Rj415680 Patched Jun 2026

In the weeks following the public disclosure, security monitoring firms observed active scanning for unpatched instances. The exploit code was published on GitHub (since taken down, but still circulating in private repos). Attackers specifically target publicly exposed API gateways and internal jump servers.