<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-06T07:49:24.036138+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/da9cb2da-48df-4bce-b2ba-352c866b1cc4/export</id>
    <title>da9cb2da-48df-4bce-b2ba-352c866b1cc4</title>
    <updated>2026-07-06T07:49:24.061266+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "da9cb2da-48df-4bce-b2ba-352c866b1cc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/termsofsurrender.bsky.social/post/3mpulgomesh2z", "content": "Zero-Day Slaps Android While Institutions Still Filing the Memo\nPANIC 72% | Lag 0.0h | CVE-2025-48595 is a zero-day affecting the Android framework, and GrayZone is reporting it now. That\n#AfterShockIndex\nREAD MORE", "creation_timestamp": "2026-07-05T02:59:40.306632Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/da9cb2da-48df-4bce-b2ba-352c866b1cc4/export"/>
    <published>2026-07-05T02:59:40.306632+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3bcb9316-98f4-4422-8008-bdd754a9c936/export</id>
    <title>3bcb9316-98f4-4422-8008-bdd754a9c936</title>
    <updated>2026-07-06T07:49:24.062513+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3bcb9316-98f4-4422-8008-bdd754a9c936", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/melekmedia.org/post/3mpmcmrib4u2e", "content": "[ICYMI] Satu celah keamanan bisa membuka pintu lebar-lebar bagi malware canggih, seperti pada kasus CVE-2025-48595. Penyerang bisa menarget jurnalis dan aktivis. https://melekmedia.org/artikel/malware-ini-diam-diam-bisa-ambil-alih-android/", "creation_timestamp": "2026-07-01T20:00:42.987877Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3bcb9316-98f4-4422-8008-bdd754a9c936/export"/>
    <published>2026-07-01T20:00:42.987877+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1f626a73-3ce4-438a-b9de-62411816f558/export</id>
    <title>1f626a73-3ce4-438a-b9de-62411816f558</title>
    <updated>2026-07-06T07:49:24.062638+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1f626a73-3ce4-438a-b9de-62411816f558", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/cerberusit.bsky.social/post/3mpjiofb6wb2x", "content": "Google has blessed us with a massive June update to patch 124 vulnerabilities, because why write secure code the first time when you can just patch it later? The star of this exhausting show is CVE-2025-48595, a lovely framework-level zero-day that lets attackers gracefully eleva...\n\nRead full story", "creation_timestamp": "2026-06-30T17:11:01.027624Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1f626a73-3ce4-438a-b9de-62411816f558/export"/>
    <published>2026-06-30T17:11:01.027624+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/28a0a548-0197-4a88-b27b-88ac051f59c0/export</id>
    <title>28a0a548-0197-4a88-b27b-88ac051f59c0</title>
    <updated>2026-07-06T07:49:24.062737+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "28a0a548-0197-4a88-b27b-88ac051f59c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/pidgeonai.bsky.social/post/3mpdzwd74ii2e", "content": "Google's June update fixes 124 #Android vulns, including an actively exploited integer overflow (CVE-2025-48595, CVSS 8.4) and a critical Bluetooth heap overflow. #Technology #News", "creation_timestamp": "2026-06-28T13:03:42.529087Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/28a0a548-0197-4a88-b27b-88ac051f59c0/export"/>
    <published>2026-06-28T13:03:42.529087+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ec1d1328-d8c6-40d1-a77f-647590888bee/export</id>
    <title>ec1d1328-d8c6-40d1-a77f-647590888bee</title>
    <updated>2026-07-06T07:49:24.062824+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ec1d1328-d8c6-40d1-a77f-647590888bee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mp7pjjubq22b", "content": "\u7c73\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u3001Android\u304a\u3088\u3073Linux\u30ab\u30fc\u30cd\u30eb\u306e\u8106\u5f31\u6027\u3092\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\u3057\u305f\u3002\n\n\u7c73\u56fd\u306e\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09 \u306f\u3001Windows Shell\u3068ConnectWise ScreenConnect\u306e\u8106\u5f31\u6027\u3092\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\uff08KEV\uff09\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\u3057\u305f\u3002\n\n\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\u3055\u308c\u305f\u4e0d\u5177\u5408\u306f\u4ee5\u4e0b\u306e\u3068\u304a\u308a\u3067\u3059\u3002\n\nCVE-2022-0492  \uff08CVSS\u30b9\u30b3\u30a27.0\uff09Linux\u30ab\u30fc\u30cd\u30eb\u306e\u8a8d\u8a3c\u30a8\u30e9\u30fc\u306e\u8106\u5f31\u6027\nCVE-2025-48595  Android\u30d5\u30ec\u30fc\u30e0\u30ef\u30fc...", "creation_timestamp": "2026-06-26T19:46:57.581531Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ec1d1328-d8c6-40d1-a77f-647590888bee/export"/>
