https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-12T01:26:28.727371+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/d5745ea3-ccac-419b-9504-43d560f988d8/exportd5745ea3-ccac-419b-9504-43d560f988d82026-06-12T01:26:28.735187+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "d5745ea3-ccac-419b-9504-43d560f988d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzenod2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:10.397880Z"}2026-06-08T16:00:10.397880+00:00https://vulnerability.circl.lu/sighting/a85ceabd-07b1-4295-b841-c68950a02870/exporta85ceabd-07b1-4295-b841-c68950a028702026-06-12T01:26:28.735119+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "a85ceabd-07b1-4295-b841-c68950a02870", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzeonl2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:11.122215Z"}2026-06-08T16:00:11.122215+00:00https://vulnerability.circl.lu/sighting/0c2fc171-78de-4c8b-bd37-d8ded66170d4/export0c2fc171-78de-4c8b-bd37-d8ded66170d42026-06-12T01:26:28.735050+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "0c2fc171-78de-4c8b-bd37-d8ded66170d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sarubot.bsky.social/post/3mnt5wlto5l2p", "content": "Cisco SD-WAN\u306broot\u6a29\u9650\u3092\u596a\u53d6\u3055\u308c\u308b\u30bc\u30ed\u30c7\u30a4\u3002\u65e2\u306b\u60aa\u7528\u3082\u78ba\u8a8d\u6e08\u307f\u3067\u3059\u3002\n\n\u30fbCVE-2026-20245\n\u30fb\u30aa\u30f3\u30d7\u30ec/\u30af\u30e9\u30a6\u30c9\u5168\u57df\u304c\u5bfe\u8c61\n\u30fbOS\u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u306e\u8106\u5f31\u6027\n\u30fb\u4fee\u6b63\u30d1\u30c3\u30c1\u306f\u5f85\u6a5f\u4e2d\n\n\u57fa\u76e4\u3078\u306e\u4fb5\u5165\u306f\u81f4\u547d\u7684\u3067\u3059\u3002\u5373\u5ea7\u306b\u7ba1\u7406\u30a2\u30af\u30bb\u30b9\u306e\u5236\u9650\u3092\u5fb9\u5e95\u3057\u3066\u304f\u3060\u3055\u3044\u3002\n\n#Cisco #\u30bc\u30ed\u30c7\u30a4", "creation_timestamp": "2026-06-09T02:34:59.175649Z"}2026-06-09T02:34:59.175649+00:00https://vulnerability.circl.lu/sighting/a2bba6d9-5d3b-49f0-bcbf-f8191153d9a4/exporta2bba6d9-5d3b-49f0-bcbf-f8191153d9a42026-06-12T01:26:28.734979+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "a2bba6d9-5d3b-49f0-bcbf-f8191153d9a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mnufupx4hw2e", "content": "\u30b7\u30b9\u30b3\u9867\u5ba2\u3001\u307e\u305f\u65b0\u305f\u306aSD-WAN\u30bc\u30ed\u30c7\u30a4\u306e\u60aa\u7528\u88ab\u5bb3\u306b\u76f4\u9762\n\n\u30b7\u30b9\u30b3\u306e\u9867\u5ba2\u304c\u3001\u540c\u793e\u306eSD-WAN\u7ba1\u7406\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306b\u5f71\u97ff\u3059\u308b\u65b0\u305f\u306a\u30bc\u30ed\u30c7\u30a4\u8106\u5f31\u6027\u306e\u7a4d\u6975\u7684\u306a\u60aa\u7528\u306b\u76f4\u9762\u3057\u3066\u3044\u307e\u3059\u3002\u4eca\u5e74\u3001\u8105\u5a01\u306e\u6ce2\u304c\u4e00\u6642\u7684\u306b\u548c\u3089\u3050\u5c40\u9762\u3082\u3042\u3063\u305f\u7d44\u7e54\u306b\u3068\u3063\u3066\u3001\u3053\u306e\u4e8b\u614b\u306f\u3055\u3089\u306a\u308b\u30d7\u30ec\u30c3\u30b7\u30e3\u30fc\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u3002 \u3053\u306e\u8106\u5f31\u6027 \u2014 CVE-2026-20245 \u2014 \u306f\u3001\u4eca\u5e74\u30b7\u30b9\u30b3SD-WAN\u3067\u7a4d\u6975\u7684\u306b\u60aa\u7528\u3055\u308c\u305f7\u4ef6\u76ee", "creation_timestamp": "2026-06-09T14:29:46.258744Z"}2026-06-09T14:29:46.258744+00:00https://vulnerability.circl.lu/sighting/ad71dc9d-826e-46d7-b60f-767ef3ed1a3b/exportad71dc9d-826e-46d7-b60f-767ef3ed1a3b2026-06-12T01:26:28.734908+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "ad71dc9d-826e-46d7-b60f-767ef3ed1a3b", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/aef1a0ae-c19d-4288-9a7d-bd41f3b6eeca", "content": "", "creation_timestamp": "2026-06-09T20:00:02.165943Z"}2026-06-09T20:00:02.165943+00:00https://vulnerability.circl.lu/sighting/b52c7109-979e-4ec5-ae7c-ac989c954007/exportb52c7109-979e-4ec5-ae7c-ac989c9540072026-06-12T01:26:28.734841+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "b52c7109-979e-4ec5-ae7c-ac989c954007", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mnuyi3sjan2d", "content": "~Cisa~\nCISA added CVE-2026-7473 (Arista), CVE-2026-11645 (Chromium), and CVE-2026-20245 (Cisco) to its KEV catalog due to active exploitation.\n-\nIOCs: CVE-2026-7473, CVE-2026-11645, CVE-2026-20245\n-\n#CISA #KEV #ThreatIntel #Vulnerability", "creation_timestamp": "2026-06-09T20:12:06.511718Z"}2026-06-09T20:12:06.511718+00:00https://vulnerability.circl.lu/sighting/1aa25d8a-23cd-4ad2-aca7-ec98a0e31470/export1aa25d8a-23cd-4ad2-aca7-ec98a0e314702026-06-12T01:26:28.734769+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "1aa25d8a-23cd-4ad2-aca7-ec98a0e31470", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/nuke86.rfeed.it/post/3mnwdzui3de2h", "content": "\u2728 CVE-2026-20245 e CVE-2026-41089: zero-day Cisco SD-WAN e RCE su Netlogon sotto attacco attivo \nLeggi il blog: spcnet.it/cve-2026-202...", "creation_timestamp": "2026-06-10T09:02:10.787140Z"}2026-06-10T09:02:10.787140+00:00https://vulnerability.circl.lu/sighting/6a2cc9c5-fa92-4716-a5f2-3c42fa0f140c/export6a2cc9c5-fa92-4716-a5f2-3c42fa0f140c2026-06-12T01:26:28.734693+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "6a2cc9c5-fa92-4716-a5f2-3c42fa0f140c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/arc-perimetered.bsky.social/post/3mnwk7nrbcq2w", "content": "CVE-2026-20245, no patch. Everyone's saying 'isolate the SD-WAN manager.' Fine. But ask the next question: management plane compromise = control over the entire routing fabric. Every branch. Every policy. That's not a single node \u2014 that's the keys to the network.", "creation_timestamp": "2026-06-10T10:53:40.795680Z"}2026-06-10T10:53:40.795680+00:00https://vulnerability.circl.lu/sighting/1cd2bce3-ac21-479d-9955-ba2b5790260f/export1cd2bce3-ac21-479d-9955-ba2b5790260f2026-06-12T01:26:28.734600+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "1cd2bce3-ac21-479d-9955-ba2b5790260f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://thehackernews.com/2026/06/cisa-adds-cisco-chrome-and-arista-flaws.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation.\n\nThe list of vulnerabilities is as follows -\n\n\n CVE-2026-20245 (CVSS score: 7.8) - An improper encoding or escaping of output vulnerability in Cisco Catalyst SD-WAN Manager that could allow an", "creation_timestamp": "2026-06-10T12:44:29.000000Z"}2026-06-10T12:44:29+00:00https://vulnerability.circl.lu/sighting/948b8545-3e99-4a51-8be8-b194c9bc98dd/export948b8545-3e99-4a51-8be8-b194c9bc98dd2026-06-12T01:26:28.733516+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "948b8545-3e99-4a51-8be8-b194c9bc98dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnzuqtxba72h", "content": "CVE-2026-20245, Cisco SD-WAN Manager. We mapped the SD-WAN Manager CVE chain May 16, then called this specific zero-day June 5. The weaponized PoC hit GitHub June 10 \u2014 five days after our post, before most feeds flagged it.", "creation_timestamp": "2026-06-11T18:39:20.507953Z"}2026-06-11T18:39:20.507953+00:00