<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 04 Jul 2026 21:03:19 +0000</lastBuildDate>
    <item>
      <title>57987558-98f1-4f25-8b00-9a3b4f812ae0</title>
      <link>https://vulnerability.circl.lu/sighting/57987558-98f1-4f25-8b00-9a3b4f812ae0/export</link>
      <description>{"uuid": "57987558-98f1-4f25-8b00-9a3b4f812ae0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34909", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mpt5vdshuc2m", "content": "UniFi OS\u306e\u91cd\u5927\u306a\u30d0\u30b0\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u306a\u3057\u3067\u30cf\u30c3\u30ab\u30fc\u304c\u30eb\u30fc\u30c8\u6a29\u9650\u3092\u53d6\u5f97\u3067\u304d\u308b\u3002\n\n\u653b\u6483\u8005\u306f\u3001Ubiquiti UniFi OS\u30b5\u30fc\u30d0\u30fc\u306b\u5b58\u5728\u3059\u308b\u65e2\u306b\u4fee\u6b63\u6e08\u307f\u306e3\u3064\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u8a8d\u8a3c\u306a\u3057\u3067root\u6a29\u9650\u3067\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3067\u304d\u308b\u3002\n\n\u3053\u308c\u3089\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u554f\u984c\u306f\u3001CVE-2026-34908\u3001CVE-2026-34909\u3001\u304a\u3088\u3073CVE-2026-34910\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306f5\u6708\u306b\u5bfe\u51e6\u6e08\u307f\u3067\u3001UniFi OS Server\u30d0\u30fc\u30b8\u30e7\u30f35.0.6\u4ee5\u524d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306b\u5f71\u97ff\u3057\u307e\u3059\u3002\n\n\u3053\u308c\u30893\u3064\u306e\u8106\u5f31\u6027\u306f\u3044\u305a\u308c\u3082\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3078\u306e\u30a2\u30af\u30bb\u30b9\u3092\u5fc5\u8981\u3068\u3059\u308b\u306b\u3082\u304b\u304b\u308f\u3089\u305a\u3001\u6700\u9ad8\u30ec\u30d9\u30eb\u306e...", "creation_timestamp": "2026-07-04T13:24:46.322471Z"}</description>
      <content:encoded>{"uuid": "57987558-98f1-4f25-8b00-9a3b4f812ae0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34909", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mpt5vdshuc2m", "content": "UniFi OS\u306e\u91cd\u5927\u306a\u30d0\u30b0\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u306a\u3057\u3067\u30cf\u30c3\u30ab\u30fc\u304c\u30eb\u30fc\u30c8\u6a29\u9650\u3092\u53d6\u5f97\u3067\u304d\u308b\u3002\n\n\u653b\u6483\u8005\u306f\u3001Ubiquiti UniFi OS\u30b5\u30fc\u30d0\u30fc\u306b\u5b58\u5728\u3059\u308b\u65e2\u306b\u4fee\u6b63\u6e08\u307f\u306e3\u3064\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u8a8d\u8a3c\u306a\u3057\u3067root\u6a29\u9650\u3067\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3067\u304d\u308b\u3002\n\n\u3053\u308c\u3089\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u554f\u984c\u306f\u3001CVE-2026-34908\u3001CVE-2026-34909\u3001\u304a\u3088\u3073CVE-2026-34910\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306f5\u6708\u306b\u5bfe\u51e6\u6e08\u307f\u3067\u3001UniFi OS Server\u30d0\u30fc\u30b8\u30e7\u30f35.0.6\u4ee5\u524d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306b\u5f71\u97ff\u3057\u307e\u3059\u3002\n\n\u3053\u308c\u30893\u3064\u306e\u8106\u5f31\u6027\u306f\u3044\u305a\u308c\u3082\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3078\u306e\u30a2\u30af\u30bb\u30b9\u3092\u5fc5\u8981\u3068\u3059\u308b\u306b\u3082\u304b\u304b\u308f\u3089\u305a\u3001\u6700\u9ad8\u30ec\u30d9\u30eb\u306e...", "creation_timestamp": "2026-07-04T13:24:46.322471Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/57987558-98f1-4f25-8b00-9a3b4f812ae0/export</guid>
      <pubDate>Sat, 04 Jul 2026 13:24:46 +0000</pubDate>
    </item>
    <item>
      <title>1723f11d-f207-431b-b8ce-9a6822d87379</title>
      <link>https://vulnerability.circl.lu/sighting/1723f11d-f207-431b-b8ce-9a6822d87379/export</link>
