<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-06T13:36:13.216917+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/43c587e0-66eb-451e-bf3b-3571e9373e5b/export</id>
    <title>43c587e0-66eb-451e-bf3b-3571e9373e5b</title>
    <updated>2026-07-06T13:36:13.243174+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "43c587e0-66eb-451e-bf3b-3571e9373e5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mpsf62l6hh2u", "content": "Daily IT Security Digest \u2014 2026-07-04\n### 4. \ud83d\udd34 Cisco Catalyst SD-WAN Manager Zero-Day (CVE-2026-20262) Exploited in the Wild\n\nAttackers are actively exploiting a zero-day vulnerability in Cisco Catalyst SD-WAN Manager that allows users with write access to escalate to root privileges via crafted", "creation_timestamp": "2026-07-04T06:02:08.978055Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/43c587e0-66eb-451e-bf3b-3571e9373e5b/export"/>
    <published>2026-07-04T06:02:08.978055+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/84bee7a0-2512-45ed-95a6-000004872d25/export</id>
    <title>84bee7a0-2512-45ed-95a6-000004872d25</title>
    <updated>2026-07-06T13:36:13.246113+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "84bee7a0-2512-45ed-95a6-000004872d25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mpprg2kc5w2z", "content": "Daily IT Security Digest \u2014 2026-07-03\nCVE-2026-20262, a critical zero-day vulnerability in Cisco Catalyst SD-WAN Manager, is being actively exploited in the wild.", "creation_timestamp": "2026-07-03T05:03:23.183368Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/84bee7a0-2512-45ed-95a6-000004872d25/export"/>
    <published>2026-07-03T05:03:23.183368+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/cfc66d04-e177-4775-96e8-3e6686e47e8c/export</id>
    <title>cfc66d04-e177-4775-96e8-3e6686e47e8c</title>
    <updated>2026-07-06T13:36:13.246419+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "cfc66d04-e177-4775-96e8-3e6686e47e8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mpnayrtdou2b", "content": "Daily IT Security Digest \u2014 2026-07-02\nexploitation has been reported yet. Security researchers strongly recommend immediate browser updates.\nSource: https://infosec.exchange/@offseq/116843546241592221\n\n3. **Cisco Catalyst SD-WAN Manager Zero-Day (CVE-2026-20262) Actively Exploited in the Wild**\nA", "creation_timestamp": "2026-07-02T05:04:18.351435Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/cfc66d04-e177-4775-96e8-3e6686e47e8c/export"/>
    <published>2026-07-02T05:04:18.351435+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c2fa8664-8c74-4953-b97a-2693d5c78026/export</id>
    <title>c2fa8664-8c74-4953-b97a-2693d5c78026</title>
    <updated>2026-07-06T13:36:13.246534+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c2fa8664-8c74-4953-b97a-2693d5c78026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mpkqqp3w6f2c", "content": "Daily IT Security Digest \u2014 2026-07-01\nshould apply the fix immediately.\nSource: https://mastodon.social/@EUVD_Bot/116842733719653397\n\n### 3. Cisco Catalyst SD-WAN Manager Zero-Day Exploited in the Wild\nA zero-day vulnerability (CVE-2026-20262) in Cisco Catalyst SD-WAN Manager is actively being", "creation_timestamp": "2026-07-01T05:08:07.934949Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c2fa8664-8c74-4953-b97a-2693d5c78026/export"/>
    <published>2026-07-01T05:08:07.934949+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7e05ab74-e16c-4386-8299-2223645c8e22/export</id>
    <title>7e05ab74-e16c-4386-8299-2223645c8e22</title>
    <updated>2026-07-06T13:36:13.246644+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7e05ab74-e16c-4386-8299-2223645c8e22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mpia7jwaa42c", "content": "Daily IT Security Digest \u2014 2026-06-30\n[Link](https://infosec.exchange/@DevaOnBreaches/116835927422825909)]\n\n## 3. Active Zero-Day: Cisco Catalyst SD-WAN Manager (CVE-2026-20262)\n\nMandiant confirmed active exploitation of a zero-day in Cisco Catalyst SD-WAN Manager. Attackers with HTTP write access", "creation_timestamp": "2026-06-30T05:06:52.522311Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7e05ab74-e16c-4386-8299-2223645c8e22/export"/>
