https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-29T17:07:31.070549+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/9717e000-323d-4f70-8942-73395252dc5d/export9717e000-323d-4f70-8942-73395252dc5d2026-06-29T17:07:31.090963+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "9717e000-323d-4f70-8942-73395252dc5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9405", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motvij2bon2s", "content": "\ud83d\udea8 ALERT: CVE-2026-9405\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nA security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. This impacts the function setGameSpeedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument enable resu", "creation_timestamp": "2026-06-22T03:01:47.643129Z"}2026-06-22T03:01:47.643129+00:00https://vulnerability.circl.lu/sighting/95deecfd-e2aa-4562-bb91-ec4420fa7b0a/export95deecfd-e2aa-4562-bb91-ec4420fa7b0a2026-06-29T17:07:31.095536+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "95deecfd-e2aa-4562-bb91-ec4420fa7b0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9405", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmnnffdp462o", "content": "Critical OS command injection in Totolink A8000RU (v7.1cu.643_b20200521) lets unauthenticated attackers run remote commands. No patch yet \u2014 restrict web UI access & monitor activity. Details: https://radar.offseq.com/threat/cve-2026-9405-os-command-injection-in-totolink-a80-21e44130 #OffSeq #Rout...", "creation_timestamp": "2026-05-25T04:30:32.299936Z"}2026-05-25T04:30:32.299936+00:00https://vulnerability.circl.lu/sighting/bdcea061-7f76-427b-9016-84ea648f2984/exportbdcea061-7f76-427b-9016-84ea648f29842026-06-29T17:07:31.095671+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "bdcea061-7f76-427b-9016-84ea648f2984", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9405", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116633333205979935", "content": "\ud83d\udea8 CVE-2026-9405: CRITICAL OS command injection in Totolink A8000RU (v7.1cu.643_b20200521). No auth needed \u2014 attackers can run remote commands. No patch yet. Restrict web UI access & monitor devices. https://radar.offseq.com/threat/cve-2026-9405-os-command-injection-in-totolink-a80-21e44130 #OffSeq #CVE20269405 #RouterSecurity #Infosec", "creation_timestamp": "2026-05-25T04:30:29.716341Z"}2026-05-25T04:30:29.716341+00:00