      <description>{"uuid": "1723f11d-f207-431b-b8ce-9a6822d87379", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mpt5vdshuc2m", "content": "UniFi OS\u306e\u91cd\u5927\u306a\u30d0\u30b0\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u306a\u3057\u3067\u30cf\u30c3\u30ab\u30fc\u304c\u30eb\u30fc\u30c8\u6a29\u9650\u3092\u53d6\u5f97\u3067\u304d\u308b\u3002\n\n\u653b\u6483\u8005\u306f\u3001Ubiquiti UniFi OS\u30b5\u30fc\u30d0\u30fc\u306b\u5b58\u5728\u3059\u308b\u65e2\u306b\u4fee\u6b63\u6e08\u307f\u306e3\u3064\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u8a8d\u8a3c\u306a\u3057\u3067root\u6a29\u9650\u3067\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3067\u304d\u308b\u3002\n\n\u3053\u308c\u3089\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u554f\u984c\u306f\u3001CVE-2026-34908\u3001CVE-2026-34909\u3001\u304a\u3088\u3073CVE-2026-34910\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306f5\u6708\u306b\u5bfe\u51e6\u6e08\u307f\u3067\u3001UniFi OS Server\u30d0\u30fc\u30b8\u30e7\u30f35.0.6\u4ee5\u524d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306b\u5f71\u97ff\u3057\u307e\u3059\u3002\n\n\u3053\u308c\u30893\u3064\u306e\u8106\u5f31\u6027\u306f\u3044\u305a\u308c\u3082\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3078\u306e\u30a2\u30af\u30bb\u30b9\u3092\u5fc5\u8981\u3068\u3059\u308b\u306b\u3082\u304b\u304b\u308f\u3089\u305a\u3001\u6700\u9ad8\u30ec\u30d9\u30eb\u306e...", "creation_timestamp": "2026-07-04T13:24:46.276124Z"}</description>
      <content:encoded>{"uuid": "1723f11d-f207-431b-b8ce-9a6822d87379", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mpt5vdshuc2m", "content": "UniFi OS\u306e\u91cd\u5927\u306a\u30d0\u30b0\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u306a\u3057\u3067\u30cf\u30c3\u30ab\u30fc\u304c\u30eb\u30fc\u30c8\u6a29\u9650\u3092\u53d6\u5f97\u3067\u304d\u308b\u3002\n\n\u653b\u6483\u8005\u306f\u3001Ubiquiti UniFi OS\u30b5\u30fc\u30d0\u30fc\u306b\u5b58\u5728\u3059\u308b\u65e2\u306b\u4fee\u6b63\u6e08\u307f\u306e3\u3064\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u8a8d\u8a3c\u306a\u3057\u3067root\u6a29\u9650\u3067\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3067\u304d\u308b\u3002\n\n\u3053\u308c\u3089\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u554f\u984c\u306f\u3001CVE-2026-34908\u3001CVE-2026-34909\u3001\u304a\u3088\u3073CVE-2026-34910\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306f5\u6708\u306b\u5bfe\u51e6\u6e08\u307f\u3067\u3001UniFi OS Server\u30d0\u30fc\u30b8\u30e7\u30f35.0.6\u4ee5\u524d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306b\u5f71\u97ff\u3057\u307e\u3059\u3002\n\n\u3053\u308c\u30893\u3064\u306e\u8106\u5f31\u6027\u306f\u3044\u305a\u308c\u3082\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3078\u306e\u30a2\u30af\u30bb\u30b9\u3092\u5fc5\u8981\u3068\u3059\u308b\u306b\u3082\u304b\u304b\u308f\u3089\u305a\u3001\u6700\u9ad8\u30ec\u30d9\u30eb\u306e...", "creation_timestamp": "2026-07-04T13:24:46.276124Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1723f11d-f207-431b-b8ce-9a6822d87379/export</guid>
      <pubDate>Sat, 04 Jul 2026 13:24:46 +0000</pubDate>
    </item>
    <item>
      <title>3f3eb9be-ae9e-4829-8136-3201420fffa4</title>
      <link>https://vulnerability.circl.lu/sighting/3f3eb9be-ae9e-4829-8136-3201420fffa4/export</link>
      <description>{"uuid": "3f3eb9be-ae9e-4829-8136-3201420fffa4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-34909", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-028", "content": "", "creation_timestamp": "2026-07-01T02:45:12.022450Z"}</description>
      <content:encoded>{"uuid": "3f3eb9be-ae9e-4829-8136-3201420fffa4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-34909", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-028", "content": "", "creation_timestamp": "2026-07-01T02:45:12.022450Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3f3eb9be-ae9e-4829-8136-3201420fffa4/export</guid>
      <pubDate>Wed, 01 Jul 2026 02:45:12 +0000</pubDate>
    </item>
    <item>
      <title>33d5a4b7-3b3e-4784-957e-baa9ebdec230</title>
      <link>https://vulnerability.circl.lu/sighting/33d5a4b7-3b3e-4784-957e-baa9ebdec230/export</link>
      <description>{"uuid": "33d5a4b7-3b3e-4784-957e-baa9ebdec230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-028", "content": "", "creation_timestamp": "2026-07-01T02:45:09.709515Z"}</description>
      <content:encoded>{"uuid": "33d5a4b7-3b3e-4784-957e-baa9ebdec230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-028", "content": "", "creation_timestamp": "2026-07-01T02:45:09.709515Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/33d5a4b7-3b3e-4784-957e-baa9ebdec230/export</guid>
