<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-13T12:26:00.556258+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c966fc10-f710-48bf-be18-b67cfde2058a/export</id>
    <title>c966fc10-f710-48bf-be18-b67cfde2058a</title>
    <updated>2026-07-13T12:26:00.572703+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c966fc10-f710-48bf-be18-b67cfde2058a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqhgzjsxjf2a", "content": "\ud83d\udd34 CVE-2026-15378 - Critical (9.3)\n\nA flaw was found in the `guardrails-detectors` component. This vulnerability allows a remote atta...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-15378/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T15:01:19.641665Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c966fc10-f710-48bf-be18-b67cfde2058a/export"/>
    <published>2026-07-12T15:01:19.641665+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/caab6334-c844-462d-a9d6-9c35c85ddde9/export</id>
    <title>caab6334-c844-462d-a9d6-9c35c85ddde9</title>
    <updated>2026-07-13T12:26:00.574642+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "caab6334-c844-462d-a9d6-9c35c85ddde9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcanm67ve26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-15378 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 guardrails-detectors: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/699F6C1C-0548-457E-9174-143AF000CFCD", "creation_timestamp": "2026-07-10T13:23:57.819423Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/caab6334-c844-462d-a9d6-9c35c85ddde9/export"/>
    <published>2026-07-10T13:23:57.819423+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9750f4a1-6673-4ab1-a7a5-480ce6c694d9/export</id>
    <title>9750f4a1-6673-4ab1-a7a5-480ce6c694d9</title>
    <updated>2026-07-13T12:26:00.574741+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9750f4a1-6673-4ab1-a7a5-480ce6c694d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqc3w4yo4x2q", "content": "CVE-2026-15378 - Guardrails-detectors: guardrails-detectors: ssrf and local file read via user-supplied xml schema (xml-with-schema:)\nCVE ID : CVE-2026-15378\n \n Published : July 10, 2026, 10:16 a.m. | 1\u00a0hour, 32\u00a0minutes ago\n \n Description : A flaw was found in the `guardrails-...", "creation_timestamp": "2026-07-10T11:59:15.395883Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9750f4a1-6673-4ab1-a7a5-480ce6c694d9/export"/>
    <published>2026-07-10T11:59:15.395883+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bf15c50d-4f64-484f-9150-025374635ac4/export</id>
    <title>bf15c50d-4f64-484f-9150-025374635ac4</title>
    <updated>2026-07-13T12:26:00.574822+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bf15c50d-4f64-484f-9150-025374635ac4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/cybercod.bsky.social/post/3mqbxmq2tao2u", "content": "Thanks for flagging this! CVE-2026-15378 is definitely a priority for RHOAI users. Always check the official Red Hat Security Advisory (RHSA) for the specific patch and mitigation steps. Stay secure!", "creation_timestamp": "2026-07-10T10:42:24.938003Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bf15c50d-4f64-484f-9150-025374635ac4/export"/>
    <published>2026-07-10T10:42:24.938003+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0c6fe51b-feef-47fe-8785-c172bf5e68fe/export</id>
    <title>0c6fe51b-feef-47fe-8785-c172bf5e68fe</title>
    <updated>2026-07-13T12:26:00.574897+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0c6fe51b-feef-47fe-8785-c172bf5e68fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-15378", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqbwxefz3c2d", "content": "CVE-2026-15378: CRITICAL SSRF in Red Hat OpenShift AI via guardrails-detectors. Remote attackers can access internal data &amp;amp; secrets. Review controls &amp;amp; monitor activity. https://radar.offseq.com/threat/cve-2026-15378-server-side-request-forgery-ssrf-in-6764a44d8dfc74c1 #OffSeq #RedHat #CVE202615378", "creation_timestamp": "2026-07-10T10:30:28.434034Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0c6fe51b-feef-47fe-8785-c172bf5e68fe/export"/>
    <published>2026-07-10T10:30:28.434034+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3c66f7da-cd94-4542-88c0-dd615dad80ec/export</id>
    <title>3c66f7da-cd94-4542-88c0-dd615dad80ec</title>
    <updated>2026-07-13T12:26:00.574969+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3c66f7da-cd94-4542-88c0-dd615dad80ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-15378", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116895214843907721", "content": "Red Hat OpenShift AI hit by CRITICAL SSRF (CVE-2026-15378): guardrails-detectors flaw allows remote attackers to access cloud metadata, K8s API, and secrets via crafted XSD. Monitor for exploitation &amp;amp; restrict egress. https://radar.offseq.com/threat/cve-2026-15378-server-side-request-forgery-ssrf-in-6764a44d8dfc74c1 #OffSeq #CVE202615378 #RedHat #Infosec", "creation_timestamp": "2026-07-10T10:30:26.532349Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3c66f7da-cd94-4542-88c0-dd615dad80ec/export"/>
    <published>2026-07-10T10:30:26.532349+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a0cf0afc-faa2-4294-ac19-7a2c3cc0a4e5/export</id>
    <title>a0cf0afc-faa2-4294-ac19-7a2c3cc0a4e5</title>
    <updated>2026-07-13T12:26:00.575047+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a0cf0afc-faa2-4294-ac19-7a2c3cc0a4e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqbvpddyrq2r", "content": "CVE-2026-15378 - red hat openshift ai (rhoai)\nThe Guardrails-detectors component allows attackers to access sensitive information and read critical data from a system. This is a serious risk because it could expose\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#redhat #CVE #infosec", "creation_timestamp": "2026-07-10T10:08:04.447604Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a0cf0afc-faa2-4294-ac19-7a2c3cc0a4e5/export"/>
    <published>2026-07-10T10:08:04.447604+00:00</published>
  </entry>
</feed>