    <published>2026-06-26T19:46:57.581531+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1bd47c97-f4bb-4884-9c84-bc332de9da47/export</id>
    <title>1bd47c97-f4bb-4884-9c84-bc332de9da47</title>
    <updated>2026-07-06T07:49:24.062919+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1bd47c97-f4bb-4884-9c84-bc332de9da47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mp57ekksj226", "content": "CISA Adds Two Known Exploited Vulnerabilities to Catalog\nRelease Date June 02, 2026\n\nCVE-2022-0492 Linux Kernel Improper Authentication Vulnerability\nCVE-2025-48595 Android Framework Integer Overflow Vulnerability", "creation_timestamp": "2026-06-25T19:52:30.474486Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1bd47c97-f4bb-4884-9c84-bc332de9da47/export"/>
    <published>2026-06-25T19:52:30.474486+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ad6e94bf-9d1b-4a7a-8d74-f725988c32e4/export</id>
    <title>ad6e94bf-9d1b-4a7a-8d74-f725988c32e4</title>
    <updated>2026-07-06T07:49:24.063007+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ad6e94bf-9d1b-4a7a-8d74-f725988c32e4", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/c0fc34aa-10a7-4026-8e69-de4bd9250bc1", "content": "", "creation_timestamp": "2026-06-23T14:03:02.900173Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ad6e94bf-9d1b-4a7a-8d74-f725988c32e4/export"/>
    <published>2026-06-23T14:03:02.900173+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6f93e61e-34a7-446a-b9d8-f624e515f577/export</id>
    <title>6f93e61e-34a7-446a-b9d8-f624e515f577</title>
    <updated>2026-07-06T07:49:24.063094+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6f93e61e-34a7-446a-b9d8-f624e515f577", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mooeaw7qa224", "content": "Every phone running Android 14, 15 or 16 is exposed to a flaw attackers are already using in targeted attacks. Google $GOOGL fixed CVE-2025-48595 in its June update, an Android Framework bug that lets a malicious app escalate to deeper system control. CISA added it to its known-exploited list.", "creation_timestamp": "2026-06-19T22:10:00.926872Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6f93e61e-34a7-446a-b9d8-f624e515f577/export"/>
    <published>2026-06-19T22:10:00.926872+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e7bf7117-f7c3-4675-b73a-7020e0854125/export</id>
    <title>e7bf7117-f7c3-4675-b73a-7020e0854125</title>
    <updated>2026-07-06T07:49:24.063178+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e7bf7117-f7c3-4675-b73a-7020e0854125", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b123814d-2bcc-4efb-914c-6992a29b7f17", "content": "", "creation_timestamp": "2026-06-19T12:45:11.298046Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e7bf7117-f7c3-4675-b73a-7020e0854125/export"/>
    <published>2026-06-19T12:45:11.298046+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c51ff5cb-7184-4395-840b-45c7c52d4795/export</id>
    <title>c51ff5cb-7184-4395-840b-45c7c52d4795</title>
    <updated>2026-07-06T07:49:24.063263+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c51ff5cb-7184-4395-840b-45c7c52d4795", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48595", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3moju3nd54r24", "content": "Anyone running Android 14, 15 or 16 should install the June security update now. Google $GOOGL says CVE-2025-48595, a flaw in the Android framework, is already under targeted attack and lets a malicious app take control of a phone with no user action. It fixes 124 bugs.", "creation_timestamp": "2026-06-18T03:10:05.589726Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c51ff5cb-7184-4395-840b-45c7c52d4795/export"/>
    <published>2026-06-18T03:10:05.589726+00:00</published>
  </entry>
</feed>
