https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 11 Jun 2026 23:41:17 +0000 https://vulnerability.circl.lu/sighting/d5745ea3-ccac-419b-9504-43d560f988d8/export {"uuid": "d5745ea3-ccac-419b-9504-43d560f988d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzenod2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:10.397880Z"} {"uuid": "d5745ea3-ccac-419b-9504-43d560f988d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzenod2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:10.397880Z"} https://vulnerability.circl.lu/sighting/d5745ea3-ccac-419b-9504-43d560f988d8/export Mon, 08 Jun 2026 16:00:10 +0000 https://vulnerability.circl.lu/sighting/a85ceabd-07b1-4295-b841-c68950a02870/export {"uuid": "a85ceabd-07b1-4295-b841-c68950a02870", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzeonl2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:11.122215Z"} {"uuid": "a85ceabd-07b1-4295-b841-c68950a02870", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzeonl2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:11.122215Z"} https://vulnerability.circl.lu/sighting/a85ceabd-07b1-4295-b841-c68950a02870/export Mon, 08 Jun 2026 16:00:11 +0000 https://vulnerability.circl.lu/sighting/0c2fc171-78de-4c8b-bd37-d8ded66170d4/export {"uuid": "0c2fc171-78de-4c8b-bd37-d8ded66170d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sarubot.bsky.social/post/3mnt5wlto5l2p", "content": "Cisco SD-WAN\u306broot\u6a29\u9650\u3092\u596a\u53d6\u3055\u308c\u308b\u30bc\u30ed\u30c7\u30a4\u3002\u65e2\u306b\u60aa\u7528\u3082\u78ba\u8a8d\u6e08\u307f\u3067\u3059\u3002\n\n\u30fbCVE-2026-20245\n\u30fb\u30aa\u30f3\u30d7\u30ec/\u30af\u30e9\u30a6\u30c9\u5168\u57df\u304c\u5bfe\u8c61\n\u30fbOS\u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u306e\u8106\u5f31\u6027\n\u30fb\u4fee\u6b63\u30d1\u30c3\u30c1\u306f\u5f85\u6a5f\u4e2d\n\n\u57fa\u76e4\u3078\u306e\u4fb5\u5165\u306f\u81f4\u547d\u7684\u3067\u3059\u3002\u5373\u5ea7\u306b\u7ba1\u7406\u30a2\u30af\u30bb\u30b9\u306e\u5236\u9650\u3092\u5fb9\u5e95\u3057\u3066\u304f\u3060\u3055\u3044\u3002\n\n#Cisco #\u30bc\u30ed\u30c7\u30a4", "creation_timestamp": "2026-06-09T02:34:59.175649Z"} {"uuid": "0c2fc171-78de-4c8b-bd37-d8ded66170d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/sarubot.bsky.social/post/3mnt5wlto5l2p", "content": "Cisco SD-WAN\u306broot\u6a29\u9650\u3092\u596a\u53d6\u3055\u308c\u308b\u30bc\u30ed\u30c7\u30a4\u3002\u65e2\u306b\u60aa\u7528\u3082\u78ba\u8a8d\u6e08\u307f\u3067\u3059\u3002\n\n\u30fbCVE-2026-20245\n\u30fb\u30aa\u30f3\u30d7\u30ec/\u30af\u30e9\u30a6\u30c9\u5168\u57df\u304c\u5bfe\u8c61\n\u30fbOS\u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u306e\u8106\u5f31\u6027\n\u30fb\u4fee\u6b63\u30d1\u30c3\u30c1\u306f\u5f85\u6a5f\u4e2d\n\n\u57fa\u76e4\u3078\u306e\u4fb5\u5165\u306f\u81f4\u547d\u7684\u3067\u3059\u3002\u5373\u5ea7\u306b\u7ba1\u7406\u30a2\u30af\u30bb\u30b9\u306e\u5236\u9650\u3092\u5fb9\u5e95\u3057\u3066\u304f\u3060\u3055\u3044\u3002\n\n#Cisco #\u30bc\u30ed\u30c7\u30a4", "creation_timestamp": "2026-06-09T02:34:59.175649Z"} https://vulnerability.circl.lu/sighting/0c2fc171-78de-4c8b-bd37-d8ded66170d4/export Tue, 09 Jun 2026 02:34:59 +0000 https://vulnerability.circl.lu/sighting/a2bba6d9-5d3b-49f0-bcbf-f8191153d9a4/export {"uuid": "a2bba6d9-5d3b-49f0-bcbf-f8191153d9a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mnufupx4hw2e", "content": "\u30b7\u30b9\u30b3\u9867\u5ba2\u3001\u307e\u305f\u65b0\u305f\u306aSD-WAN\u30bc\u30ed\u30c7\u30a4\u306e\u60aa\u7528\u88ab\u5bb3\u306b\u76f4\u9762\n\n\u30b7\u30b9\u30b3\u306e\u9867\u5ba2\u304c\u3001\u540c\u793e\u306eSD-WAN\u7ba1\u7406\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306b\u5f71\u97ff\u3059\u308b\u65b0\u305f\u306a\u30bc\u30ed\u30c7\u30a4\u8106\u5f31\u6027\u306e\u7a4d\u6975\u7684\u306a\u60aa\u7528\u306b\u76f4\u9762\u3057\u3066\u3044\u307e\u3059\u3002\u4eca\u5e74\u3001\u8105\u5a01\u306e\u6ce2\u304c\u4e00\u6642\u7684\u306b\u548c\u3089\u3050\u5c40\u9762\u3082\u3042\u3063\u305f\u7d44\u7e54\u306b\u3068\u3063\u3066\u3001\u3053\u306e\u4e8b\u614b\u306f\u3055\u3089\u306a\u308b\u30d7\u30ec\u30c3\u30b7\u30e3\u30fc\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u3002 \u3053\u306e\u8106\u5f31\u6027 \u2014 CVE-2026-20245 \u2014 \u306f\u3001\u4eca\u5e74\u30b7\u30b9\u30b3SD-WAN\u3067\u7a4d\u6975\u7684\u306b\u60aa\u7528\u3055\u308c\u305f7\u4ef6\u76ee", "creation_timestamp": "2026-06-09T14:29:46.258744Z"} {"uuid": "a2bba6d9-5d3b-49f0-bcbf-f8191153d9a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mnufupx4hw2e", "content": "\u30b7\u30b9\u30b3\u9867\u5ba2\u3001\u307e\u305f\u65b0\u305f\u306aSD-WAN\u30bc\u30ed\u30c7\u30a4\u306e\u60aa\u7528\u88ab\u5bb3\u306b\u76f4\u9762\n\n\u30b7\u30b9\u30b3\u306e\u9867\u5ba2\u304c\u3001\u540c\u793e\u306eSD-WAN\u7ba1\u7406\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306b\u5f71\u97ff\u3059\u308b\u65b0\u305f\u306a\u30bc\u30ed\u30c7\u30a4\u8106\u5f31\u6027\u306e\u7a4d\u6975\u7684\u306a\u60aa\u7528\u306b\u76f4\u9762\u3057\u3066\u3044\u307e\u3059\u3002\u4eca\u5e74\u3001\u8105\u5a01\u306e\u6ce2\u304c\u4e00\u6642\u7684\u306b\u548c\u3089\u3050\u5c40\u9762\u3082\u3042\u3063\u305f\u7d44\u7e54\u306b\u3068\u3063\u3066\u3001\u3053\u306e\u4e8b\u614b\u306f\u3055\u3089\u306a\u308b\u30d7\u30ec\u30c3\u30b7\u30e3\u30fc\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u3002 \u3053\u306e\u8106\u5f31\u6027 \u2014 CVE-2026-20245 \u2014 \u306f\u3001\u4eca\u5e74\u30b7\u30b9\u30b3SD-WAN\u3067\u7a4d\u6975\u7684\u306b\u60aa\u7528\u3055\u308c\u305f7\u4ef6\u76ee", "creation_timestamp": "2026-06-09T14:29:46.258744Z"} https://vulnerability.circl.lu/sighting/a2bba6d9-5d3b-49f0-bcbf-f8191153d9a4/export Tue, 09 Jun 2026 14:29:46 +0000 https://vulnerability.circl.lu/sighting/ad71dc9d-826e-46d7-b60f-767ef3ed1a3b/export {"uuid": "ad71dc9d-826e-46d7-b60f-767ef3ed1a3b", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/aef1a0ae-c19d-4288-9a7d-bd41f3b6eeca", "content": "", "creation_timestamp": "2026-06-09T20:00:02.165943Z"} {"uuid": "ad71dc9d-826e-46d7-b60f-767ef3ed1a3b", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/aef1a0ae-c19d-4288-9a7d-bd41f3b6eeca", "content": "", "creation_timestamp": "2026-06-09T20:00:02.165943Z"} https://vulnerability.circl.lu/sighting/ad71dc9d-826e-46d7-b60f-767ef3ed1a3b/export Tue, 09 Jun 2026 20:00:02 +0000 https://vulnerability.circl.lu/sighting/b52c7109-979e-4ec5-ae7c-ac989c954007/export {"uuid": "b52c7109-979e-4ec5-ae7c-ac989c954007", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mnuyi3sjan2d", "content": "~Cisa~\nCISA added CVE-2026-7473 (Arista), CVE-2026-11645 (Chromium), and CVE-2026-20245 (Cisco) to its KEV catalog due to active exploitation.\n-\nIOCs: CVE-2026-7473, CVE-2026-11645, CVE-2026-20245\n-\n#CISA #KEV #ThreatIntel #Vulnerability", "creation_timestamp": "2026-06-09T20:12:06.511718Z"} {"uuid": "b52c7109-979e-4ec5-ae7c-ac989c954007", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mnuyi3sjan2d", "content": "~Cisa~\nCISA added CVE-2026-7473 (Arista), CVE-2026-11645 (Chromium), and CVE-2026-20245 (Cisco) to its KEV catalog due to active exploitation.\n-\nIOCs: CVE-2026-7473, CVE-2026-11645, CVE-2026-20245\n-\n#CISA #KEV #ThreatIntel #Vulnerability", "creation_timestamp": "2026-06-09T20:12:06.511718Z"} https://vulnerability.circl.lu/sighting/b52c7109-979e-4ec5-ae7c-ac989c954007/export Tue, 09 Jun 2026 20:12:06 +0000 https://vulnerability.circl.lu/sighting/1aa25d8a-23cd-4ad2-aca7-ec98a0e31470/export {"uuid": "1aa25d8a-23cd-4ad2-aca7-ec98a0e31470", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/nuke86.rfeed.it/post/3mnwdzui3de2h", "content": "\u2728 CVE-2026-20245 e CVE-2026-41089: zero-day Cisco SD-WAN e RCE su Netlogon sotto attacco attivo \nLeggi il blog: spcnet.it/cve-2026-202...", "creation_timestamp": "2026-06-10T09:02:10.787140Z"} {"uuid": "1aa25d8a-23cd-4ad2-aca7-ec98a0e31470", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/nuke86.rfeed.it/post/3mnwdzui3de2h", "content": "\u2728 CVE-2026-20245 e CVE-2026-41089: zero-day Cisco SD-WAN e RCE su Netlogon sotto attacco attivo \nLeggi il blog: spcnet.it/cve-2026-202...", "creation_timestamp": "2026-06-10T09:02:10.787140Z"} https://vulnerability.circl.lu/sighting/1aa25d8a-23cd-4ad2-aca7-ec98a0e31470/export Wed, 10 Jun 2026 09:02:10 +0000 https://vulnerability.circl.lu/sighting/6a2cc9c5-fa92-4716-a5f2-3c42fa0f140c/export {"uuid": "6a2cc9c5-fa92-4716-a5f2-3c42fa0f140c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/arc-perimetered.bsky.social/post/3mnwk7nrbcq2w", "content": "CVE-2026-20245, no patch. Everyone's saying 'isolate the SD-WAN manager.' Fine. But ask the next question: management plane compromise = control over the entire routing fabric. Every branch. Every policy. That's