<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-06T14:00:52.611155+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5ab18d58-a9d4-449c-933e-5db6e63cad1e/export</id>
    <title>5ab18d58-a9d4-449c-933e-5db6e63cad1e</title>
    <updated>2026-07-06T14:00:52.636882+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5ab18d58-a9d4-449c-933e-5db6e63cad1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4868", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxisf57l22n", "content": "\u300cGitLab\u300d\u306b\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8 - \u8106\u5f31\u60277\u4ef6\u3092\u4fee\u6b63\n\nGitLab\u306f\u73fe\u5730\u6642\u95932026\u5e745\u670827\u65e5\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3068\u306a\u308b\u300c\u540c19.0.1\u300d\u300c\u540c18.11.4\u300d\u300c\u540c18.10.7\u300d\u3092\u30ea\u30ea\u30fc\u30b9\u3057\u305f\u3002\n\n\u300cGitLab Community Edition\uff08CE\uff09\u300d\u300c\u540cEnterprise Edition\uff08EE\uff09\u300d\u5411\u3051\u306b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3092\u30ea\u30ea\u30fc\u30b9\u3057\u30017\u4ef6\u306e\u8106\u5f31\u6027\u3078\u5bfe\u51e6\u3057\u305f\u3082\u306e\u3002\n\n\u91cd\u8981\u5ea6\u304c4\u6bb5\u968e\u4e2d\u3082\u3063\u3068\u3082\u9ad8\u3044\u300c\u30af\u30ea\u30c6\u30a3\u30ab\u30eb\uff08Critical\uff09\u300d\u3068\u3055\u308c\u308b\u8106\u5f31\u6027\u306f\u306a\u304b\u3063\u305f\u3002\u300cCVE-2026-4868\u300d\u304c2\u756a\u76ee\u306b\u9ad8\u3044\u300c\u9ad8\uff08High\uff09\u300d\u3068\u3055\u308c\u3066\u3044\u308b\u3002\n\n\u540c\u8106\u5f31\u6027\u306f\u3001\u300cGitLab E...", "creation_timestamp": "2026-06-23T13:25:19.383325Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5ab18d58-a9d4-449c-933e-5db6e63cad1e/export"/>
    <published>2026-06-23T13:25:19.383325+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/049939ff-1078-4fec-b248-7d1fa67c98c4/export</id>
    <title>049939ff-1078-4fec-b248-7d1fa67c98c4</title>
    <updated>2026-07-06T14:00:52.639335+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "049939ff-1078-4fec-b248-7d1fa67c98c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48689", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mou6pfir432v", "content": "\ud83d\udea8  ALERT: CVE-2026-48689\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nFastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dynamic_binary_buffer_t class (src/dynamic_binary_buffer.hpp). Five methods (append_dynamic_buffer, append_data_as_pointer, append_data_as_object_p", "creation_timestamp": "2026-06-22T05:46:42.390292Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/049939ff-1078-4fec-b248-7d1fa67c98c4/export"/>
    <published>2026-06-22T05:46:42.390292+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4e72fd82-5438-4558-ab5b-0ec673c3529f/export</id>
    <title>4e72fd82-5438-4558-ab5b-0ec673c3529f</title>
    <updated>2026-07-06T14:00:52.639549+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4e72fd82-5438-4558-ab5b-0ec673c3529f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48687", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mou46rwq6m2f", "content": "\ud83d\udea8  ALERT: CVE-2026-48687\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nFastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The _log() function in src/juniper_plugin/fastnetmon_juniper.php (lines 117-118) constructs shell commands by conca", "creation_timestamp": "2026-06-22T05:01:37.815809Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4e72fd82-5438-4558-ab5b-0ec673c3529f/export"/>
    <published>2026-06-22T05:01:37.815809+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0a314209-645e-43cf-9929-5b0f7effe204/export</id>
    <title>0a314209-645e-43cf-9929-5b0f7effe204</title>
    <updated>2026-07-06T14:00:52.639728+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0a314209-645e-43cf-9929-5b0f7effe204", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48686", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mou3eaz2fv2b", "content": "\ud83d\udea8  ALERT: CVE-2026-48686\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nFastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI (Network Layer Reachability Information) decoder. The function decode_bgp_subnet_encoding_ipv4_raw() in src/bgp_protocol.cpp reads prefix_bit_length ", "creation_timestamp": "2026-06-22T04:46:47.315929Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0a314209-645e-43cf-9929-5b0f7effe204/export"/>
    <published>2026-06-22T04:46:47.315929+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c06dbdf4-00a2-4b12-8978-fc1c5c77e3f5/export</id>
    <title>c06dbdf4-00a2-4b12-8978-fc1c5c77e3f5</title>
