<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T18:02:15.960016+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b5de39b2-b724-4f24-8682-65303185dfb7/export</id>
    <title>b5de39b2-b724-4f24-8682-65303185dfb7</title>
    <updated>2026-07-15T18:02:15.991905+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "b5de39b2-b724-4f24-8682-65303185dfb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://www.acn.gov.it/portale/w/vulnerabilita-in-beyondtrust-3", "content": "", "creation_timestamp": "2026-07-14T08:45:06.073856Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b5de39b2-b724-4f24-8682-65303185dfb7/export"/>
    <published>2026-07-14T08:45:06.073856+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ea7992c2-3152-406b-ae9a-c1d94e8296a1/export</id>
    <title>ea7992c2-3152-406b-ae9a-c1d94e8296a1</title>
    <updated>2026-07-15T18:02:15.994860+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "ea7992c2-3152-406b-ae9a-c1d94e8296a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://www.acn.gov.it/portale/w/vulnerabilita-in-beyondtrust-3", "content": "", "creation_timestamp": "2026-07-14T08:45:03.749197Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ea7992c2-3152-406b-ae9a-c1d94e8296a1/export"/>
    <published>2026-07-14T08:45:03.749197+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a177e07a-cbcd-42c9-95fd-809e106d5f65/export</id>
    <title>a177e07a-cbcd-42c9-95fd-809e106d5f65</title>
    <updated>2026-07-15T18:02:15.994995+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a177e07a-cbcd-42c9-95fd-809e106d5f65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mqhxq7x6ea2p", "content": "BeyondTrust Remote Support and PRA patched critical auth bypass flaws (CVE-2026-40138, CVSS 9.2). Apply updates now and verify affected hosts are upgraded. #Cybersecurity #Vulnerability #CloudSecurity\n\nSource: https://thehackernews.com/2026/07/beyondtrust-patches-critical-auth.html", "creation_timestamp": "2026-07-12T20:00:21.091420Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a177e07a-cbcd-42c9-95fd-809e106d5f65/export"/>
    <published>2026-07-12T20:00:21.091420+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/65e6186f-c07b-4db8-a6fc-cd161c25dc50/export</id>
    <title>65e6186f-c07b-4db8-a6fc-cd161c25dc50</title>
    <updated>2026-07-15T18:02:15.996902+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "65e6186f-c07b-4db8-a6fc-cd161c25dc50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mqgafetowu26", "content": "BeyondTrust patches critical flaws in RS and PRA products (CVE-2026-40138, CVSS 9.2). Exploits might let attackers take control. Update now to secure your devices.", "creation_timestamp": "2026-07-12T03:30:00.782320Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/65e6186f-c07b-4db8-a6fc-cd161c25dc50/export"/>
    <published>2026-07-12T03:30:00.782320+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5b913b38-8c06-4b21-9d18-9b1effa9f368/export</id>
    <title>5b913b38-8c06-4b21-9d18-9b1effa9f368</title>
    <updated>2026-07-15T18:02:15.997038+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5b913b38-8c06-4b21-9d18-9b1effa9f368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mq5t7popij2g", "content": "Self-hosted BeyondTrust appliances are exposed until admins patch: two CVSS 9.2 pre-auth flaws, CVE-2026-40138 and CVE-2026-40139, let unauthenticated attackers reach privileged accounts in Remote Support and Privileged Remote Access. Cloud was patched in April. Per The Hacker News.", "creation_timestamp": "2026-07-08T19:12:54.766649Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5b913b38-8c06-4b21-9d18-9b1effa9f368/export"/>
    <published>2026-07-08T19:12:54.766649+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f8e5e648-c950-487d-90d6-be1a7a6e7f81/export</id>
    <title>f8e5e648-c950-487d-90d6-be1a7a6e7f81</title>
