<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-03T10:25:55.221245+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b9da634e-3955-465a-8636-3f9be63a9fe1/export</id>
    <title>b9da634e-3955-465a-8636-3f9be63a9fe1</title>
    <updated>2026-07-03T10:25:55.246171+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b9da634e-3955-465a-8636-3f9be63a9fe1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47645", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpln6tfy6c2l", "content": "\ud83d\udccc CVE-2026-47645 - Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker to elevate privileges ove... https://www.cyberhub.blog/cves/CVE-2026-47645", "creation_timestamp": "2026-07-01T13:37:07.083470Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b9da634e-3955-465a-8636-3f9be63a9fe1/export"/>
    <published>2026-07-01T13:37:07.083470+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1c8e639b-fb4a-44c1-a2ca-25dc2b7b6c0f/export</id>
    <title>1c8e639b-fb4a-44c1-a2ca-25dc2b7b6c0f</title>
    <updated>2026-07-03T10:25:55.249048+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1c8e639b-fb4a-44c1-a2ca-25dc2b7b6c0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47645", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3mp7x6mzss72m", "content": "\ud83d\udc1b VULNERABILITIES CVE Notify: \ud83d\udea8 [CVE-2026-47645](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47645)\nUrl redire...\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47645 #Vulnerability #CVE #ZeroDay", "creation_timestamp": "2026-06-26T22:04:00.642867Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1c8e639b-fb4a-44c1-a2ca-25dc2b7b6c0f/export"/>
    <published>2026-06-26T22:04:00.642867+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/42525c86-e09f-4e7b-8308-97467e1d9c07/export</id>
    <title>42525c86-e09f-4e7b-8308-97467e1d9c07</title>
    <updated>2026-07-03T10:25:55.249216+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "42525c86-e09f-4e7b-8308-97467e1d9c07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47647", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mp5ucfnlt32h", "content": "\ud83d\udccc CVE-2026-47647 - Improper access control in Microsoft Dynamics 365 allows an authorized attacker to elevate privileges over a network. https://www.cyberhub.blog/cves/CVE-2026-47647", "creation_timestamp": "2026-06-26T02:07:08.800303Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/42525c86-e09f-4e7b-8308-97467e1d9c07/export"/>
    <published>2026-06-26T02:07:08.800303+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/351a3765-d84c-40bf-839e-d1ac7290783b/export</id>
    <title>351a3765-d84c-40bf-839e-d1ac7290783b</title>
    <updated>2026-07-03T10:25:55.249332+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "351a3765-d84c-40bf-839e-d1ac7290783b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47647", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motnfjeo2l2v", "content": "\ud83d\udea8  ALERT: CVE-2026-47647\n\nCVSS 9.9/10\n\n\ud83d\udccb WHAT IT IS:\nImproper access control in Microsoft Dynamics 365 allows an authorized attacker to elevate privileges over a network.\n\n\ud83c\udfaf WHO'S AFFECTED:\n  \u2022 Microsoft Dynamics, Microsoft\n\n\u2694\ufe0f HOW IT'S EXPLOITED:\nAttack vector: NETWORK\nImpact: high impact on confid", "creation_timestamp": "2026-06-22T00:36:57.337919Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/351a3765-d84c-40bf-839e-d1ac7290783b/export"/>
    <published>2026-06-22T00:36:57.337919+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/90e192de-9e1f-4c01-bac0-c11f6a2836e6/export</id>
    <title>90e192de-9e1f-4c01-bac0-c11f6a2836e6</title>
    <updated>2026-07-03T10:25:55.249438+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "90e192de-9e1f-4c01-bac0-c11f6a2836e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47643", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3moqpjopsb72t", "content": "\ud83d\udccc CVE-2026-47643 - External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute code over a network. https://www.cyberhub.blog/cves/CVE-2026-47643", "creation_timestamp": "2026-06-20T20:37:05.639164Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/90e192de-9e1f-4c01-bac0-c11f6a2836e6/export"/>
    <published>2026-06-20T20:37:05.639164+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0aaf641c-0ead-4799-bf5d-4754f0834e89/export</id>
    <title>0aaf641c-0ead-4799-bf5d-4754f0834e89</title>
