Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-18T18:53:21.374600+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/d8db5e0e-8644-4475-b7e6-8c29c2915844/export d8db5e0e-8644-4475-b7e6-8c29c2915844 2026-06-18T18:53:21.717262+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "d8db5e0e-8644-4475-b7e6-8c29c2915844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwydw5s2c2n", "content": "CVE-2026-33590 - Insecure default permissions in Portainer CE\nCVE ID : CVE-2026-33590\n \n Published : May 28, 2026, 8:16 p.m. | 15\u00a0minutes ago\n \n Description : Insecure default settings of Portainer CE grant regular (non-admin) users privileges that allow host filesystem access...", "creation_timestamp": "2026-05-28T21:40:30.883093Z"} 2026-05-28T21:40:30.883093+00:00 https://vulnerability.circl.lu/sighting/16562ade-e5f4-4678-8ff2-ccd4c5d0501b/export 16562ade-e5f4-4678-8ff2-ccd4c5d0501b 2026-06-18T18:53:21.717178+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "16562ade-e5f4-4678-8ff2-ccd4c5d0501b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mo3rd3yvp72n", "content": "CVE-2026-33590: Insecure default settings of Portainer", "creation_timestamp": "2026-06-12T12:43:17.535729Z"} 2026-06-12T12:43:17.535729+00:00 https://vulnerability.circl.lu/sighting/c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974/export c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974 2026-06-18T18:53:21.717072+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moel7rztfz2x", "content": "Portainer versions before 2.38.0 allowed bind mounts and privileged mode on user containers by default, letting an authenticated non-admin escalate to root-equivalent host access (CVE-2026-33590). Fixes are in 2.38.0 STS and 2.39.0 LTS. Should privileged mode ever default to on?\n#containers", "creation_timestamp": "2026-06-16T00:48:01.853589Z"} 2026-06-16T00:48:01.853589+00:00 https://vulnerability.circl.lu/sighting/aa014640-b30e-4367-acb8-3790ff3dc404/export aa014640-b30e-4367-acb8-3790ff3dc404 2026-06-18T18:53:21.714795+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "aa014640-b30e-4367-acb8-3790ff3dc404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moeo4rr6a32c", "content": "The Portainer host-takeover flaw (CVE-2026-33590) hits anyone running a shared instance: any authenticated non-admin from before 2.38.0 could reach root-equivalent host access through default-allowed bind mounts and privileged mode. Upgrade now. Who has non-admin logins on your setup?\n#security", "creation_timestamp": "2026-06-16T01:40:01.950018Z"} 2026-06-16T01:40:01.950018+00:00