<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-04T02:11:15.957787+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8a6876ad-002e-4961-92bd-9286c1a1ead8/export</id>
    <title>8a6876ad-002e-4961-92bd-9286c1a1ead8</title>
    <updated>2026-07-04T02:11:15.984016+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8a6876ad-002e-4961-92bd-9286c1a1ead8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mprkdobjuw2i", "content": "CVE-2026-13368 - fireware os\nA vulnerability in WatchGuard Firebox's Mobile User VPN with IKEv2 allows an attacker to run unauthorized code on affected devices. This affects WatchGuard Firebox devices\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#firewareos #watchguard #CVE #infosec", "creation_timestamp": "2026-07-03T22:02:06.314680Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8a6876ad-002e-4961-92bd-9286c1a1ead8/export"/>
    <published>2026-07-03T22:02:06.314680+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c5976c1b-da46-4d42-a86f-b8471ccb2cef/export</id>
    <title>c5976c1b-da46-4d42-a86f-b8471ccb2cef</title>
    <updated>2026-07-04T02:11:15.989092+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c5976c1b-da46-4d42-a86f-b8471ccb2cef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mprabw6peg2m", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-13368 \u0432 WatchGuard Fireware OS: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0451\u043d\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438\n\n\n\nhttps://kripta.biz/posts/8567BCCC-AFA1-4E47-88BE-C0A96082F410", "creation_timestamp": "2026-07-03T19:02:19.181316Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c5976c1b-da46-4d42-a86f-b8471ccb2cef/export"/>
    <published>2026-07-03T19:02:19.181316+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f20aa89c-6f60-4d39-a95c-3863c226a5b5/export</id>
    <title>f20aa89c-6f60-4d39-a95c-3863c226a5b5</title>
    <updated>2026-07-04T02:11:15.989240+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f20aa89c-6f60-4d39-a95c-3863c226a5b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116854244966360117", "content": "A severe vulnerability was disclosed for WatchGuard Fireware OS (CVE-2026-13368) https://vuldb.com/vuln/376018", "creation_timestamp": "2026-07-03T04:51:15.468240Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f20aa89c-6f60-4d39-a95c-3863c226a5b5/export"/>
    <published>2026-07-03T04:51:15.468240+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b250a58d-bd38-4914-95a9-e5afcb4beb7d/export</id>
    <title>b250a58d-bd38-4914-95a9-e5afcb4beb7d</title>
    <updated>2026-07-04T02:11:15.989349+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b250a58d-bd38-4914-95a9-e5afcb4beb7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mppj4ppzjl24", "content": "CVE-2026-13368 - WatchGuard Firebox Race Condition and Use-After-Free in Mobile VPN with IKEv2 LDAP Authentication\nCVE ID : CVE-2026-13368\n \n Published : July 2, 2026, 11:06 p.m. | 2\u00a0hours, 40\u00a0minutes ago\n \n Description : WatchGuard Fireware OS contains a race condition leadin...", "creation_timestamp": "2026-07-03T02:34:59.756252Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b250a58d-bd38-4914-95a9-e5afcb4beb7d/export"/>
    <published>2026-07-03T02:34:59.756252+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d3cd9159-0512-488c-925e-60bdbfaa96ec/export</id>
    <title>d3cd9159-0512-488c-925e-60bdbfaa96ec</title>
    <updated>2026-07-04T02:11:15.989455+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d3cd9159-0512-488c-925e-60bdbfaa96ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mpphkozy7m2e", "content": "WatchGuard Firebox vulnerabilities include a critical unauthenticated RCE (CVE-2026-13368, CVSS 9.2) plus six more Fireware OS flaws. Patch now.\n\n#WatchGuard #Firebox #CVE202613368 #FirewareOS #CyberSecurity", "creation_timestamp": "2026-07-03T02:07:01.753201Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d3cd9159-0512-488c-925e-60bdbfaa96ec/export"/>
    <published>2026-07-03T02:07:01.753201+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/531fd2b3-9b3e-403b-b9f9-332e72fe13cd/export</id>
    <title>531fd2b3-9b3e-403b-b9f9-332e72fe13cd</title>
    <updated>2026-07-04T02:11:15.989565+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "531fd2b3-9b3e-403b-b9f9-332e72fe13cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-13368", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mppfjee3ij2p", "content": "CRITICAL: WatchGuard Fireware OS (11.0 \u2013 12.12, 2025.1 \u2013 2026.2) has a use-after-free bug (CVE-2026-13368, CVSS 9.2) in LDAP auth for IKEv2 VPN. Disable affected configs or limit exposure until patch. https://radar.offseq.com/threat/cve-2026-13368-cwe-416-use-after-free-in-watchguar-10bc07017e605...", "creation_timestamp": "2026-07-03T01:30:30.812404Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/531fd2b3-9b3e-403b-b9f9-332e72fe13cd/export"/>
    <published>2026-07-03T01:30:30.812404+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0c1eafe9-0a0d-4216-8bc0-2d035f71042b/export</id>
    <title>0c1eafe9-0a0d-4216-8bc0-2d035f71042b</title>
    <updated>2026-07-04T02:11:15.989668+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0c1eafe9-0a0d-4216-8bc0-2d035f71042b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-13368", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116853455394559161", "content": "CVE-2026-13368 (CRITICAL, CVSS 9.2): WatchGuard Fireware OS LDAP auth flaw in Mobile VPN with IKEv2 allows remote code execution (iked process). Disable affected configs or restrict access until patch. https://radar.offseq.com/threat/cve-2026-13368-cwe-416-use-after-free-in-watchguar-10bc07017e60512c #OffSeq #WatchGuard #CVE202613368 #Infosec", "creation_timestamp": "2026-07-03T01:30:27.887733Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0c1eafe9-0a0d-4216-8bc0-2d035f71042b/export"/>
    <published>2026-07-03T01:30:27.887733+00:00</published>
  </entry>
</feed>
