{"vulnerability": "cve-2026-9496", "sightings": [{"uuid": "74cff300-44d5-42bd-a684-7037801732dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9496", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116639703159350878", "content": "\u26a0\ufe0f HIGH severity: CVE-2026-9496 impacts pacote 11.2.7 in cloud-hosted setups. Crafted spec.rawSpec can trigger DoS via CPU exhaustion. Vendor patches are rolling out \u2014 verify your service is updated. No active exploitation seen. https://radar.offseq.com/threat/cve-2026-9496-denial-of-service-dos-in-pacote-27dd65a5 #OffSeq #DoS #CloudSec", "creation_timestamp": "2026-05-26T07:30:27.985657Z"}, {"uuid": "8f572f1f-4b4f-4f8a-9427-53b2965a1f64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9496", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmqhw45f252v", "content": "HIGH severity DoS vuln in pacote 11.2.7 cloud service (CVE-2026-9496). Crafted input can stall or crash processes. Vendor-managed patch is available \u2014 verify your service is updated. https://radar.offseq.com/threat/cve-2026-9496-denial-of-service-dos-in-pacote-27dd65a5 #OffSeq #CloudSecurity #DoS", "creation_timestamp": "2026-05-26T07:30:29.686011Z"}, {"uuid": "822edc3f-2581-4253-9d42-d02917847321", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9496", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmqn7x5q6f2o", "content": "CVE-2026-9496 - Pacote Denial of Service (DoS) Vulnerability\nCVE ID : CVE-2026-9496\n \n Published : May 26, 2026, 5 a.m. | 1\u00a0hour, 31\u00a0minutes ago\n \n Description : Versions of the package pacote from 11.2.7 are vulnerable to Denial of Service (DoS) via the addGitSha function. An...", "creation_timestamp": "2026-05-26T09:05:28.238145Z"}, {"uuid": "f9d0c181-de43-4aba-8f5c-e8995d9a784c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9496", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mmrdkjchn72e", "content": "pacote 11.2.7\u4ee5\u964d\u3067\u3001addGitSha\u95a2\u6570\u306e\u6b63\u898f\u8868\u73fe\u51e6\u7406\u306b\u8106\u5f31\u6027\u3002\u653b\u6483\u8005\u306f\u4e0d\u6b63\u306aspec.rawSpec\u3067CPU\u3092\u904e\u5270\u6d88\u8cbb\u3055\u305b\u3001\u30d7\u30ed\u30bb\u30b9\u3092\u505c\u6b62\u3055\u305b\u308b\u53ef\u80fd\u6027\u304c\u3042\u308b\u3002\nCVE-2026-9496 CVSS 7.5 | HIGH", "creation_timestamp": "2026-05-26T15:45:05.756577Z"}]}