      <pubDate>Wed, 01 Jul 2026 02:45:09 +0000</pubDate>
    </item>
    <item>
      <title>255f3ee9-ed58-407c-98bc-98ea9b1f20de</title>
      <link>https://vulnerability.circl.lu/sighting/255f3ee9-ed58-407c-98bc-98ea9b1f20de/export</link>
      <description>{"uuid": "255f3ee9-ed58-407c-98bc-98ea9b1f20de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mp4vsuypfp2r", "content": "\ud83d\udea8 CISA KEV ALERT: Critical flaws in Lantronix EDS5000 (CVE-2025-67038) &amp;amp; Ubiquiti UniFi OS (CVE-2026-34908) are actively exploited. Unauthenticated RCE with root access possible. Patch immediately! #CyberSecurity #Vulnerability #PatchNow\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-06-25T17:01:33.947066Z"}</description>
      <content:encoded>{"uuid": "255f3ee9-ed58-407c-98bc-98ea9b1f20de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mp4vsuypfp2r", "content": "\ud83d\udea8 CISA KEV ALERT: Critical flaws in Lantronix EDS5000 (CVE-2025-67038) &amp;amp; Ubiquiti UniFi OS (CVE-2026-34908) are actively exploited. Unauthenticated RCE with root access possible. Patch immediately! #CyberSecurity #Vulnerability #PatchNow\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-06-25T17:01:33.947066Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/255f3ee9-ed58-407c-98bc-98ea9b1f20de/export</guid>
      <pubDate>Thu, 25 Jun 2026 17:01:33 +0000</pubDate>
    </item>
    <item>
      <title>90222bfb-4932-46b6-8161-e72214cb5776</title>
      <link>https://vulnerability.circl.lu/sighting/90222bfb-4932-46b6-8161-e72214cb5776/export</link>
      <description>{"uuid": "90222bfb-4932-46b6-8161-e72214cb5776", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116811816664558410", "content": "\ud83d\udcf0 CISA Mandates Urgent Patching for Actively Exploited Flaws in Lantronix and Ubiquiti Devices\n\ud83d\udea8 CISA KEV ALERT: Critical flaws in Lantronix EDS5000 (CVE-2025-67038) &amp;amp; Ubiquiti UniFi OS (CVE-2026-34908) are actively exploited. Unauthenticated RCE with root access possible. Patch immediately! #CyberSecurity #Vulnerability #PatchNow\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/cisa-adds-critical-lantronix-and-ubiquiti-flaws-to-kev-catalog/?utm_sourc\u2026", "creation_timestamp": "2026-06-25T17:01:17.877784Z"}</description>
      <content:encoded>{"uuid": "90222bfb-4932-46b6-8161-e72214cb5776", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116811816664558410", "content": "\ud83d\udcf0 CISA Mandates Urgent Patching for Actively Exploited Flaws in Lantronix and Ubiquiti Devices\n\ud83d\udea8 CISA KEV ALERT: Critical flaws in Lantronix EDS5000 (CVE-2025-67038) &amp;amp; Ubiquiti UniFi OS (CVE-2026-34908) are actively exploited. Unauthenticated RCE with root access possible. Patch immediately! #CyberSecurity #Vulnerability #PatchNow\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/cisa-adds-critical-lantronix-and-ubiquiti-flaws-to-kev-catalog/?utm_sourc\u2026", "creation_timestamp": "2026-06-25T17:01:17.877784Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/90222bfb-4932-46b6-8161-e72214cb5776/export</guid>
      <pubDate>Thu, 25 Jun 2026 17:01:17 +0000</pubDate>
    </item>
    <item>
      <title>0c6c25e1-59ba-479d-88aa-4059c689923e</title>
      <link>https://vulnerability.circl.lu/sighting/0c6c25e1-59ba-479d-88aa-4059c689923e/export</link>
      <description>{"uuid": "0c6c25e1-59ba-479d-88aa-4059c689923e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mp242uf3ov2y", "content": "CISA added 3 actively exploited Ubiquiti UniFi OS flaws, including CVE-2026-34908, -34909, and -34910. BishopFox says chained bugs can bypass auth, inject commands, and enable rogue admin creation. #Ubiquiti #UniFiOS #CISA", "creation_timestamp": "2026-06-24T14:15:24.622472Z"}</description>
      <content:encoded>{"uuid": "0c6c25e1-59ba-479d-88aa-4059c689923e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mp242uf3ov2y", "content": "CISA added 3 actively exploited Ubiquiti UniFi OS flaws, including CVE-2026-34908, -34909, and -34910. BishopFox says chained bugs can bypass auth, inject commands, and enable rogue admin creation. #Ubiquiti #UniFiOS #CISA", "creation_timestamp": "2026-06-24T14:15:24.622472Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0c6c25e1-59ba-479d-88aa-4059c689923e/export</guid>
