<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-13T16:45:02.814441+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/75b3fe0a-cc41-4071-964a-aa94c3adf59d/export</id>
    <title>75b3fe0a-cc41-4071-964a-aa94c3adf59d</title>
    <updated>2026-07-13T16:45:02.840534+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "75b3fe0a-cc41-4071-964a-aa94c3adf59d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3mqjy5rqy5v27", "content": "[RSS] Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639)\n\n\n blog.amberwolf.com -&amp;gt; \n\n\nOriginal-&amp;gt;", "creation_timestamp": "2026-07-13T15:13:14.796738Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/75b3fe0a-cc41-4071-964a-aa94c3adf59d/export"/>
    <published>2026-07-13T15:13:14.796738+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/42bacecc-93cf-4ad0-a550-9fd3ffd43ecd/export</id>
    <title>42bacecc-93cf-4ad0-a550-9fd3ffd43ecd</title>
    <updated>2026-07-13T16:45:02.843492+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "42bacecc-93cf-4ad0-a550-9fd3ffd43ecd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3mqjgdvgbpv2c", "content": "Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639)", "creation_timestamp": "2026-07-13T09:54:32.708919Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/42bacecc-93cf-4ad0-a550-9fd3ffd43ecd/export"/>
    <published>2026-07-13T09:54:32.708919+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b2e5c1c1-4616-4c50-9de1-dff71a18e84c/export</id>
    <title>b2e5c1c1-4616-4c50-9de1-dff71a18e84c</title>
    <updated>2026-07-13T16:45:02.843673+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b2e5c1c1-4616-4c50-9de1-dff71a18e84c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3mqjfpii7dr2y", "content": "Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639)", "creation_timestamp": "2026-07-13T09:43:08.324237Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b2e5c1c1-4616-4c50-9de1-dff71a18e84c/export"/>
    <published>2026-07-13T09:43:08.324237+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d6ba2f05-438a-4629-85b5-8b3bf969a956/export</id>
    <title>d6ba2f05-438a-4629-85b5-8b3bf969a956</title>
    <updated>2026-07-13T16:45:02.843778+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d6ba2f05-438a-4629-85b5-8b3bf969a956", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mqhdpgrkyp25", "content": "\ud83d\udd12 Critical Dell BIOS flaw (CVE-2026-40639) allows instant recovery of admin passwords from SPI flash due to weak XOR encryption. Affects numerous Latitude, XPS &amp;amp; Wyse models. Physical access is all that's needed. Patch now! #Dell #BIOS #Vulnerabilit...\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-12T14:01:59.692874Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d6ba2f05-438a-4629-85b5-8b3bf969a956/export"/>
    <published>2026-07-12T14:01:59.692874+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0/export</id>
    <title>2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0</title>
    <updated>2026-07-13T16:45:02.843882+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40639", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116907368666921137", "content": "\ud83d\udcf0 Critical Dell BIOS Flaw Allows Plaintext Password Recovery in Milliseconds\n\ud83d\udd12 Critical Dell BIOS flaw (CVE-2026-40639) allows instant recovery of admin passwords from SPI flash due to weak XOR encryption. Affects numerous Latitude, XPS &amp;amp; Wyse models. Physical access is all that's needed. Patch now! #Dell #BIOS #Vulnerabilit...\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/dell-bios-flaw-cve-2026-40639-instant-password-recovery/?utm_source=mastodon\u2026", "creation_timestamp": "2026-07-12T14:01:19.301454Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0/export"/>
    <published>2026-07-12T14:01:19.301454+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d86e64fa-5cde-489d-adff-500d43689482/export</id>
    <title>d86e64fa-5cde-489d-adff-500d43689482</title>
