<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 12 Jul 2026 03:57:22 +0000</lastBuildDate>
    <item>
      <title>483d6142-e5a8-4fdc-aa9c-b0e0f639de6e</title>
      <link>https://vulnerability.circl.lu/sighting/483d6142-e5a8-4fdc-aa9c-b0e0f639de6e/export</link>
      <description>{"uuid": "483d6142-e5a8-4fdc-aa9c-b0e0f639de6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55429", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqa2y2ktgq25", "content": "\ud83d\udccc CVE-2026-55429 - Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7, 2.32.7, 2.33.8, and 2.34.2, `UpsertWo... https://www.cyberhub.blog/cves/CVE-2026-55429", "creation_timestamp": "2026-07-09T16:37:07.045779Z"}</description>
      <content:encoded>{"uuid": "483d6142-e5a8-4fdc-aa9c-b0e0f639de6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55429", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqa2y2ktgq25", "content": "\ud83d\udccc CVE-2026-55429 - Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7, 2.32.7, 2.33.8, and 2.34.2, `UpsertWo... https://www.cyberhub.blog/cves/CVE-2026-55429", "creation_timestamp": "2026-07-09T16:37:07.045779Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/483d6142-e5a8-4fdc-aa9c-b0e0f639de6e/export</guid>
      <pubDate>Thu, 09 Jul 2026 16:37:07 +0000</pubDate>
    </item>
    <item>
      <title>43facbf9-5a58-4f13-bc46-b207b5e8d9d8</title>
      <link>https://vulnerability.circl.lu/sighting/43facbf9-5a58-4f13-bc46-b207b5e8d9d8/export</link>
      <description>{"uuid": "43facbf9-5a58-4f13-bc46-b207b5e8d9d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55429", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq46vx56ta24", "content": "CVE-2026-55429 - Coder's workspace app upsert allows cross-workspace agent rebinding via user-controlled app ID\nCVE ID : CVE-2026-55429\n \n Published : July 8, 2026, 12:16 a.m. | 2\u00a0hours, 58\u00a0minutes ago\n \n Description : Coder allows organizations to provision remote development...", "creation_timestamp": "2026-07-08T03:36:52.029982Z"}</description>
      <content:encoded>{"uuid": "43facbf9-5a58-4f13-bc46-b207b5e8d9d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55429", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq46vx56ta24", "content": "CVE-2026-55429 - Coder's workspace app upsert allows cross-workspace agent rebinding via user-controlled app ID\nCVE ID : CVE-2026-55429\n \n Published : July 8, 2026, 12:16 a.m. | 2\u00a0hours, 58\u00a0minutes ago\n \n Description : Coder allows organizations to provision remote development...", "creation_timestamp": "2026-07-08T03:36:52.029982Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/43facbf9-5a58-4f13-bc46-b207b5e8d9d8/export</guid>
      <pubDate>Wed, 08 Jul 2026 03:36:52 +0000</pubDate>
    </item>
    <item>
      <title>882a9cc2-a086-4663-85ff-6067936599ce</title>
      <link>https://vulnerability.circl.lu/sighting/882a9cc2-a086-4663-85ff-6067936599ce/export</link>
      <description>{"uuid": "882a9cc2-a086-4663-85ff-6067936599ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55428", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq46mypl2d2k", "content": "CVE-2026-55428 - Coder: Route hijacking through lack of validation of agent-supplied AllowedIPs in tailnet coordinator\nCVE ID : CVE-2026-55428\n \n Published : July 8, 2026, 12:16 a.m. | 2\u00a0hours, 58\u00a0minutes ago\n \n Description : Coder allows organizations to provision remote deve...", "creation_timestamp": "2026-07-08T03:31:51.842746Z"}</description>