      <pubDate>Wed, 24 Jun 2026 14:15:24 +0000</pubDate>
    </item>
    <item>
      <title>0db9a27c-77c1-4a21-8c24-885758effb30</title>
      <link>https://vulnerability.circl.lu/sighting/0db9a27c-77c1-4a21-8c24-885758effb30/export</link>
      <description>{"uuid": "0db9a27c-77c1-4a21-8c24-885758effb30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116805325963552354", "content": "CRITICAL UniFi OS vulnerabilities (CVE-2026-34908/09/10) allow remote, unauthenticated attackers to bypass auth and execute commands (pre-5.0.8). Exploited in the wild. Patch ASAP: https://radar.offseq.com/threat/critical-ubiquiti-vulnerabilities-in-attackers-cro-da638630474e46d7 #OffSeq #infosec #Ubiquiti #vulnerability", "creation_timestamp": "2026-06-24T13:30:31.472177Z"}</description>
      <content:encoded>{"uuid": "0db9a27c-77c1-4a21-8c24-885758effb30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116805325963552354", "content": "CRITICAL UniFi OS vulnerabilities (CVE-2026-34908/09/10) allow remote, unauthenticated attackers to bypass auth and execute commands (pre-5.0.8). Exploited in the wild. Patch ASAP: https://radar.offseq.com/threat/critical-ubiquiti-vulnerabilities-in-attackers-cro-da638630474e46d7 #OffSeq #infosec #Ubiquiti #vulnerability", "creation_timestamp": "2026-06-24T13:30:31.472177Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0db9a27c-77c1-4a21-8c24-885758effb30/export</guid>
      <pubDate>Wed, 24 Jun 2026 13:30:31 +0000</pubDate>
    </item>
    <item>
      <title>6b329ed0-1a0b-45e5-8749-c45797d7d246</title>
      <link>https://vulnerability.circl.lu/sighting/6b329ed0-1a0b-45e5-8749-c45797d7d246/export</link>
      <description>{"uuid": "6b329ed0-1a0b-45e5-8749-c45797d7d246", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mozwu5rpct2w", "content": "Threat actors exploited three critical Ubiquiti UniFi OS vulnerabilities (CVE-2026-34908/34909/34910) to bypass authentication, access/manipulate files, and execute command injection.\n", "creation_timestamp": "2026-06-24T12:42:25.590280Z"}</description>
      <content:encoded>{"uuid": "6b329ed0-1a0b-45e5-8749-c45797d7d246", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mozwu5rpct2w", "content": "Threat actors exploited three critical Ubiquiti UniFi OS vulnerabilities (CVE-2026-34908/34909/34910) to bypass authentication, access/manipulate files, and execute command injection.\n", "creation_timestamp": "2026-06-24T12:42:25.590280Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6b329ed0-1a0b-45e5-8749-c45797d7d246/export</guid>
      <pubDate>Wed, 24 Jun 2026 12:42:25 +0000</pubDate>
    </item>
    <item>
      <title>7cb56bc8-6441-4a40-8aa4-6b75c2eecded</title>
      <link>https://vulnerability.circl.lu/sighting/7cb56bc8-6441-4a40-8aa4-6b75c2eecded/export</link>
      <description>{"uuid": "7cb56bc8-6441-4a40-8aa4-6b75c2eecded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3moy6knfu2c2z", "content": "\ud83d\udd34 EXPLOITED\n\nPatched in May. Being exploited in June.\n\nIf you self-host UniFi OS Server, anyone who can reach its web page can get root with no login.\n\nUpdate to 5.0.8 now and lock down who can reach it. (CVE-2026-34908/909/910)", "creation_timestamp": "2026-06-23T19:54:42.525621Z"}</description>
      <content:encoded>{"uuid": "7cb56bc8-6441-4a40-8aa4-6b75c2eecded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3moy6knfu2c2z", "content": "\ud83d\udd34 EXPLOITED\n\nPatched in May. Being exploited in June.\n\nIf you self-host UniFi OS Server, anyone who can reach its web page can get root with no login.\n\nUpdate to 5.0.8 now and lock down who can reach it. (CVE-2026-34908/909/910)", "creation_timestamp": "2026-06-23T19:54:42.525621Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/7cb56bc8-6441-4a40-8aa4-6b75c2eecded/export</guid>
      <pubDate>Tue, 23 Jun 2026 19:54:42 +0000</pubDate>
    </item>
  </channel>
</rss>
