<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-14T12:17:08.943378+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/65564170-7524-4e0a-bbdf-dcf3e31690d5/export</id>
    <title>65564170-7524-4e0a-bbdf-dcf3e31690d5</title>
    <updated>2026-07-14T12:17:08.970350+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "65564170-7524-4e0a-bbdf-dcf3e31690d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20188", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/1879", "content": "CVE-2025-20188: Use of Hard-coded Credentials in Cisco IOS XE, 10.0 rating \ud83d\udd25\ud83d\udd25\ud83d\udd25\n\nDue to hard-coded JWT, Cisco IOS XE instances may be vulnerable to arbitrary file uploads, path traversal, and arbitrary command execution. Catalyst controllers are primarily affected.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/BKkJI\n\ud83d\udc49 Dork: certificate.issuer_dn:\"IOS-Self-Signed-Certificate\"\n\nVendor's advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-file-uplpd-rHZG9UfC", "creation_timestamp": "2026-07-12T00:00:49.704185Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/65564170-7524-4e0a-bbdf-dcf3e31690d5/export"/>
    <published>2026-07-12T00:00:49.704185+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1895a321-2e82-462d-bfe6-af7fd2fcb18a/export</id>
    <title>1895a321-2e82-462d-bfe6-af7fd2fcb18a</title>
    <updated>2026-07-14T12:17:08.974293+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1895a321-2e82-462d-bfe6-af7fd2fcb18a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20188", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/1879", "content": "CVE-2025-20188: Use of Hard-coded Credentials in Cisco IOS XE, 10.0 rating \ud83d\udd25\ud83d\udd25\ud83d\udd25\n\nDue to hard-coded JWT, Cisco IOS XE instances may be vulnerable to arbitrary file uploads, path traversal, and arbitrary command execution. Catalyst controllers are primarily affected.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/BKkJI\n\ud83d\udc49 Dork: certificate.issuer_dn:\"IOS-Self-Signed-Certificate\"\n\nVendor's advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-file-uplpd-rHZG9UfC", "creation_timestamp": "2026-07-11T13:00:05.690736Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1895a321-2e82-462d-bfe6-af7fd2fcb18a/export"/>
    <published>2026-07-11T13:00:05.690736+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/55f468b3-2f00-4015-9117-54f73f2118ad/export</id>
    <title>55f468b3-2f00-4015-9117-54f73f2118ad</title>
    <updated>2026-07-14T12:17:08.974466+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "55f468b3-2f00-4015-9117-54f73f2118ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20188", "type": "seen", "source": "https://t.me/brutsecurity/1879", "content": "CVE-2025-20188: Use of Hard-coded Credentials in Cisco IOS XE, 10.0 rating \ud83d\udd25\ud83d\udd25\ud83d\udd25\n\nDue to hard-coded JWT, Cisco IOS XE instances may be vulnerable to arbitrary file uploads, path traversal, and arbitrary command execution. Catalyst controllers are primarily affected.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/BKkJI\n\ud83d\udc49 Dork: certificate.issuer_dn:\"IOS-Self-Signed-Certificate\"\n\nVendor's advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-file-uplpd-rHZG9UfC", "creation_timestamp": "2026-07-10T00:00:31.919601Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/55f468b3-2f00-4015-9117-54f73f2118ad/export"/>
    <published>2026-07-10T00:00:31.919601+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6a911622-1b53-4e60-b651-500b8c3bb6ba/export</id>
    <title>6a911622-1b53-4e60-b651-500b8c3bb6ba</title>
    <updated>2026-07-14T12:17:08.974617+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6a911622-1b53-4e60-b651-500b8c3bb6ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20188", "type": "seen", "source": "https://t.me/brutsecurity/1879", "content": "CVE-2025-20188: Use of Hard-coded Credentials in Cisco IOS XE, 10.0 rating \ud83d\udd25\ud83d\udd25\ud83d\udd25\n\nDue to hard-coded JWT, Cisco IOS XE instances may be vulnerable to arbitrary file uploads, path traversal, and arbitrary command execution. Catalyst controllers are primarily affected.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/BKkJI\n\ud83d\udc49 Dork: certificate.issuer_dn:\"IOS-Self-Signed-Certificate\"\n\nVendor's advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-file-uplpd-rHZG9UfC", "creation_timestamp": "2026-07-09T03:00:08.402513Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6a911622-1b53-4e60-b651-500b8c3bb6ba/export"/>