    <updated>2026-07-13T16:45:02.843986+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d86e64fa-5cde-489d-adff-500d43689482", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mqf7fj763y2u", "content": "Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639)", "creation_timestamp": "2026-07-11T17:39:31.952664Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d86e64fa-5cde-489d-adff-500d43689482/export"/>
    <published>2026-07-11T17:39:31.952664+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/333a6b07-3a88-4d88-82b3-3358f7427a78/export</id>
    <title>333a6b07-3a88-4d88-82b3-3358f7427a78</title>
    <updated>2026-07-13T16:45:02.844084+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "333a6b07-3a88-4d88-82b3-3358f7427a78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mqdzkirt2z2k", "content": "Dell\u306eBIOS\u6b20\u9665\u3001SPI\u30d5\u30e9\u30c3\u30b7\u30e5\u304b\u3089\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u5fa9\u5143\u53ef\u80fd\u306b\n\nDell\u304cBIOS\u7ba1\u7406\u8005\u30d1\u30b9\u30ef\u30fc\u30c9\u304a\u3088\u3073\u30e6\u30fc\u30b6\u30fc\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u4fdd\u5b58\u3059\u308b\u65b9\u5f0f\u306b\u95a2\u3057\u3066\u3001\u65b0\u305f\u306b\u91cd\u5927\u306a\u6b20\u9665\u304c\u516c\u8868\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u308c\u306b\u3088\u308a\u3001\u30d5\u30e9\u30c3\u30b7\u30e5\u30c0\u30f3\u30d7\u304b\u3089\u308f\u305a\u304b\u6570\u30df\u30ea\u79d2\u3067\u5e73\u6587\u306e\u8a8d\u8a3c\u60c5\u5831\u3092\u5b8c\u5168\u306b\u5fa9\u5143\u3067\u304d\u3066\u3057\u307e\u3044\u307e\u3059\u3002 CVE-2026-40639(DSA-2026-197)\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u308b\u3053\u306e\u554f\u984c\u306f\u3001\u6697\u53f7\u5b66\u7684\u30cf\u30c3\u30b7\u30e5\u3067\u306f", "creation_timestamp": "2026-07-11T06:22:17.452252Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/333a6b07-3a88-4d88-82b3-3358f7427a78/export"/>
    <published>2026-07-11T06:22:17.452252+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb/export</id>
    <title>00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb</title>
    <updated>2026-07-13T16:45:02.844182+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40630", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpcmtzjxoj2y", "content": "\ud83d\udccc CVE-2026-40630 - A vulnerability in\u00a0\nSenseLive \n\nX3050\u2019s web management interface allows unauthorized access to certain configuration endpoints due to improper access ... https://www.cyberhub.blog/cves/CVE-2026-40630", "creation_timestamp": "2026-06-27T23:37:06.529604Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb/export"/>
    <published>2026-06-27T23:37:06.529604+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0ba17255-6766-4c6d-9a87-71dc4281bce4/export</id>
    <title>0ba17255-6766-4c6d-9a87-71dc4281bce4</title>
    <updated>2026-07-13T16:45:02.844280+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "0ba17255-6766-4c6d-9a87-71dc4281bce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40631", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/f5-products-multiple-vulnerabilities_20260515", "content": "", "creation_timestamp": "2026-05-14T18:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0ba17255-6766-4c6d-9a87-71dc4281bce4/export"/>
    <published>2026-05-14T18:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1cc5c7a0-f4d3-4395-b9fb-4f470fa26075/export</id>
    <title>1cc5c7a0-f4d3-4395-b9fb-4f470fa26075</title>
    <updated>2026-07-13T16:45:02.845336+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1cc5c7a0-f4d3-4395-b9fb-4f470fa26075", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40638", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlo4ohqfcm2k", "content": "CVE-2026-40638 - Dell PowerScale InsightIQ Execution of Code with Unnecessary Privileges\nCVE ID : CVE-2026-40638\n \n Published : May 12, 2026, 2:17 p.m. | 13\u00a0minutes ago\n \n Description : Dell PowerScale InsightIQ, versions 5.0.0 through 6.2.0, contains an execution with unneces...", "creation_timestamp": "2026-05-12T15:39:00.031856Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1cc5c7a0-f4d3-4395-b9fb-4f470fa26075/export"/>
    <published>2026-05-12T15:39:00.031856+00:00</published>
  </entry>
</feed>