      <content:encoded>{"uuid": "882a9cc2-a086-4663-85ff-6067936599ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55428", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq46mypl2d2k", "content": "CVE-2026-55428 - Coder: Route hijacking through lack of validation of agent-supplied AllowedIPs in tailnet coordinator\nCVE ID : CVE-2026-55428\n \n Published : July 8, 2026, 12:16 a.m. | 2\u00a0hours, 58\u00a0minutes ago\n \n Description : Coder allows organizations to provision remote deve...", "creation_timestamp": "2026-07-08T03:31:51.842746Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/882a9cc2-a086-4663-85ff-6067936599ce/export</guid>
      <pubDate>Wed, 08 Jul 2026 03:31:51 +0000</pubDate>
    </item>
    <item>
      <title>d41c5b6b-b447-431a-891c-0fbbba8ad462</title>
      <link>https://vulnerability.circl.lu/sighting/d41c5b6b-b447-431a-891c-0fbbba8ad462/export</link>
      <description>{"uuid": "d41c5b6b-b447-431a-891c-0fbbba8ad462", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55427", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq46e2c6zy2t", "content": "CVE-2026-55427 - Coder vulnerable to SSH config injection via unsanitized server-supplied values in `coder config-ssh`\nCVE ID : CVE-2026-55427\n \n Published : July 8, 2026, 12:16 a.m. | 2\u00a0hours, 58\u00a0minutes ago\n \n Description : Coder allows organizations to provision remote deve...", "creation_timestamp": "2026-07-08T03:26:51.851444Z"}</description>
      <content:encoded>{"uuid": "d41c5b6b-b447-431a-891c-0fbbba8ad462", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55427", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq46e2c6zy2t", "content": "CVE-2026-55427 - Coder vulnerable to SSH config injection via unsanitized server-supplied values in `coder config-ssh`\nCVE ID : CVE-2026-55427\n \n Published : July 8, 2026, 12:16 a.m. | 2\u00a0hours, 58\u00a0minutes ago\n \n Description : Coder allows organizations to provision remote deve...", "creation_timestamp": "2026-07-08T03:26:51.851444Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d41c5b6b-b447-431a-891c-0fbbba8ad462/export</guid>
      <pubDate>Wed, 08 Jul 2026 03:26:51 +0000</pubDate>
    </item>
    <item>
      <title>f9330779-be3d-4b46-88bd-5b0b90739ee8</title>
      <link>https://vulnerability.circl.lu/sighting/f9330779-be3d-4b46-88bd-5b0b90739ee8/export</link>
      <description>{"uuid": "f9330779-be3d-4b46-88bd-5b0b90739ee8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-55426", "type": "published-proof-of-concept", "source": "https://github.com/Linuxfabrik/monitoring-plugins/security/advisories/GHSA-798h-hpph-m24j", "content": "", "creation_timestamp": "2026-07-06T22:35:11.893462Z"}</description>
      <content:encoded>{"uuid": "f9330779-be3d-4b46-88bd-5b0b90739ee8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-55426", "type": "published-proof-of-concept", "source": "https://github.com/Linuxfabrik/monitoring-plugins/security/advisories/GHSA-798h-hpph-m24j", "content": "", "creation_timestamp": "2026-07-06T22:35:11.893462Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f9330779-be3d-4b46-88bd-5b0b90739ee8/export</guid>
      <pubDate>Mon, 06 Jul 2026 22:35:11 +0000</pubDate>
    </item>
    <item>
      <title>dd63280c-be08-4380-8a9d-07409546da3a</title>
      <link>https://vulnerability.circl.lu/sighting/dd63280c-be08-4380-8a9d-07409546da3a/export</link>
      <description>{"uuid": "dd63280c-be08-4380-8a9d-07409546da3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5542", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3miqcofacya2o", "content": "", "creation_timestamp": "2026-04-05T08:15:55.095786Z"}</description>
      <content:encoded>{"uuid": "dd63280c-be08-4380-8a9d-07409546da3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5542", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3miqcofacya2o", "content": "", "creation_timestamp": "2026-04-05T08:15:55.095786Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/dd63280c-be08-4380-8a9d-07409546da3a/export</guid>
      <pubDate>Sun, 05 Apr 2026 08:15:55 +0000</pubDate>
    </item>
  </channel>
</rss>
