<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-14T09:32:32.132572+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/002fe144-e744-4986-8b9c-aee019f278bd/export</id>
    <title>002fe144-e744-4986-8b9c-aee019f278bd</title>
    <updated>2026-07-14T09:32:32.159818+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "002fe144-e744-4986-8b9c-aee019f278bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://t.me/bdufstecru/3264", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 ssh2_transport_read() \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 libssh2 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u0441\u0432\u044f\u0437\u0438 \u0441 \u0446\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u043c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0445 SSH-\u043f\u0430\u043a\u0435\u0442\u043e\u0432\n\nBDU:2026-08612\nCVE-2026-55200\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://github.com/libssh2/libssh2/commit/97acf3dfda80c91c3a8c9f2372546301d4a1a7a8", "creation_timestamp": "2026-07-14T01:00:05.536931Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/002fe144-e744-4986-8b9c-aee019f278bd/export"/>
    <published>2026-07-14T01:00:05.536931+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/594cf7d2-ad3c-4da9-ab15-05b47cfce51b/export</id>
    <title>594cf7d2-ad3c-4da9-ab15-05b47cfce51b</title>
    <updated>2026-07-14T09:32:32.163012+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "594cf7d2-ad3c-4da9-ab15-05b47cfce51b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/hapsis.bsky.social/post/3mq5xh7fowc2x", "content": "Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw\n\nthehackernews.com/2026/06/publ...\n\n#Cybersecurity #ThreatIntel #Vulnerability", "creation_timestamp": "2026-07-08T20:28:41.480627Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/594cf7d2-ad3c-4da9-ab15-05b47cfce51b/export"/>
    <published>2026-07-08T20:28:41.480627+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9b956e5c-d5b6-4c70-80eb-c6b351623abd/export</id>
    <title>9b956e5c-d5b6-4c70-80eb-c6b351623abd</title>
    <updated>2026-07-14T09:32:32.163151+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9b956e5c-d5b6-4c70-80eb-c6b351623abd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/mbsplugins.bsky.social/post/3mpyiemnprc2b", "content": "MBS #Xojo Plugins, version 26.3pr5\n\nUpdated SQLite to version 3.53.3.\nUpdated Xcode to version 26.6.\nPatched libssh2 for CVE-2026-55200.\n\nwww.mbsplugins.de/archive/2026...", "creation_timestamp": "2026-07-06T16:15:29.285190Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9b956e5c-d5b6-4c70-80eb-c6b351623abd/export"/>
    <published>2026-07-06T16:15:29.285190+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6606661b-99c2-497a-a15a-d6664696c8f3/export</id>
    <title>6606661b-99c2-497a-a15a-d6664696c8f3</title>
    <updated>2026-07-14T09:32:32.163255+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6606661b-99c2-497a-a15a-d6664696c8f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/mbsplugins.bsky.social/post/3mpxqpd2du22p", "content": "MBS #FileMaker Plugin, version 16.3pr5\n\nPatched libssh2 for CVE-2026-55200.\nUpdated SQLite to 3.53.3.\nUpdated Xcode to 26.6.\nImproved script search.\nThe context menu in the Script Workspace shows a command to open the help for a script step in English.\n\nwww.mbsplugins.de/archive/2026...", "creation_timestamp": "2026-07-06T09:12:01.763492Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6606661b-99c2-497a-a15a-d6664696c8f3/export"/>
    <published>2026-07-06T09:12:01.763492+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f563a1be-df96-4ddd-8f6f-f5e3634612d3/export</id>
    <title>f563a1be-df96-4ddd-8f6f-f5e3634612d3</title>
    <updated>2026-07-14T09:32:32.163355+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f563a1be-df96-4ddd-8f6f-f5e3634612d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/insomnisec.bsky.social/post/3mpwmbnzyj424", "content": "\ud83d\udce1 CVE-2026-55200: Remote Code Execution in libssh2, the SSH Library Hidden Inside Your Stack", "creation_timestamp": "2026-07-05T22:20:06.081133Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f563a1be-df96-4ddd-8f6f-f5e3634612d3/export"/>
