Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 25 Jun 2026 13:43:29 +0000 e514e46d-c445-4f1c-8495-23487eed2746 https://vulnerability.circl.lu/sighting/e514e46d-c445-4f1c-8495-23487eed2746/export {"uuid": "e514e46d-c445-4f1c-8495-23487eed2746", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hlft2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:42.854403Z"} {"uuid": "e514e46d-c445-4f1c-8495-23487eed2746", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hlft2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:42.854403Z"} https://vulnerability.circl.lu/sighting/e514e46d-c445-4f1c-8495-23487eed2746/export Tue, 23 Jun 2026 14:49:42 +0000 b2c74d06-cd5b-462b-8eb5-202a6eef8616 https://vulnerability.circl.lu/sighting/b2c74d06-cd5b-462b-8eb5-202a6eef8616/export {"uuid": "b2c74d06-cd5b-462b-8eb5-202a6eef8616", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hmf32l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:43.689672Z"} {"uuid": "b2c74d06-cd5b-462b-8eb5-202a6eef8616", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hmf32l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:43.689672Z"} https://vulnerability.circl.lu/sighting/b2c74d06-cd5b-462b-8eb5-202a6eef8616/export Tue, 23 Jun 2026 14:49:43 +0000 1de690d9-f670-4e9a-a238-18f68711c23b https://vulnerability.circl.lu/sighting/1de690d9-f670-4e9a-a238-18f68711c23b/export {"uuid": "1de690d9-f670-4e9a-a238-18f68711c23b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hned2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:44.548665Z"} {"uuid": "1de690d9-f670-4e9a-a238-18f68711c23b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hned2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:44.548665Z"} https://vulnerability.circl.lu/sighting/1de690d9-f670-4e9a-a238-18f68711c23b/export Tue, 23 Jun 2026 14:49:44 +0000 748ab998-bebf-45e5-98f9-8758b4cf8935 https://vulnerability.circl.lu/sighting/748ab998-bebf-45e5-98f9-8758b4cf8935/export {"uuid": "748ab998-bebf-45e5-98f9-8758b4cf8935", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hnee2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:45.376469Z"} {"uuid": "748ab998-bebf-45e5-98f9-8758b4cf8935", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hnee2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:45.376469Z"} https://vulnerability.circl.lu/sighting/748ab998-bebf-45e5-98f9-8758b4cf8935/export Tue, 23 Jun 2026 14:49:45 +0000 b9877a56-051e-48fd-ac71-1975eb2ba779 https://vulnerability.circl.lu/sighting/b9877a56-051e-48fd-ac71-1975eb2ba779/export {"uuid": "b9877a56-051e-48fd-ac71-1975eb2ba779", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hnef2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:46.203064Z"} {"uuid": "b9877a56-051e-48fd-ac71-1975eb2ba779", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3moxnj6hnef2l", "content": "2/ \ud83c\udfac PATCH NOW. PixelSmash (CVE-2026-8461, CVSS 8.8) in FFmpeg's video decoder. One malicious AVI/MKV/MOV file can compromise Jellyfin, Kodi, OBS, Emby, Nextcloud. Zero click on home servers. Fix: FFmpeg 8.1.2, released June 17. (JFrog/BleepingComputer)", "creation_timestamp": "2026-06-23T14:49:46.203064Z"} https://vulnerability.circl.lu/sighting/b9877a56-051e-48fd-ac71-1975eb2ba779/export Tue, 23 Jun 2026 14:49:46 +0000 7f38a974-219a-42cb-9399-0ed078b05f2b https://vulnerability.circl.lu/sighting/7f38a974-219a-42cb-9399-0ed078b05f2b/export {"uuid": "7f38a974-219a-42cb-9399-0ed078b05f2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3moyq2yopls23", "content": "FFmpeg \u306e MagicYUV\u30c7\u30b3\u30fc\u30c0\u30fc\u306b\u6df1\u523b\u306a\u8106\u5f31\u6027 PixelSmash-CVE-2026-8461\nrocket-boys.co.jp/security-mea...\n\n#\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56Lab #security #securitynews", "creation_timestamp": "2026-06-24T01:08:07.265584Z"} {"uuid": "7f38a974-219a-42cb-9399-0ed078b05f2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3moyq2yopls23", "content": "FFmpeg \u306e MagicYUV\u30c7\u30b3\u30fc\u30c0\u30fc\u306b\u6df1\u523b\u306a\u8106\u5f31\u6027 PixelSmash-CVE-2026-8461\nrocket-boys.co.jp/security-mea...\n\n#\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56Lab #security #securitynews", "creation_timestamp": "2026-06-24T01:08:07.265584Z"} https://vulnerability.circl.lu/sighting/7f38a974-219a-42cb-9399-0ed078b05f2b/export Wed, 24 Jun 2026 01:08:07 +0000 9923d8ac-233c-430f-b9eb-05e4ef84d73b https://vulnerability.circl.lu/sighting/9923d8ac-233c-430f-b9eb-05e4ef84d73b/export {"uuid": "9923d8ac-233c-430f-b9eb-05e4ef84d73b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/niiqo.bsky.social/post/3mozp3ef3og2w", "content": "PixelSmash : une faille FFmpeg expose Jellyfin au RCE\n\nwww.it-connect.fr/pixelsmash-u...