<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T11:25:10.718093+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6ec08d89-ac33-4513-8dd4-e8021f4a6174/export</id>
    <title>6ec08d89-ac33-4513-8dd4-e8021f4a6174</title>
    <updated>2026-07-17T11:25:10.739612+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6ec08d89-ac33-4513-8dd4-e8021f4a6174", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25089", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mqtjkdhw7i2e", "content": "\ud83d\udcf0 CISA Desak Patch Dua Celah Fortinet FortiSandbox yang Aktif Dieksploitasi\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/17/cisa-fortinet-fortisandbox-aktif-dieksploitasi/\n\n#activelyExploited #cisa #cisaKev #commandInjection #cve-2026-25089 #cve-2026-39808 #cybersecurity #for", "creation_timestamp": "2026-07-17T10:18:27.501128Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6ec08d89-ac33-4513-8dd4-e8021f4a6174/export"/>
    <published>2026-07-17T10:18:27.501128+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1779939f-1660-4292-bf0c-75c20c54d805/export</id>
    <title>1779939f-1660-4292-bf0c-75c20c54d805</title>
    <updated>2026-07-17T11:25:10.741260+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1779939f-1660-4292-bf0c-75c20c54d805", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25089", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mqtedtzxt223", "content": "CISA added two actively exploited FortiSandbox flaws, CVE-2026-39808 and CVE-2026-25089, to its KEV catalog. Fortinet says they can enable unauthenticated remote code execution. #Fortinet #FortiSandbox #CISA", "creation_timestamp": "2026-07-17T08:45:21.520202Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1779939f-1660-4292-bf0c-75c20c54d805/export"/>
    <published>2026-07-17T08:45:21.520202+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e23cf6d1-cc65-4b8f-85eb-33ffee5758d1/export</id>
    <title>e23cf6d1-cc65-4b8f-85eb-33ffee5758d1</title>
    <updated>2026-07-17T11:25:10.741384+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e23cf6d1-cc65-4b8f-85eb-33ffee5758d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25089", "type": "seen", "source": "https://bsky.app/profile/blindthoughts.bsky.social/post/3mqt7f7ei3v2e", "content": "CVE-2026-25089: FortiSandbox Unauthenticated RCE Added to CISA KEV \u2014 Patch Now\n\nhttps://blindthoughts.com/fortisandbox-cve-2026-25089-cisa-kev-patch\n\n#vulnerability #fortinet #cisakev #commandinjection #patchnow", "creation_timestamp": "2026-07-17T07:16:37.759488Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e23cf6d1-cc65-4b8f-85eb-33ffee5758d1/export"/>
    <published>2026-07-17T07:16:37.759488+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9824c07a-0d50-458b-9e40-610fdd2f453f/export</id>
    <title>9824c07a-0d50-458b-9e40-610fdd2f453f</title>
    <updated>2026-07-17T11:25:10.741478+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9824c07a-0d50-458b-9e40-610fdd2f453f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25089", "type": "seen", "source": "https://bsky.app/profile/betterhn20.e-work.xyz/post/3mqsnzb6r4u24", "content": "CVE-2026-25089: FortiSandbox unauthenticated command injection added to CISA KEV https://hellorecon.com/blog/cve-2026-25089 (https://news.ycombinator.com/item?id=48940895)", "creation_timestamp": "2026-07-17T02:05:44.133337Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9824c07a-0d50-458b-9e40-610fdd2f453f/export"/>
    <published>2026-07-17T02:05:44.133337+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c0dcbbb1-9d17-41cd-b0d8-8e4bd2a426f2/export</id>
    <title>c0dcbbb1-9d17-41cd-b0d8-8e4bd2a426f2</title>
    <updated>2026-07-17T11:25:10.741572+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c0dcbbb1-9d17-41cd-b0d8-8e4bd2a426f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25089", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mqsmmzq2gx2f", "content": "CISA KEV catalog adds three actively exploited flaws: FortiSandbox CVE-2026-25089, CVE-2026-39808, and SharePoint CVE-2026-58644. Patch by July 19.\n\n#CISA #KEV #Fortinet #FortiSandbox #SharePoint #CVE202658644 #ActivelyExploited #CyberSecurity", "creation_timestamp": "2026-07-17T01:41:00.015732Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c0dcbbb1-9d17-41cd-b0d8-8e4bd2a426f2/export"/>
