{"vulnerability": "cve-2026-50623", "sightings": [{"uuid": "cb1b9de8-c9bc-49be-87ed-14878370479a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50623", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mnzqep6lp32e", "content": "CVE-2026-50623: Apache CXF: Authentication Bypass in OAuth2 TokenIntrospectionService", "creation_timestamp": "2026-06-11T17:20:58.015419Z"}, {"uuid": "f892ea31-3a8e-411c-9654-f2add2b4cc62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50623", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3mod4qikzm724", "content": "Apache CXF published a cluster of 2026 advisories, more than a dozen CVEs in its OAuth2 and JAX-WS code paths. The headline is CVE-2026-50623, an authentication bypass in the OAuth2 TokenIntrospectionService. Running CXF anywhere in your stack?\n#security", "creation_timestamp": "2026-06-15T10:56:16.278344Z"}]}