https://vulnerability.circl.lu/sightings/feed 2026-06-21T16:26:21.921463+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/d928e3bb-c9e3-4756-870f-fd0c1cdcfd6e/export 2026-06-21T16:26:22.118800+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "d928e3bb-c9e3-4756-870f-fd0c1cdcfd6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26413", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3lnf7nhiw7x27", "content": "", "creation_timestamp": "2025-04-22T08:02:11.459095Z"} 2025-04-22T08:02:11.459095+00:00 https://vulnerability.circl.lu/sighting/4e36d96f-e484-4f16-9786-9feec6a2cd92/export 2026-06-21T16:26:22.118722+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "4e36d96f-e484-4f16-9786-9feec6a2cd92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26413", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12810", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-26413\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Improper Input Validation vulnerability in Apache Kvrocks.\n\nThe SETRANGE command didn't check if the `offset` input is a positive integer and use it as an index\nof a string. So it will cause the server to crash due to its index is\u00a0 out of range.\nThis issue affects Apache Kvrocks: through 2.11.1.\n\nUsers are recommended to upgrade to version 2.12.0, which fixes the issue.\n\ud83d\udccf Published: 2025-04-22T07:07:49.985Z\n\ud83d\udccf Modified: 2025-04-22T07:07:49.985Z\n\ud83d\udd17 References:\n1. https://lists.apache.org/thread/388743qrr8yq8qm0go8tls6rf1kog8dw", "creation_timestamp": "2025-04-22T08:03:52.000000Z"} 2025-04-22T08:03:52+00:00 https://vulnerability.circl.lu/sighting/d77237fe-e72c-4587-ae06-1676d0af279c/export 2026-06-21T16:26:22.118637+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "d77237fe-e72c-4587-ae06-1676d0af279c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26413", "type": "seen", "source": "https://t.me/cvedetector/23490", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-26413 - Apache Kvrocks Out-of-Range Index Denial of Service\", \n \"Content\": \"CVE ID : CVE-2025-26413 \nPublished : April 22, 2025, 8:15 a.m. | 1\u00a0hour, 40\u00a0minutes ago \nDescription : Improper Input Validation vulnerability in Apache Kvrocks. \n \nThe SETRANGE command didn't check if the `offset` input is a positive integer and use it as an index \nof a string. So it will cause the server to crash due to its index is\u00a0 out of range. \nThis issue affects Apache Kvrocks: through 2.11.1. \n \nUsers are recommended to upgrade to version 2.12.0, which fixes the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"22 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T12:33:01.000000Z"} 2025-04-22T12:33:01+00:00 https://vulnerability.circl.lu/sighting/505b0b53-881b-41a0-93a5-29d997d79710/export 2026-06-21T16:26:22.118548+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "505b0b53-881b-41a0-93a5-29d997d79710", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26412", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18063", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-26412\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The SIMCom SIM7600G modem supports an undocumented AT command, which allows an attacker to execute system commands with root permission on the modem. An attacker needs either physical access or remote shell access to a device that interacts directly with the modem via AT commands.\n\ud83d\udccf Published: 2025-06-11T08:21:31.679Z\n\ud83d\udccf Modified: 2025-06-11T08:21:31.679Z\n\ud83d\udd17 References:\n1. https://r.sec-consult.com/simcom", "creation_timestamp": "2025-06-11T09:33:58.000000Z"} 2025-06-11T09:33:58+00:00 https://vulnerability.circl.lu/sighting/905515be-84e9-4d4c-b2cf-c84b65d91c4f/export 2026-06-21T16:26:22.118472+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "905515be-84e9-4d4c-b2cf-c84b65d91c4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26412", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrdbdbae6h2k", "content": "", "creation_timestamp": "2025-06-11T11:07:44.158828Z"} 2025-06-11T11:07:44.158828+00:00 https://vulnerability.circl.lu/sighting/539a5b65-ba75-4c60-ada2-9b2c636c0c24/export 2026-06-21T16:26:22.118389+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "539a5b65-ba75-4c60-ada2-9b2c636c0c24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26412", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114664800663722475", "content": "", "creation_timestamp": "2025-06-11T12:46:46.883972Z"} 2025-06-11T12:46:46.883972+00:00 https://vulnerability.circl.lu/sighting/8839220a-0b29-4d35-9686-cc131898e188/export 2026-06-21T16:26:22.118293+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "8839220a-0b29-4d35-9686-cc131898e188", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26416", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3lxvdc4lspz2u", "content": "", "creation_timestamp": "2025-09-03T00:02:00.018062Z"} 2025-09-03T00:02:00.018062+00:00 https://vulnerability.circl.lu/sighting/294254aa-d640-4015-bdec-2ee6c29c557b/export 2026-06-21T16:26:22.116891+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "294254aa-d640-4015-bdec-2ee6c29c557b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26416", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lxvnt3rvxt2j", "content": "", "creation_timestamp": "2025-09-03T03:10:25.084595Z"} 2025-09-03T03:10:25.084595+00:00 https://vulnerability.circl.lu/sighting/8f9ca0b8-9473-4596-a092-e94535b42a3f/export 2026-06-21T16:26:22.116784+00:00 Joseph Lee https://cvepremium.circl.lu/user/syspect {"uuid": "8f9ca0b8-9473-4596-a092-e94535b42a3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-26418", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/android-multiple-vulnerabilities_20260602", "content": "", "creation_timestamp": "2026-06-01T18:00:00.000000Z"} 2026-06-01T18:00:00+00:00 https://vulnerability.circl.lu/sighting/3613bc4a-5a2b-498a-93b3-28946c8c9e13/export 2026-06-21T16:26:22.115176+00:00 Joseph Lee https://cvepremium.circl.lu/user/syspect {"uuid": "3613bc4a-5a2b-498a-93b3-28946c8c9e13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-26418", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/samsung-products-multiple-vulnerabilities_20260603", "content": "", "creation_timestamp": "2026-06-02T20:00:00.000000Z"} 2026-06-02T20:00:00+00:00