not a single node \u2014 that's the keys to the network.", "creation_timestamp": "2026-06-10T10:53:40.795680Z"} {"uuid": "6a2cc9c5-fa92-4716-a5f2-3c42fa0f140c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/arc-perimetered.bsky.social/post/3mnwk7nrbcq2w", "content": "CVE-2026-20245, no patch. Everyone's saying 'isolate the SD-WAN manager.' Fine. But ask the next question: management plane compromise = control over the entire routing fabric. Every branch. Every policy. That's not a single node \u2014 that's the keys to the network.", "creation_timestamp": "2026-06-10T10:53:40.795680Z"} https://vulnerability.circl.lu/sighting/6a2cc9c5-fa92-4716-a5f2-3c42fa0f140c/export Wed, 10 Jun 2026 10:53:40 +0000 https://vulnerability.circl.lu/sighting/1cd2bce3-ac21-479d-9955-ba2b5790260f/export {"uuid": "1cd2bce3-ac21-479d-9955-ba2b5790260f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://thehackernews.com/2026/06/cisa-adds-cisco-chrome-and-arista-flaws.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation.\n\nThe list of vulnerabilities is as follows -\n\n\n CVE-2026-20245 (CVSS score: 7.8) - An improper encoding or escaping of output vulnerability in Cisco Catalyst SD-WAN Manager that could allow an", "creation_timestamp": "2026-06-10T12:44:29.000000Z"} {"uuid": "1cd2bce3-ac21-479d-9955-ba2b5790260f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://thehackernews.com/2026/06/cisa-adds-cisco-chrome-and-arista-flaws.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation.\n\nThe list of vulnerabilities is as follows -\n\n\n CVE-2026-20245 (CVSS score: 7.8) - An improper encoding or escaping of output vulnerability in Cisco Catalyst SD-WAN Manager that could allow an", "creation_timestamp": "2026-06-10T12:44:29.000000Z"} https://vulnerability.circl.lu/sighting/1cd2bce3-ac21-479d-9955-ba2b5790260f/export Wed, 10 Jun 2026 12:44:29 +0000 https://vulnerability.circl.lu/sighting/948b8545-3e99-4a51-8be8-b194c9bc98dd/export {"uuid": "948b8545-3e99-4a51-8be8-b194c9bc98dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnzuqtxba72h", "content": "CVE-2026-20245, Cisco SD-WAN Manager. We mapped the SD-WAN Manager CVE chain May 16, then called this specific zero-day June 5. The weaponized PoC hit GitHub June 10 \u2014 five days after our post, before most feeds flagged it.", "creation_timestamp": "2026-06-11T18:39:20.507953Z"} {"uuid": "948b8545-3e99-4a51-8be8-b194c9bc98dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnzuqtxba72h", "content": "CVE-2026-20245, Cisco SD-WAN Manager. We mapped the SD-WAN Manager CVE chain May 16, then called this specific zero-day June 5. The weaponized PoC hit GitHub June 10 \u2014 five days after our post, before most feeds flagged it.", "creation_timestamp": "2026-06-11T18:39:20.507953Z"} https://vulnerability.circl.lu/sighting/948b8545-3e99-4a51-8be8-b194c9bc98dd/export Thu, 11 Jun 2026 18:39:20 +0000