    <published>2026-07-09T03:00:08.402513+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d795a4e4-c2ef-4463-9dc4-bf3a4ef1362d/export</id>
    <title>d795a4e4-c2ef-4463-9dc4-bf3a4ef1362d</title>
    <updated>2026-07-14T12:17:08.974746+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d795a4e4-c2ef-4463-9dc4-bf3a4ef1362d", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20188", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/c18bd62c-131b-4e89-8157-e368b8cc8ddc", "content": "", "creation_timestamp": "2026-06-19T12:45:51.085192Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d795a4e4-c2ef-4463-9dc4-bf3a4ef1362d/export"/>
    <published>2026-06-19T12:45:51.085192+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/222602f4-559b-457c-aedd-42851e78cdd8/export</id>
    <title>222602f4-559b-457c-aedd-42851e78cdd8</title>
    <updated>2026-07-14T12:17:08.974881+00:00</updated>
    <author>
      <name>Clément Fouque</name>
      <uri>https://cvepremium.circl.lu/user/clement-fouque</uri>
    </author>
    <content>{"uuid": "222602f4-559b-457c-aedd-42851e78cdd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2025-20188", "type": "exploited", "source": "https://www.enisa.europa.eu/sites/default/files/2025-10/ENISA%20Threat%20Landscape%202025.pdf", "content": "", "creation_timestamp": "2025-10-08T20:09:20.104875Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/222602f4-559b-457c-aedd-42851e78cdd8/export"/>
    <published>2025-10-08T20:09:20.104875+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/728bce58-22df-42fd-876f-80b67e03297a/export</id>
    <title>728bce58-22df-42fd-876f-80b67e03297a</title>
    <updated>2026-07-14T12:17:08.976366+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "728bce58-22df-42fd-876f-80b67e03297a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20188", "type": "seen", "source": "https://bsky.app/profile/u2k25.bsky.social/post/3lxphlj37h22h", "content": "", "creation_timestamp": "2025-08-31T16:02:53.237342Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/728bce58-22df-42fd-876f-80b67e03297a/export"/>
    <published>2025-08-31T16:02:53.237342+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/84d52ad2-c656-4afa-ab92-af63839bc85a/export</id>
    <title>84d52ad2-c656-4afa-ab92-af63839bc85a</title>
    <updated>2026-07-14T12:17:08.976529+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "84d52ad2-c656-4afa-ab92-af63839bc85a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20182", "type": "seen", "source": "https://bsky.app/profile/nadsec.online/post/3lxkkb2po2s2v", "content": "", "creation_timestamp": "2025-08-29T17:07:22.986841Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/84d52ad2-c656-4afa-ab92-af63839bc85a/export"/>
    <published>2025-08-29T17:07:22.986841+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7a163ec1-96bc-4d21-9473-9b2bad80a914/export</id>
    <title>7a163ec1-96bc-4d21-9473-9b2bad80a914</title>
    <updated>2026-07-14T12:17:08.976671+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7a163ec1-96bc-4d21-9473-9b2bad80a914", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20182", "type": "seen", "source": "https://bsky.app/profile/nadsec.online/post/3lxkjwjzhnk2v", "content": "", "creation_timestamp": "2025-08-29T17:01:33.300769Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7a163ec1-96bc-4d21-9473-9b2bad80a914/export"/>
    <published>2025-08-29T17:01:33.300769+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2cedc41e-577a-451b-b404-4430f440133b/export</id>
    <title>2cedc41e-577a-451b-b404-4430f440133b</title>
    <updated>2026-07-14T12:17:08.976793+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2cedc41e-577a-451b-b404-4430f440133b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2018", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2cedc41e-577a-451b-b404-4430f440133b/export"/>
    <published>2025-08-13T13:26:34+00:00</published>
  </entry>
</feed>