\n\nPixelSmash est une faille critique de FFmpeg (CVE-2026-8461) permettant d'ex\u00e9cuter du code \u00e0 distance sur un serveur Jellyfin via un simple fichier vid\u00e9o pi\u00e9g\u00e9.\n\nLe post PixelSmash : une faille FFmp\u2026", "creation_timestamp": "2026-06-24T10:23:05.659368Z"} {"uuid": "9923d8ac-233c-430f-b9eb-05e4ef84d73b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/niiqo.bsky.social/post/3mozp3ef3og2w", "content": "PixelSmash : une faille FFmpeg expose Jellyfin au RCE\n\nwww.it-connect.fr/pixelsmash-u...\n\nPixelSmash est une faille critique de FFmpeg (CVE-2026-8461) permettant d'ex\u00e9cuter du code \u00e0 distance sur un serveur Jellyfin via un simple fichier vid\u00e9o pi\u00e9g\u00e9.\n\nLe post PixelSmash : une faille FFmp\u2026", "creation_timestamp": "2026-06-24T10:23:05.659368Z"} https://vulnerability.circl.lu/sighting/9923d8ac-233c-430f-b9eb-05e4ef84d73b/export Wed, 24 Jun 2026 10:23:05 +0000 ca4465ef-2f93-41ed-bfcf-d017435f84b6 https://vulnerability.circl.lu/sighting/ca4465ef-2f93-41ed-bfcf-d017435f84b6/export {"uuid": "ca4465ef-2f93-41ed-bfcf-d017435f84b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mp2hd3u43l2q", "content": "A critical vulnerability, CVE-2026-8461 (\"PixelSmash\"), in FFmpeg's MagicYUV decoder allows remote code execution via crafted media files. The flaw, with a CVSS score of 8.8, affects applications like Kodi and Jellyfin, enabling attackers to exploit the bug through media file uploads.", "creation_timestamp": "2026-06-24T17:36:55.452364Z"} {"uuid": "ca4465ef-2f93-41ed-bfcf-d017435f84b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mp2hd3u43l2q", "content": "A critical vulnerability, CVE-2026-8461 (\"PixelSmash\"), in FFmpeg's MagicYUV decoder allows remote code execution via crafted media files. The flaw, with a CVSS score of 8.8, affects applications like Kodi and Jellyfin, enabling attackers to exploit the bug through media file uploads.", "creation_timestamp": "2026-06-24T17:36:55.452364Z"} https://vulnerability.circl.lu/sighting/ca4465ef-2f93-41ed-bfcf-d017435f84b6/export Wed, 24 Jun 2026 17:36:55 +0000 c591dca3-d64a-41dc-bcee-3df97e422e33 https://vulnerability.circl.lu/sighting/c591dca3-d64a-41dc-bcee-3df97e422e33/export {"uuid": "c591dca3-d64a-41dc-bcee-3df97e422e33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mp2j3hfug4n2", "content": "PixelSmash flaw turns video files into attack tools Researchers have found a critical FFmpeg flaw that could let attackers use a malicious video file to compromise vulnerable systems. A newly disco...\n\n#Bugs #News #CVE-2026-8461 #ffmpeg #MagicYUV\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-24T18:08:30.237137Z"} {"uuid": "c591dca3-d64a-41dc-bcee-3df97e422e33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mp2j3hfug4n2", "content": "PixelSmash flaw turns video files into attack tools Researchers have found a critical FFmpeg flaw that could let attackers use a malicious video file to compromise vulnerable systems. A newly disco...\n\n#Bugs #News #CVE-2026-8461 #ffmpeg #MagicYUV\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-24T18:08:30.237137Z"} https://vulnerability.circl.lu/sighting/c591dca3-d64a-41dc-bcee-3df97e422e33/export Wed, 24 Jun 2026 18:08:30 +0000 1a1b4672-0df4-44bd-83de-0a9d8baec957 https://vulnerability.circl.lu/sighting/1a1b4672-0df4-44bd-83de-0a9d8baec957/export {"uuid": "1a1b4672-0df4-44bd-83de-0a9d8baec957", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mp2jk54sbh2c", "content": "PixelSmash CVE-2026-8461: The Tiny Video File Flaw That Could Give Attackers Control Over FFmpeg Systems +\u00a0Video\n\nIntroduction: When a Simple Video Preview Becomes a Security Threat Modern technology depends heavily on invisible software layers that most users never notice. Every time a computer\u2026", "creation_timestamp": "2026-06-24T18:16:35.843454Z"} {"uuid": "1a1b4672-0df4-44bd-83de-0a9d8baec957", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8461", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mp2jk54sbh2c", "content": "PixelSmash CVE-2026-8461: The Tiny Video File Flaw That Could Give Attackers Control Over FFmpeg Systems +\u00a0Video\n\nIntroduction: When a Simple Video Preview Becomes a Security Threat Modern technology depends heavily on invisible software layers that most users never notice. Every time a computer\u2026", "creation_timestamp": "2026-06-24T18:16:35.843454Z"} https://vulnerability.circl.lu/sighting/1a1b4672-0df4-44bd-83de-0a9d8baec957/export Wed, 24 Jun 2026 18:16:35 +0000