https://vulnerability.circl.lu/sightings/feed 2026-06-29T02:48:19.981220+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/bdde14f4-605b-46e6-969c-56d98ad1d0ef/export 2026-06-29T02:48:20.003000+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "bdde14f4-605b-46e6-969c-56d98ad1d0ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48020", "type": "seen", "source": "https://bsky.app/profile/dbt3.ch/post/3mnk7guqlhu2h", "content": "Traefik v2.11.48 patches CVE-2026-48020 plus fixes path injection in k8s ingress, TLS option handling, and StripPrefix normalization. Read the migration guide before upgrading. #selfhosted #homelab\n\nhttps://github.com/traefik/traefik/releases/tag/v2.11.48\n", "creation_timestamp": "2026-06-05T13:08:01.713696Z"} 2026-06-05T13:08:01.713696+00:00 https://vulnerability.circl.lu/sighting/2cc1da44-73ca-444e-9c2e-8591190e6b78/export 2026-06-29T02:48:20.002905+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "2cc1da44-73ca-444e-9c2e-8591190e6b78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48020", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mnkay2lpgr2j", "content": "\ud83d\udd17 CVE : CVE-2026-48020, CVE-2026-48491", "creation_timestamp": "2026-06-05T13:35:31.550485Z"} 2026-06-05T13:35:31.550485+00:00 https://vulnerability.circl.lu/sighting/547ccde9-21d6-4981-b86a-83e620a0b339/export 2026-06-29T02:48:20.002797+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "547ccde9-21d6-4981-b86a-83e620a0b339", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48020", "type": "seen", "source": "https://bsky.app/profile/dbt3.ch/post/3mnkfp5fgbw2b", "content": "Traefik v3.6.19 patches CVE-2026-48020 and fixes path injection, StripPrefix normalization, and TLS option issues. Read the migration guide before upgrading. #selfhosted #homelab\n\nhttps://github.com/traefik/traefik/releases/tag/v3.6.19\n", "creation_timestamp": "2026-06-05T15:00:01.288701Z"} 2026-06-05T15:00:01.288701+00:00 https://vulnerability.circl.lu/sighting/04cecb22-87e0-4f82-80e7-1650463aa286/export 2026-06-29T02:48:20.001750+00:00 Joseph Lee https://cvepremium.circl.lu/user/syspect {"uuid": "04cecb22-87e0-4f82-80e7-1650463aa286", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48020", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-xf64-8mw2-4gr2", "content": "", "creation_timestamp": "2026-06-11T13:26:57.000000Z"} 2026-06-11T13:26:57+00:00 https://vulnerability.circl.lu/sighting/c6cd606e-5c3d-4dd9-bd18-217030d015ab/export 2026-06-29T02:48:20.001653+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "c6cd606e-5c3d-4dd9-bd18-217030d015ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mogtziit522t", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-48027\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nNx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console, 18.95.0, was published at 12:30 PM UTC and removed soon after at 12:48 PM UTC, leaving it available for ~18 minutes in Visual Studio Market", "creation_timestamp": "2026-06-16T22:30:53.561138Z"} 2026-06-16T22:30:53.561138+00:00 https://vulnerability.circl.lu/sighting/203c75fe-855c-4505-95ff-cd095126aea2/export 2026-06-29T02:48:20.001544+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "203c75fe-855c-4505-95ff-cd095126aea2", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/18866cf6-0dd6-480a-9cf2-94064b6ffb47", "content": "", "creation_timestamp": "2026-06-19T12:45:32.809887Z"} 2026-06-19T12:45:32.809887+00:00 https://vulnerability.circl.lu/sighting/57cf62c2-9733-4a8a-baa4-633303a1a510/export 2026-06-29T02:48:20.001438+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "57cf62c2-9733-4a8a-baa4-633303a1a510", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxebiqfqk2n", "content": "CISA