    <published>2026-06-30T05:06:52.522311+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/63f1bd2d-94d7-41e0-b5a8-9d1c2cd5674d/export</id>
    <title>63f1bd2d-94d7-41e0-b5a8-9d1c2cd5674d</title>
    <updated>2026-07-06T13:36:13.246747+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "63f1bd2d-94d7-41e0-b5a8-9d1c2cd5674d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mpgjqroso32y", "content": "Cisco SD-WAN CVE-2026-20262 hits KEV deadline today with useful hunt artifacts: suspicious WAR upload/deploy logs and JSP POST activity. Forecast: stolen edge creds + authenticated mgmt-plane bugs are the next high-ROI combo.", "creation_timestamp": "2026-06-29T12:52:19.872614Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/63f1bd2d-94d7-41e0-b5a8-9d1c2cd5674d/export"/>
    <published>2026-06-29T12:52:19.872614+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9235bb58-25fc-4a12-97a6-d6ce7d17c5b3/export</id>
    <title>9235bb58-25fc-4a12-97a6-d6ce7d17c5b3</title>
    <updated>2026-07-06T13:36:13.246847+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9235bb58-25fc-4a12-97a6-d6ce7d17c5b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mpgjqroso22y", "content": "Cisco SD-WAN CVE-2026-20262 hits KEV deadline today with useful hunt artifacts: suspicious WAR upload/deploy logs and JSP POST activity. Forecast: stolen edge creds + authenticated mgmt-plane bugs are the next high-ROI combo.", "creation_timestamp": "2026-06-29T12:52:18.998675Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9235bb58-25fc-4a12-97a6-d6ce7d17c5b3/export"/>
    <published>2026-06-29T12:52:18.998675+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5b67ee51-5f9c-43c1-9657-186d65426f1b/export</id>
    <title>5b67ee51-5f9c-43c1-9657-186d65426f1b</title>
    <updated>2026-07-06T13:36:13.246942+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5b67ee51-5f9c-43c1-9657-186d65426f1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mpgjqroros2y", "content": "Cisco SD-WAN CVE-2026-20262 hits KEV deadline today with useful hunt artifacts: suspicious WAR upload/deploy logs and JSP POST activity. Forecast: stolen edge creds + authenticated mgmt-plane bugs are the next high-ROI combo.", "creation_timestamp": "2026-06-29T12:52:18.089155Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5b67ee51-5f9c-43c1-9657-186d65426f1b/export"/>
    <published>2026-06-29T12:52:18.089155+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4c3750f6-8559-4be3-b82a-f9107f805f25/export</id>
    <title>4c3750f6-8559-4be3-b82a-f9107f805f25</title>
    <updated>2026-07-06T13:36:13.247040+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4c3750f6-8559-4be3-b82a-f9107f805f25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mpgjqromsk2y", "content": "Cisco SD-WAN CVE-2026-20262 hits KEV deadline today with useful hunt artifacts: suspicious WAR upload/deploy logs and JSP POST activity. Forecast: stolen edge creds + authenticated mgmt-plane bugs are the next high-ROI combo.", "creation_timestamp": "2026-06-29T12:52:17.203971Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4c3750f6-8559-4be3-b82a-f9107f805f25/export"/>
    <published>2026-06-29T12:52:17.203971+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/beb6ef0a-d3a7-4ef0-a0ee-2ad2fe15d611/export</id>
    <title>beb6ef0a-d3a7-4ef0-a0ee-2ad2fe15d611</title>
    <updated>2026-07-06T13:36:13.247133+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "beb6ef0a-d3a7-4ef0-a0ee-2ad2fe15d611", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20262", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mpfphumkjj2p", "content": "Daily IT Security Digest \u2014 2026-06-29\nmarking one of the biggest Japanese data breaches this year. [Source](https://infosec.exchange/@DevaOnBreaches/116830125383237436)\n\n## 3. Cisco Catalyst SD-WAN Manager Zero-Day Exploited In the Wild (CVE-2026-20262)\nMandiant reported active exploitation of a", "creation_timestamp": "2026-06-29T05:01:58.992259Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/beb6ef0a-d3a7-4ef0-a0ee-2ad2fe15d611/export"/>
    <published>2026-06-29T05:01:58.992259+00:00</published>
  </entry>
</feed>
