<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-05T09:50:22.158869+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/93ae410e-4872-49e0-8bb8-b0e77c4cd4f9/export</id>
    <title>93ae410e-4872-49e0-8bb8-b0e77c4cd4f9</title>
    <updated>2026-07-05T09:50:22.179038+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "93ae410e-4872-49e0-8bb8-b0e77c4cd4f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41523", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mowndjk4ct2x", "content": "CVE-2026-41523 - Code execution in Vllm via malicious HuggingFace model. CVSS 7.5. Affects Python optimized mode. Fixed in 0.22.0. Update immediately. #CVE #AIsecurity #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-41523/", "creation_timestamp": "2026-06-23T05:13:50.478579Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/93ae410e-4872-49e0-8bb8-b0e77c4cd4f9/export"/>
    <published>2026-06-23T05:13:50.478579+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2a912eb9-abf9-4550-9c87-e7424176b68a/export</id>
    <title>2a912eb9-abf9-4550-9c87-e7424176b68a</title>
    <updated>2026-07-05T09:50:22.181378+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2a912eb9-abf9-4550-9c87-e7424176b68a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41523", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3moweld2smf2l", "content": "vLLM 0.22.0\u672a\u6e80\u3067\u3001Python\u6700\u9069\u5316\u30e2\u30fc\u30c9\u6642\u306b\u60aa\u610f\u3042\u308bHuggingFace\u30e2\u30c7\u30eb\u306b\u3088\u308a\u4efb\u610f\u306e\u30b3\u30fc\u30c9\u5b9f\u884c\u304c\u53ef\u80fd\u3002\nCVE-2026-41523 CVSS 7.5 | HIGH", "creation_timestamp": "2026-06-23T02:37:07.921008Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2a912eb9-abf9-4550-9c87-e7424176b68a/export"/>
    <published>2026-06-23T02:37:07.921008+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7a121f11-9bd8-4d2b-b6d8-e40cf1fcf475/export</id>
    <title>7a121f11-9bd8-4d2b-b6d8-e40cf1fcf475</title>
    <updated>2026-07-05T09:50:22.181543+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7a121f11-9bd8-4d2b-b6d8-e40cf1fcf475", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4152", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mobmq6vfqk2v", "content": "\ud83d\udccc CVE-2026-4152 - GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary ... https://www.cyberhub.blog/cves/CVE-2026-4152", "creation_timestamp": "2026-06-14T20:37:06.665714Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7a121f11-9bd8-4d2b-b6d8-e40cf1fcf475/export"/>
    <published>2026-06-14T20:37:06.665714+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8e374127-86a4-413e-8a1f-2955dc70344f/export</id>
    <title>8e374127-86a4-413e-8a1f-2955dc70344f</title>
    <updated>2026-07-05T09:50:22.181666+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8e374127-86a4-413e-8a1f-2955dc70344f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41522", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mniqbc7ipq26", "content": "CVE-2026-41522 - Iris has an Improper Authorization issue\nCVE ID : CVE-2026-41522\n \n Published : June 4, 2026, 8:16 p.m. | 2\u00a0hours, 13\u00a0minutes ago\n \n Description : Iris is a web collaborative platform that helps incident responders share technical details during investigations...", "creation_timestamp": "2026-06-04T23:03:48.651069Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8e374127-86a4-413e-8a1f-2955dc70344f/export"/>
    <published>2026-06-04T23:03:48.651069+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0110cfe6-cbe0-4573-9412-bcb07ba69ba6/export</id>
    <title>0110cfe6-cbe0-4573-9412-bcb07ba69ba6</title>
    <updated>2026-07-05T09:50:22.181773+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0110cfe6-cbe0-4573-9412-bcb07ba69ba6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41520", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlgzlagegc2w", "content": "\ud83d\udfe0 CVE-2026-41520 - High (7.9)\n\nCilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-41520/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-09T19:54:43.444532Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0110cfe6-cbe0-4573-9412-bcb07ba69ba6/export"/>
    <published>2026-05-09T19:54:43.444532+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a62202c4-6a7f-4551-8401-be97de4b3780/export</id>
    <title>a62202c4-6a7f-4551-8401-be97de4b3780</title>
    <updated>2026-07-05T09:50:22.181887+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a62202c4-6a7f-4551-8401-be97de4b3780", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41524", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mleebyjkhy2q", "content": "CVE-2026-41524 - Ajax30/BraveCMS-2.0: Stored XSS in Page / Article Content\nCVE ID : CVE-2026-41524\n \n Published : May 8, 2026, 3:16 p.m. | 3\u00a0hours, 4\u00a0minutes ago\n \n Description : Brave CMS is an open-source CMS. Prior to commit 6c56603, page and article body content entered th...", "creation_timestamp": "2026-05-08T18:28:24.420283Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a62202c4-6a7f-4551-8401-be97de4b3780/export"/>
    <published>2026-05-08T18:28:24.420283+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1ff68caf-3da0-4087-b842-4586fee97478/export</id>
    <title>1ff68caf-3da0-4087-b842-4586fee97478</title>
    <updated>2026-07-05T09:50:22.181995+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1ff68caf-3da0-4087-b842-4586fee97478", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41524", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlebsllkdo2t", "content": "\ud83d\udfe0 CVE-2026-41524 - High (8.7)\n\nBrave CMS is an open-source CMS. Prior to commit 6c56603, page and article body content entered t...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-41524/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T17:44:00.685858Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1ff68caf-3da0-4087-b842-4586fee97478/export"/>
    <published>2026-05-08T17:44:00.685858+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b56c28c0-19db-4585-a869-c7ad6eb40b62/export</id>
    <title>b56c28c0-19db-4585-a869-c7ad6eb40b62</title>
    <updated>2026-07-05T09:50:22.182106+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b56c28c0-19db-4585-a869-c7ad6eb40b62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41526", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116486078154329890", "content": "", "creation_timestamp": "2026-04-29T04:21:36.011722Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b56c28c0-19db-4585-a869-c7ad6eb40b62/export"/>
    <published>2026-04-29T04:21:36.011722+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4f5b5876-48df-49ac-9e2a-9383782ff673/export</id>
    <title>4f5b5876-48df-49ac-9e2a-9383782ff673</title>
    <updated>2026-07-05T09:50:22.182211+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4f5b5876-48df-49ac-9e2a-9383782ff673", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41525", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116485629903618966", "content": "", "creation_timestamp": "2026-04-29T02:27:36.362369Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4f5b5876-48df-49ac-9e2a-9383782ff673/export"/>
    <published>2026-04-29T02:27:36.362369+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/82a64f0f-a882-4618-84dd-ddb9859140e9/export</id>
    <title>82a64f0f-a882-4618-84dd-ddb9859140e9</title>
    <updated>2026-07-05T09:50:22.182314+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "82a64f0f-a882-4618-84dd-ddb9859140e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4152", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mj76jnksia2e", "content": "", "creation_timestamp": "2026-04-11T06:11:37.328528Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/82a64f0f-a882-4618-84dd-ddb9859140e9/export"/>
    <published>2026-04-11T06:11:37.328528+00:00</published>
  </entry>
</feed>