    <updated>2026-07-06T14:00:52.639881+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c06dbdf4-00a2-4b12-8978-fc1c5c77e3f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48681", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnh4baodh62p", "content": "CVE-2026-48681 - OpenStack Ironic Directory Traversal File Overwrite\nCVE ID : CVE-2026-48681\n \n Published : June 4, 2026, 4:17 a.m. | 2\u00a0hours, 15\u00a0minutes ago\n \n Description : OpenStack Ironic through before 35.0.2 allows file overwrite via directory traversal during deployment...", "creation_timestamp": "2026-06-04T07:33:12.067568Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c06dbdf4-00a2-4b12-8978-fc1c5c77e3f5/export"/>
    <published>2026-06-04T07:33:12.067568+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/750d9cb0-5aa6-4bb8-b102-e0b3d37a9ef2/export</id>
    <title>750d9cb0-5aa6-4bb8-b102-e0b3d37a9ef2</title>
    <updated>2026-07-06T14:00:52.640036+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "750d9cb0-5aa6-4bb8-b102-e0b3d37a9ef2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48681", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mnfmujjvso2h", "content": "[OSSA-2026-018] Ironic: File overwrite on Ironic conductor via path traversal in ISO handling (CVE-2026-48681)", "creation_timestamp": "2026-06-03T17:24:59.398856Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/750d9cb0-5aa6-4bb8-b102-e0b3d37a9ef2/export"/>
    <published>2026-06-03T17:24:59.398856+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/61b398f6-b13d-4d4c-be60-1d82e55b12a4/export</id>
    <title>61b398f6-b13d-4d4c-be60-1d82e55b12a4</title>
    <updated>2026-07-06T14:00:52.640192+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "61b398f6-b13d-4d4c-be60-1d82e55b12a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4868", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmvwjfgzfg2c", "content": "\ud83d\udd17 CVE : CVE-2026-1402, CVE-2026-2601, CVE-2026-2710, CVE-2026-4868, CVE-2026-5296, CVE-2026-6713, CVE-2026-8716", "creation_timestamp": "2026-05-28T11:35:07.922586Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/61b398f6-b13d-4d4c-be60-1d82e55b12a4/export"/>
    <published>2026-05-28T11:35:07.922586+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8c29dd56-96c7-4f96-a0b5-9ea963d9bae3/export</id>
    <title>8c29dd56-96c7-4f96-a0b5-9ea963d9bae3</title>
    <updated>2026-07-06T14:00:52.640340+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8c29dd56-96c7-4f96-a0b5-9ea963d9bae3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4868", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmutghmbwl25", "content": "\ud83d\udccc CVE-2026-4868 - GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that, under ... https://www.cyberhub.blog/cves/CVE-2026-4868", "creation_timestamp": "2026-05-28T01:07:08.595447Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8c29dd56-96c7-4f96-a0b5-9ea963d9bae3/export"/>
    <published>2026-05-28T01:07:08.595447+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/027cd0ff-0513-4803-87c9-290fbf8dff4d/export</id>
    <title>027cd0ff-0513-4803-87c9-290fbf8dff4d</title>
    <updated>2026-07-06T14:00:52.640496+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "027cd0ff-0513-4803-87c9-290fbf8dff4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48689", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mms2fvvfpe2h", "content": "CVE-2026-48689 - FastNetMon Heap-Based Buffer Overflow Vulnerability\nCVE ID : CVE-2026-48689\n \n Published : May 26, 2026, 7:16 p.m. | 1\u00a0hour, 15\u00a0minutes ago\n \n Description : FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dyn...", "creation_timestamp": "2026-05-26T22:34:06.715155Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/027cd0ff-0513-4803-87c9-290fbf8dff4d/export"/>
    <published>2026-05-26T22:34:06.715155+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/480124be-3a02-4d1f-a5a7-cc46b1f3d9a3/export</id>
    <title>480124be-3a02-4d1f-a5a7-cc46b1f3d9a3</title>
    <updated>2026-07-06T14:00:52.640654+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "480124be-3a02-4d1f-a5a7-cc46b1f3d9a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48689", "type": "seen", "source": "https://bsky.app/profile/euvd-bot.bsky.social/post/3mmroihdyss2w", "content": "\ud83d\udea8 EUVD-2026-31950\n\ud83d\udcca n/a\n\n\ud83d\udcdd FastNetMon Community Edition through 1.2.9 has a buffer overflow, a different vulnerability than CVE-2026-48686 and CVE-2026-48689.\n\n\ud83d\udd17 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-31950\n\n#cybersecurity #infosec #cve #euvd", "creation_timestamp": "2026-05-26T19:00:46.982513Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/480124be-3a02-4d1f-a5a7-cc46b1f3d9a3/export"/>
    <published>2026-05-26T19:00:46.982513+00:00</published>
  </entry>
</feed>
