<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T08:36:13.462469+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b034bfb7-48f1-4fea-953e-a2198963237e/export</id>
    <title>b034bfb7-48f1-4fea-953e-a2198963237e</title>
    <updated>2026-07-15T08:36:13.492601+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b034bfb7-48f1-4fea-953e-a2198963237e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10054", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mpwl7evzoe2d", "content": "\ud83d\udfe0 CVE-2026-10054 - High (8.8)\n\nIn affected versions of Eclipse Theia (1.8.1 and later), the browser backend exposes privileged t...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-10054/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-05T22:00:55.728905Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b034bfb7-48f1-4fea-953e-a2198963237e/export"/>
    <published>2026-07-05T22:00:55.728905+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b5f4348e-99f7-4bfa-b818-2945c39ec717/export</id>
    <title>b5f4348e-99f7-4bfa-b818-2945c39ec717</title>
    <updated>2026-07-15T08:36:13.500647+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b5f4348e-99f7-4bfa-b818-2945c39ec717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10054", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mprsjpvlng2w", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-10054 \u0432 Eclipse Theia: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/B556CBA8-B15A-4858-8150-5CE72D49BC10", "creation_timestamp": "2026-07-04T00:28:39.278374Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b5f4348e-99f7-4bfa-b818-2945c39ec717/export"/>
    <published>2026-07-04T00:28:39.278374+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6d1433a5-93bb-40ef-88d2-061d4bb52041/export</id>
    <title>6d1433a5-93bb-40ef-88d2-061d4bb52041</title>
    <updated>2026-07-15T08:36:13.500812+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6d1433a5-93bb-40ef-88d2-061d4bb52041", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10055", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mprsilk3ai2m", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-10055 \u0432 Eclipse Theia: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/FE5E6AEB-0297-4879-99FE-002B99307732", "creation_timestamp": "2026-07-04T00:28:01.914759Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6d1433a5-93bb-40ef-88d2-061d4bb52041/export"/>
    <published>2026-07-04T00:28:01.914759+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/689fbcc8-a191-4247-a0f2-9d7665b62ed6/export</id>
    <title>689fbcc8-a191-4247-a0f2-9d7665b62ed6</title>
    <updated>2026-07-15T08:36:13.500930+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "689fbcc8-a191-4247-a0f2-9d7665b62ed6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10055", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mprgw76fnj2k", "content": "\ud83d\udfe0 CVE-2026-10055 - High (8.5)\n\nIn Eclipse Theia since version 1.26.0, the backend /services/request-service RPC accepts an attac...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-10055/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-03T21:00:54.065997Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/689fbcc8-a191-4247-a0f2-9d7665b62ed6/export"/>
    <published>2026-07-03T21:00:54.065997+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fd93f6db-c9d4-470d-b877-f5341e8179c6/export</id>
    <title>fd93f6db-c9d4-470d-b877-f5341e8179c6</title>
    <updated>2026-07-15T08:36:13.501060+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fd93f6db-c9d4-470d-b877-f5341e8179c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10055", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpqipwypqs2t", "content": "SSRF flaw (HIGH, CVE-2026-10055) in Eclipse Theia 1.26.0 lets attackers reach internal endpoints if service is exposed to untrusted users. Restrict access until a fix is available. https://radar.offseq.com/threat/cve-2026-10055-cwe-918-server-side-request-forgery-66116bce3c83a4f6 #OffSeq #SSRF #E...", "creation_timestamp": "2026-07-03T12:00:33.050505Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fd93f6db-c9d4-470d-b877-f5341e8179c6/export"/>
    <published>2026-07-03T12:00:33.050505+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c9f72b48-f972-4b6b-b866-91f9103533a5/export</id>
    <title>c9f72b48-f972-4b6b-b866-91f9103533a5</title>
    <updated>2026-07-15T08:36:13.501168+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c9f72b48-f972-4b6b-b866-91f9103533a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10055", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116855932778535722", "content": "Server-Side Request Forgery (SSRF) in Eclipse Theia 1.26.0 (CVE-2026-10055, HIGH, CVSS 8.5). Attackers with access to the service connection can target internal resources. Restrict access now. https://radar.offseq.com/threat/cve-2026-10055-cwe-918-server-side-request-forgery-66116bce3c83a4f6 #OffSeq #SSRF #EclipseTheia #Cybersecurity", "creation_timestamp": "2026-07-03T12:00:29.708411Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c9f72b48-f972-4b6b-b866-91f9103533a5/export"/>
    <published>2026-07-03T12:00:29.708411+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7ef6a600-a3a3-467a-9125-91de9214296a/export</id>
    <title>7ef6a600-a3a3-467a-9125-91de9214296a</title>
    <updated>2026-07-15T08:36:13.501281+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7ef6a600-a3a3-467a-9125-91de9214296a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10054", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpqgjz7j5523", "content": "CVE-2026-10054 - Eclipse Theia: Insecure WebSocket Terminal Access\nCVE ID : CVE-2026-10054\n \n Published : July 3, 2026, 10:11 a.m. | 1\u00a0hour, 2\u00a0minutes ago\n \n Description : In affected versions of Eclipse Theia (1.8.1 and later), the browser backend exposes privileged terminal ...", "creation_timestamp": "2026-07-03T11:21:24.470387Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7ef6a600-a3a3-467a-9125-91de9214296a/export"/>
    <published>2026-07-03T11:21:24.470387+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/14a4a089-ce35-4c61-8706-869148d9c75c/export</id>
    <title>14a4a089-ce35-4c61-8706-869148d9c75c</title>
    <updated>2026-07-15T08:36:13.501386+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "14a4a089-ce35-4c61-8706-869148d9c75c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10055", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpqgb2rrz72w", "content": "CVE-2026-10055 - Eclipse Theia Request Service Server-Side Request Forgery\nCVE ID : CVE-2026-10055\n \n Published : July 3, 2026, 10:30 a.m. | 42\u00a0minutes ago\n \n Description : In Eclipse Theia since version 1.26.0, the backend /services/request-service RPC accepts an attacker-con...", "creation_timestamp": "2026-07-03T11:16:24.121212Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/14a4a089-ce35-4c61-8706-869148d9c75c/export"/>
    <published>2026-07-03T11:16:24.121212+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/adeca3c6-ff67-44a2-96b6-515b5009a1c5/export</id>
    <title>adeca3c6-ff67-44a2-96b6-515b5009a1c5</title>
    <updated>2026-07-15T08:36:13.501485+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "adeca3c6-ff67-44a2-96b6-515b5009a1c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10056", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn4hshnjrt27", "content": "\ud83d\udfe0 CVE-2026-10056 - High (7.5)\n\nCORS misconfiguration in the REST API of Network Optix Nx Witness VMS before version 6.1.2, when ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-10056/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-31T02:00:24.801361Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/adeca3c6-ff67-44a2-96b6-515b5009a1c5/export"/>
    <published>2026-05-31T02:00:24.801361+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/97757fbc-16d3-4842-a1e5-8cdffe48ec52/export</id>
    <title>97757fbc-16d3-4842-a1e5-8cdffe48ec52</title>
    <updated>2026-07-15T08:36:13.501607+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "97757fbc-16d3-4842-a1e5-8cdffe48ec52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-10058", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-10942-2b78b-2.html", "content": "", "creation_timestamp": "2026-05-29T01:15:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/97757fbc-16d3-4842-a1e5-8cdffe48ec52/export"/>
    <published>2026-05-29T01:15:00+00:00</published>
  </entry>
</feed>