Adds Three Known Exploited Vulnerabilities to Catalog\nRelease Date May 27, 2026\n\nCVE-2026-8398 Daemon Tools Lite Embedded Malicious Code Vulnerability\nCVE-2026-45321 TanStack Unspecified Vulnerability\nCVE-2026-48027 Nx Console Embedded Malicious Code Vulnerability", "creation_timestamp": "2026-06-23T12:04:18.036005Z"} 2026-06-23T12:04:18.036005+00:00 https://vulnerability.circl.lu/sighting/be57aa1e-95c3-4ba4-b4f1-7caed8c9b3c1/export 2026-06-29T02:48:20.001325+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "be57aa1e-95c3-4ba4-b4f1-7caed8c9b3c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxecmqe2c2n", "content": "\u8907\u6570\u30bd\u30d5\u30c8\u304c\u6539\u3056\u3093\u88ab\u5bb3\u3001\u6b63\u898f\u30eb\u30fc\u30c8\u3067\u6c5a\u67d3\u7248\u304c\u6d41\u901a - \u7c73\u5f53\u5c40\u304c\u6ce8\u610f\u559a\u8d77\n\n\u7c73\u5f53\u5c40\u306f\u3001\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u30b5\u30d7\u30e9\u30a4\u30c1\u30a7\u30fc\u30f3\u4fb5\u5bb3\u306b\u8d77\u56e0\u3059\u308b\u8106\u5f31\u60273\u4ef6\u306b\u3064\u3044\u3066\u6ce8\u610f\u3092\u547c\u3073\u304b\u3051\u305f\u3002\n\n\u7c73\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u73fe\u5730\u6642\u95932026\u5e745\u670827\u65e5\u3001\u300cCVE-2026-8398\u300d\u300cCVE-2026-45321\u300d\u300cCVE-2026-48027\u300d\u3092\u300c\u60aa\u7528\u304c\u78ba\u8a8d\u3055\u308c\u305f\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\uff08KEV\uff09\u300d\u3078\u8ffd\u52a0\u3057\u305f\u3002\u3044\u305a\u308c\u3082\u63d0\u4f9b\u5143\u306e\u4fb5\u5bb3\u3084\u6b63\u898f\u7d4c\u8def\u306b\u3088\u308b\u914d\u5e03\u306a\u3069\u3001\u30b5\u30d7\u30e9\u30a4\u30c1\u30a7\u30fc\u30f3\u4fb5\u5bb3\u306b\u8d77\u56e0\u3059\u308b\u554f\u984c\u3068\u306a\u308b\u3002\n\n\u300cCVE-2026-8398\u300d\u306f\u3001\u30c7\u30a3\u30b9\u30af\u30a4\u30e1\u30fc\u30b8\u7ba1\u7406\u30bd\u30d5\u30c8\u300cDAEMON Too...", "creation_timestamp": "2026-06-23T12:04:55.891858Z"} 2026-06-23T12:04:55.891858+00:00 https://vulnerability.circl.lu/sighting/2f7b4b7d-4401-42cb-9fee-bb5389b6ae6b/export 2026-06-29T02:48:20.001178+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "2f7b4b7d-4401-42cb-9fee-bb5389b6ae6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxezct7oc2n", "content": "\u7c73\u56fd\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u3001Daemon Tools\u3001TanStack\u3001\u304a\u3088\u3073Nx Console\u306e\u8106\u5f31\u6027\u3092\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\u3057\u305f\n\nCVE-2026-8398\uff08CVSS\u30b9\u30b3\u30a2\uff1a\u30d0\u30fc\u30b8\u30e7\u30f34.0\u30679.3\uff09Daemon Tools Lite Embedded\u306e\u60aa\u610f\u306e\u3042\u308b\u30b3\u30fc\u30c9\u306e\u8106\u5f31\u6027\nCVE-2026-45321\uff08CVSS\u30b9\u30b3\u30a2\uff1a\u30d0\u30fc\u30b8\u30e7\u30f33.1\u30679.5\uff09TanStack\u306e\u7279\u5b9a\u3055\u308c\u3066\u3044\u306a\u3044\u8106\u5f31\u6027\nCVE-2026-48027\uff08CVSS\u30b9\u30b3\u30a2\uff1a\u30d0\u30fc\u30b8\u30e7\u30f34.0\u30679.3\uff09Nx Console\u7d44\u307f\u8fbc\u307f\u578b\u60aa\u610f\u306e\u3042\u308b\u30b3\u30fc\u30c9\u306e\u8106\u5f31\u6027", "creation_timestamp": "2026-06-23T12:17:38.014134Z"} 2026-06-23T12:17:38.014134+00:00 https://vulnerability.circl.lu/sighting/f70f8183-cf8a-41fd-8bd3-427712a119e0/export 2026-06-29T02:48:19.999571+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "f70f8183-cf8a-41fd-8bd3-427712a119e0", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48027", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/1d5aa159-8570-4699-a3f3-ba9b93be035b", "content": "", "creation_timestamp": "2026-06-23T14:03:56.442397Z"} 2026-06-23T14:03:56.442397+00:00