    <published>2026-07-05T22:20:06.081133+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f8d61302-ce75-4b9f-8006-9753ade93ab5/export</id>
    <title>f8d61302-ce75-4b9f-8006-9753ade93ab5</title>
    <updated>2026-07-14T09:32:32.163460+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f8d61302-ce75-4b9f-8006-9753ade93ab5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-55200", "type": "seen", "source": "https://bsky.app/profile/devops-daily.com/post/3mppxx4j7qe2p", "content": "\ud83d\udcdd When the SSH Server Attacks the Client: libssh2 CVE-2026-55200\n\nYou spent years hardening sshd. This bug does not care. CVE-2026-55200 is a pre-auth heap overflow in libssh2 where a malicious SSH server takes over...\n\nRead here: https://devops-daily.com/posts/libssh2-cve-2026-55200-client-side...", "creation_timestamp": "2026-07-03T07:00:18.243967Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f8d61302-ce75-4b9f-8006-9753ade93ab5/export"/>
    <published>2026-07-03T07:00:18.243967+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b0477bbd-5dc8-4246-9612-2244a156fee6/export</id>
    <title>b0477bbd-5dc8-4246-9612-2244a156fee6</title>
    <updated>2026-07-14T09:32:32.163564+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b0477bbd-5dc8-4246-9612-2244a156fee6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/insomnisec.bsky.social/post/3mpm2xyqvz52p", "content": "\ud83d\udce1 CVE-2026-55200: Remote Code Execution in libssh2, the SSH Library Hidden Inside Your Stack", "creation_timestamp": "2026-07-01T17:43:49.824388Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b0477bbd-5dc8-4246-9612-2244a156fee6/export"/>
    <published>2026-07-01T17:43:49.824388+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6231ac00-09eb-40cf-8d45-d94e31808671/export</id>
    <title>6231ac00-09eb-40cf-8d45-d94e31808671</title>
    <updated>2026-07-14T09:32:32.163659+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6231ac00-09eb-40cf-8d45-d94e31808671", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/insomnisec.bsky.social/post/3mpm2wdt2ak2j", "content": "\ud83d\udce1 CVE-2026-55200: Remote Code Execution in libssh2, the SSH Library Hidden Inside Your Stack", "creation_timestamp": "2026-07-01T17:43:24.711403Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6231ac00-09eb-40cf-8d45-d94e31808671/export"/>
    <published>2026-07-01T17:43:24.711403+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ec8a8f84-381e-473d-b0f4-a1f1990eeddd/export</id>
    <title>ec8a8f84-381e-473d-b0f4-a1f1990eeddd</title>
    <updated>2026-07-14T09:32:32.163753+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ec8a8f84-381e-473d-b0f4-a1f1990eeddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mplizdeqri2n", "content": "[Backport staging-26.05] libssh2: patch CVE-2025-15661, CVE-2026-55199, and CVE-2026-55200\n\nhttps://github.com/NixOS/nixpkgs/pull/537259\n\n#security", "creation_timestamp": "2026-07-01T12:22:27.280037Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ec8a8f84-381e-473d-b0f4-a1f1990eeddd/export"/>
    <published>2026-07-01T12:22:27.280037+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/047513cb-ca52-4ad9-8563-afa5d8b001a6/export</id>
    <title>047513cb-ca52-4ad9-8563-afa5d8b001a6</title>
    <updated>2026-07-14T09:32:32.163850+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "047513cb-ca52-4ad9-8563-afa5d8b001a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mplbljwu6724", "content": "A public proof-of-concept now exists for a critical libssh2 flaw (CVE-2026-55200) that lets a malicious SSH server run code on any client that connects to it. No password, no click needed. libssh2 ships inside curl, Git, PHP and firmware updaters, and no fixed release exists yet.", "creation_timestamp": "2026-07-01T10:09:29.145436Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/047513cb-ca52-4ad9-8563-afa5d8b001a6/export"/>
    <published>2026-07-01T10:09:29.145436+00:00</published>
  </entry>
</feed>
