", "content": "CVE-2026-50226 - Firmware Theft & IMEI Spoofing via Connect-OTA\nCVE ID : CVE-2026-50226\n \n Published : June 4, 2026, 10:16 a.m. | 16\u00a0minutes ago\n \n Description : Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization credentials for arb...", "creation_timestamp": "2026-06-04T11:24:19.766130Z"}, {"uuid": "60db3b83-0288-4db1-bc6d-41c5d1b370a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50224", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnhjzfg6px2x", "content": "CVE-2026-50224 - Unauthenticated IPv6 WAN Management Exposure\nCVE ID : CVE-2026-50224\n \n Published : June 4, 2026, 10:16 a.m. | 16\u00a0minutes ago\n \n Description : The web administration panel binds broadly to the public IPv6 address space on port\u00a0[::]:8080\u00a0without default firewal...", "creation_timestamp": "2026-06-04T11:39:20.851721Z"}]}