<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-04T19:33:28.474167+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/98704505-673d-4bc5-bfcf-db335e6ddd27/export</id>
    <title>98704505-673d-4bc5-bfcf-db335e6ddd27</title>
    <updated>2026-07-04T19:33:28.499705+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "98704505-673d-4bc5-bfcf-db335e6ddd27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-55407", "type": "published-proof-of-concept", "source": "https://www.endorlabs.com/learn/endor-labs-ai-sast-finds-zero-day-cve-2026-55407-buffa", "content": "", "creation_timestamp": "2026-07-03T04:00:57.173306Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/98704505-673d-4bc5-bfcf-db335e6ddd27/export"/>
    <published>2026-07-03T04:00:57.173306+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d51545f2-761e-4362-9485-1c1de37a4a72/export</id>
    <title>d51545f2-761e-4362-9485-1c1de37a4a72</title>
    <updated>2026-07-04T19:33:28.501692+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d51545f2-761e-4362-9485-1c1de37a4a72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55407", "type": "seen", "source": "https://bsky.app/profile/crustytldr.bsky.social/post/3mplonkz3jm24", "content": "\ud83e\udd16 22x memory amp DoS in Anthropic's buffa protobuf decoder (CVE-2026-55407)\n\nEndor Labs' AI SAST engine discovered a zero-day memory-amplification denial of service (DoS) vulnerabi...\n\nhttps://tinyurl.com/253myfef #AINews #MachineLearning #CrustyTLDR", "creation_timestamp": "2026-07-01T14:03:15.108966Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d51545f2-761e-4362-9485-1c1de37a4a72/export"/>
    <published>2026-07-01T14:03:15.108966+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a9dbdfef-280c-47c8-b1f8-fc1af0df53b1/export</id>
    <title>a9dbdfef-280c-47c8-b1f8-fc1af0df53b1</title>
    <updated>2026-07-04T19:33:28.503348+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a9dbdfef-280c-47c8-b1f8-fc1af0df53b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55407", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mplb65dijk2b", "content": "Anthropic\u306ebuffa\u30e9\u30a4\u30d6\u30e9\u30ea\u306bRust\u88fdProtobuf\u30c7\u30b3\u30fc\u30c0\u30fc\u306e\u30bc\u30ed\u30c7\u30a4\u578bDoS\u8106\u5f31\u6027\n\nAnthropic\u304c\u958b\u767a\u3059\u308bRust\u88fdprotobuf\u30e9\u30a4\u30d6\u30e9\u30ea\u300cbuffa\u300d\u306b\u898b\u3064\u304b\u3063\u305f\u30b5\u30fc\u30d3\u30b9\u62d2\u5426(DoS)\u8106\u5f31\u6027\u306f\u3001\u30d5\u30ed\u30f3\u30c6\u30a3\u30a2AI\u7814\u7a76\u6a5f\u95a2\u306b\u3088\u308b\u30e1\u30e2\u30ea\u30bb\u30fc\u30d5\u306a\u30b3\u30fc\u30c9\u3067\u3042\u3063\u3066\u3082\u3001\u30a2\u30ed\u30b1\u30fc\u30b7\u30e7\u30f3\u4e88\u7b97\u3092\u3081\u3050\u308b\u6b20\u9665\u3068\u306f\u7121\u7e01\u3067\u306f\u306a\u3044\u3053\u3068\u3092\u793a\u3057\u3066\u3044\u307e\u3059\u3002 CVE-2026-55407(CVSS 4.0: 6.3\u3001Mode", "creation_timestamp": "2026-07-01T10:01:59.516998Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a9dbdfef-280c-47c8-b1f8-fc1af0df53b1/export"/>
    <published>2026-07-01T10:01:59.516998+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c49ad446-2f43-42fe-82db-8f4fe15f9f7c/export</id>
    <title>c49ad446-2f43-42fe-82db-8f4fe15f9f7c</title>
    <updated>2026-07-04T19:33:28.503492+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c49ad446-2f43-42fe-82db-8f4fe15f9f7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55407", "type": "seen", "source": "https://bsky.app/profile/hn100.bsky.social/post/3mpkn2lmjov2g", "content": "22x memory amp DoS in Anthropic's buffa protobuf decoder (CVE-2026-55407)\n\nDiscussion", "creation_timestamp": "2026-07-01T04:02:06.491082Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c49ad446-2f43-42fe-82db-8f4fe15f9f7c/export"/>
    <published>2026-07-01T04:02:06.491082+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e0febce1-6b09-4b1a-a087-9f82c007596e/export</id>
    <title>e0febce1-6b09-4b1a-a087-9f82c007596e</title>
    <updated>2026-07-04T19:33:28.503606+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e0febce1-6b09-4b1a-a087-9f82c007596e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55409", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mow6uyb2ir23", "content": "CVE-2026-55409 - Filament: Disabled RichEditor field state can be used for XSS\nCVE ID : CVE-2026-55409\n \n Published : June 22, 2026, 9:47 p.m. | 1\u00a0hour, 56\u00a0minutes ago\n \n Description : Filament is a collection of full-stack components for accelerated Laravel development. From ...", "creation_timestamp": "2026-06-23T00:55:09.387068Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e0febce1-6b09-4b1a-a087-9f82c007596e/export"/>
    <published>2026-06-23T00:55:09.387068+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ebc8fc09-63d8-4efb-8b87-130967a69049/export</id>
    <title>ebc8fc09-63d8-4efb-8b87-130967a69049</title>
    <updated>2026-07-04T19:33:28.503708+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ebc8fc09-63d8-4efb-8b87-130967a69049", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5540", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3miqe35ike52i", "content": "", "creation_timestamp": "2026-04-05T08:40:56.887181Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ebc8fc09-63d8-4efb-8b87-130967a69049/export"/>
    <published>2026-04-05T08:40:56.887181+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/989cb288-302d-4b76-83b5-10a0fd27ccf8/export</id>
    <title>989cb288-302d-4b76-83b5-10a0fd27ccf8</title>
    <updated>2026-07-04T19:33:28.503800+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "989cb288-302d-4b76-83b5-10a0fd27ccf8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5540", "type": "published-proof-of-concept", "source": "Telegram/7OZnwgDEu8BHlthRXYLSnk6yrSdsBNIe0Sz4W2lgvEKgNgE", "content": "", "creation_timestamp": "2026-04-05T07:15:34.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/989cb288-302d-4b76-83b5-10a0fd27ccf8/export"/>
    <published>2026-04-05T07:15:34+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0d57ab15-4aa2-4e7a-897c-e49d4474e920/export</id>
    <title>0d57ab15-4aa2-4e7a-897c-e49d4474e920</title>
    <updated>2026-07-04T19:33:28.503892+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0d57ab15-4aa2-4e7a-897c-e49d4474e920", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5540", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3miq6cttatr2e", "content": "", "creation_timestamp": "2026-04-05T06:57:53.598714Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0d57ab15-4aa2-4e7a-897c-e49d4474e920/export"/>
    <published>2026-04-05T06:57:53.598714+00:00</published>
  </entry>
</feed>