    <published>2026-07-17T01:41:00.015732+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6590599c-c74e-420a-9bad-17daf1fba67d/export</id>
    <title>6590599c-c74e-420a-9bad-17daf1fba67d</title>
    <updated>2026-07-17T11:25:10.741671+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6590599c-c74e-420a-9bad-17daf1fba67d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25089", "type": "seen", "source": "https://bsky.app/profile/mm-hacker-news.bsky.social/post/3mqscam5au426", "content": "CVE-2026-25089: FortiSandbox unauthenticated command injection added to CISA KEV\nhttps://hellorecon.com/blog/cve-2026-25089", "creation_timestamp": "2026-07-16T22:35:04.964001Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6590599c-c74e-420a-9bad-17daf1fba67d/export"/>
    <published>2026-07-16T22:35:04.964001+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/90ec9501-69b7-4b60-9098-d1910d6ad7da/export</id>
    <title>90ec9501-69b7-4b60-9098-d1910d6ad7da</title>
    <updated>2026-07-17T11:25:10.741758+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "90ec9501-69b7-4b60-9098-d1910d6ad7da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25089", "type": "seen", "source": "https://bsky.app/profile/hnbot.gsuscs.xyz/post/3mqsbz44wyk2q", "content": "CVE-2026-25089: FortiSandbox unauthenticated command injection added to CISA KEV\n\nhttps://hellorecon.com/blog/cve-2026-25089", "creation_timestamp": "2026-07-16T22:30:53.388490Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/90ec9501-69b7-4b60-9098-d1910d6ad7da/export"/>
    <published>2026-07-16T22:30:53.388490+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/60fe6267-a583-4226-8cb9-0fcd0baf3f1d/export</id>
    <title>60fe6267-a583-4226-8cb9-0fcd0baf3f1d</title>
    <updated>2026-07-17T11:25:10.741842+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "60fe6267-a583-4226-8cb9-0fcd0baf3f1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25089", "type": "seen", "source": "https://bsky.app/profile/hn100.bsky.social/post/3mqsbu5al472t", "content": "CVE-2026-25089: FortiSandbox unauthenticated command injection added to CISA KEV\n\nDiscussion", "creation_timestamp": "2026-07-16T22:28:06.878799Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/60fe6267-a583-4226-8cb9-0fcd0baf3f1d/export"/>
    <published>2026-07-16T22:28:06.878799+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f18ca03a-080a-422b-9ece-6cbc8841084d/export</id>
    <title>f18ca03a-080a-422b-9ece-6cbc8841084d</title>
    <updated>2026-07-17T11:25:10.741922+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f18ca03a-080a-422b-9ece-6cbc8841084d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25089", "type": "seen", "source": "https://bsky.app/profile/hnws.bsky.social/post/3mqsbpxvqri2y", "content": "CVE-2026-25089: FortiSandbox unauthenticated command injection added to CISA KEV\ncomments \u00b7 posted on 2026.07.16 at 18:07:30 (c=0, p=4)", "creation_timestamp": "2026-07-16T22:25:46.817782Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f18ca03a-080a-422b-9ece-6cbc8841084d/export"/>
    <published>2026-07-16T22:25:46.817782+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/20c28ac3-07c9-4a64-8a90-b8bc751ef873/export</id>
    <title>20c28ac3-07c9-4a64-8a90-b8bc751ef873</title>
    <updated>2026-07-17T11:25:10.741997+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "20c28ac3-07c9-4a64-8a90-b8bc751ef873", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-25089", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/fortinet-security-advisory-av26-568", "content": "", "creation_timestamp": "2026-07-16T20:15:05.758242Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/20c28ac3-07c9-4a64-8a90-b8bc751ef873/export"/>
    <published>2026-07-16T20:15:05.758242+00:00</published>
  </entry>
</feed>