    <updated>2026-07-03T10:25:55.249544+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0aaf641c-0ead-4799-bf5d-4754f0834e89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47645", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3moohax4noi2c", "content": "CVE-2026-47645 - Open redirect in Microsoft 365 Copilot. CVSS 8.8. Privilege escalation via untrusted URL redirection. No patch available. Monitor activity and restrict access. #CVE #Microsoft #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-47645/", "creation_timestamp": "2026-06-19T23:03:43.356935Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0aaf641c-0ead-4799-bf5d-4754f0834e89/export"/>
    <published>2026-06-19T23:03:43.356935+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4dc3a456-04c8-4f6a-87db-7a199313b27b/export</id>
    <title>4dc3a456-04c8-4f6a-87db-7a199313b27b</title>
    <updated>2026-07-03T10:25:55.249652+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4dc3a456-04c8-4f6a-87db-7a199313b27b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47645", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moof6vfqd62e", "content": "CVE-2026-47645 - Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability\nCVE ID : CVE-2026-47645\n \n Published : June 19, 2026, 8:29 p.m. | 1\u00a0hour, 13\u00a0minutes ago\n \n Description : None\n \n Severity: 8.8 | HIGH\n \n Visit the link for more details, such as CVSS d...", "creation_timestamp": "2026-06-19T22:26:46.529305Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4dc3a456-04c8-4f6a-87db-7a199313b27b/export"/>
    <published>2026-06-19T22:26:46.529305+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/62e7c87f-0333-4d0a-a550-3fac452dfe6c/export</id>
    <title>62e7c87f-0333-4d0a-a550-3fac452dfe6c</title>
    <updated>2026-07-03T10:25:55.249754+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "62e7c87f-0333-4d0a-a550-3fac452dfe6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47647", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mom6xudcjq2r", "content": "CVE-2026-47647 - Dynamics 365 Elevation of Privilege Vulnerability\nCVE ID : CVE-2026-47647\n \n Published : June 18, 2026, 9:42 p.m. | 1\u00a0hour, 49\u00a0minutes ago\n \n Description : None\n \n Severity: 9.9 | CRITICAL\n \n Visit the link for more details, such as CVSS details, affected prod...", "creation_timestamp": "2026-06-19T01:30:08.551599Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/62e7c87f-0333-4d0a-a550-3fac452dfe6c/export"/>
    <published>2026-06-19T01:30:08.551599+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9067607a-489d-47c6-91f4-744b2aeaf1c7/export</id>
    <title>9067607a-489d-47c6-91f4-744b2aeaf1c7</title>
    <updated>2026-07-03T10:25:55.249856+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9067607a-489d-47c6-91f4-744b2aeaf1c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-47647", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116773592895899835", "content": "CVE-2026-47647 (CRITICAL, CVSS 9.9) affects Microsoft Dynamics 365: improper access control lets authorized users escalate privileges over the network. Fix applied by Microsoft server-side \u2014 admins should confirm updates. Details: https://radar.offseq.com/threat/cve-2026-47647-cwe-284-improper-access-control-in--2000e43e6c3db613 #OffSeq #Microsoft #Infosec #CVE", "creation_timestamp": "2026-06-18T23:00:25.528366Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9067607a-489d-47c6-91f4-744b2aeaf1c7/export"/>
    <published>2026-06-18T23:00:25.528366+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/75c1cea3-c094-475b-b43c-aebc006c6d4d/export</id>
    <title>75c1cea3-c094-475b-b43c-aebc006c6d4d</title>
    <updated>2026-07-03T10:25:55.249956+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "75c1cea3-c094-475b-b43c-aebc006c6d4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-47647", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3molwm435hu2l", "content": "Microsoft Dynamics 365 hit by CRITICAL vulnerability (CVE-2026-47647, CVSS 9.9) enabling privilege escalation. Microsoft has issued a cloud-side fix \u2014 confirm your instance is up-to-date: https://radar.offseq.com/threat/cve-2026-47647-cwe-284-improper-access-control-in--2000e43e6c3db613 #OffSeq #...", "creation_timestamp": "2026-06-18T23:00:25.405985Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/75c1cea3-c094-475b-b43c-aebc006c6d4d/export"/>
    <published>2026-06-18T23:00:25.405985+00:00</published>
  </entry>
</feed>