    <updated>2026-07-15T18:02:15.997148+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f8e5e648-c950-487d-90d6-be1a7a6e7f81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mq5t7popij2g", "content": "Self-hosted BeyondTrust appliances are exposed until admins patch: two CVSS 9.2 pre-auth flaws, CVE-2026-40138 and CVE-2026-40139, let unauthenticated attackers reach privileged accounts in Remote Support and Privileged Remote Access. Cloud was patched in April. Per The Hacker News.", "creation_timestamp": "2026-07-08T19:12:54.723329Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f8e5e648-c950-487d-90d6-be1a7a6e7f81/export"/>
    <published>2026-07-08T19:12:54.723329+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e9154790-9bc4-40e5-b9b8-34815ef37678/export</id>
    <title>e9154790-9bc4-40e5-b9b8-34815ef37678</title>
    <updated>2026-07-15T18:02:15.997244+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e9154790-9bc4-40e5-b9b8-34815ef37678", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mq5gzfgrhn2w", "content": "\u26a0\ufe0f PATCH NOW\n\nBeyondTrust patched two pre-auth bypasses (CVSS 9.2) in its Remote Support and Privileged Remote Access appliances.\n\nNo exploit yet, but its products were reportedly abused in the 2024 US Treasury breach.\n\nFix: upgrade to 25.3.3. (CVE-2026-40138/40139)", "creation_timestamp": "2026-07-08T15:34:38.886857Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e9154790-9bc4-40e5-b9b8-34815ef37678/export"/>
    <published>2026-07-08T15:34:38.886857+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ba7c1b38-1c67-4a60-81cc-5fdc29771001/export</id>
    <title>ba7c1b38-1c67-4a60-81cc-5fdc29771001</title>
    <updated>2026-07-15T18:02:15.997346+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ba7c1b38-1c67-4a60-81cc-5fdc29771001", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mq5ept3hka2f", "content": "\ud83d\udea8 URGENT: BeyondTrust patches two CRITICAL auth bypass flaws (CVE-2026-40138, CVE-2026-40139) in its Remote Support &amp;amp; Privileged Remote Access tools. Unauthenticated remote access is possible. Patch NOW. #Vulnerability #PAM #CyberSecurity\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-08T14:53:28.862202Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ba7c1b38-1c67-4a60-81cc-5fdc29771001/export"/>
    <published>2026-07-08T14:53:28.862202+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c5e3edb9-093f-4edd-9ab6-020ea30d0402/export</id>
    <title>c5e3edb9-093f-4edd-9ab6-020ea30d0402</title>
    <updated>2026-07-15T18:02:15.997443+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c5e3edb9-093f-4edd-9ab6-020ea30d0402", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mq5ept3hka2f", "content": "\ud83d\udea8 URGENT: BeyondTrust patches two CRITICAL auth bypass flaws (CVE-2026-40138, CVE-2026-40139) in its Remote Support &amp;amp; Privileged Remote Access tools. Unauthenticated remote access is possible. Patch NOW. #Vulnerability #PAM #CyberSecurity\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-08T14:53:28.811732Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c5e3edb9-093f-4edd-9ab6-020ea30d0402/export"/>
    <published>2026-07-08T14:53:28.811732+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/46bb67d8-0eef-4e52-a39b-e4d85c12564e/export</id>
    <title>46bb67d8-0eef-4e52-a39b-e4d85c12564e</title>
    <updated>2026-07-15T18:02:15.997537+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "46bb67d8-0eef-4e52-a39b-e4d85c12564e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116884921728737765", "content": "\ud83d\udcf0 BeyondTrust Patches Critical Flaws in Remote Support and Privileged Access Tools\n\ud83d\udea8 URGENT: BeyondTrust patches two CRITICAL auth bypass flaws (CVE-2026-40138, CVE-2026-40139) in its Remote Support &amp;amp; Privileged Remote Access tools. Unauthenticated remote access is possible. Patch NOW. #Vulnerability #PAM #CyberSecurity\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/beyondtrust-patches-critical-authentication-bypass-flaws-in-remote-access-tools/?utm\u2026", "creation_timestamp": "2026-07-08T14:52:49.321047Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/46bb67d8-0eef-4e52-a39b-e4d85c12564e/export"/>
    <published>2026-07-08T14:52:49.321047+00:00</published>
  </entry>
</feed>
