<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Mon, 13 Jul 2026 08:20:03 +0000</lastBuildDate>
    <item>
      <title>d6ba2f05-438a-4629-85b5-8b3bf969a956</title>
      <link>https://vulnerability.circl.lu/sighting/d6ba2f05-438a-4629-85b5-8b3bf969a956/export</link>
      <description>{"uuid": "d6ba2f05-438a-4629-85b5-8b3bf969a956", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mqhdpgrkyp25", "content": "\ud83d\udd12 Critical Dell BIOS flaw (CVE-2026-40639) allows instant recovery of admin passwords from SPI flash due to weak XOR encryption. Affects numerous Latitude, XPS &amp;amp; Wyse models. Physical access is all that's needed. Patch now! #Dell #BIOS #Vulnerabilit...\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-12T14:01:59.692874Z"}</description>
      <content:encoded>{"uuid": "d6ba2f05-438a-4629-85b5-8b3bf969a956", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mqhdpgrkyp25", "content": "\ud83d\udd12 Critical Dell BIOS flaw (CVE-2026-40639) allows instant recovery of admin passwords from SPI flash due to weak XOR encryption. Affects numerous Latitude, XPS &amp;amp; Wyse models. Physical access is all that's needed. Patch now! #Dell #BIOS #Vulnerabilit...\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-12T14:01:59.692874Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d6ba2f05-438a-4629-85b5-8b3bf969a956/export</guid>
      <pubDate>Sun, 12 Jul 2026 14:01:59 +0000</pubDate>
    </item>
    <item>
      <title>2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0</title>
      <link>https://vulnerability.circl.lu/sighting/2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0/export</link>
      <description>{"uuid": "2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40639", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116907368666921137", "content": "\ud83d\udcf0 Critical Dell BIOS Flaw Allows Plaintext Password Recovery in Milliseconds\n\ud83d\udd12 Critical Dell BIOS flaw (CVE-2026-40639) allows instant recovery of admin passwords from SPI flash due to weak XOR encryption. Affects numerous Latitude, XPS &amp;amp; Wyse models. Physical access is all that's needed. Patch now! #Dell #BIOS #Vulnerabilit...\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/dell-bios-flaw-cve-2026-40639-instant-password-recovery/?utm_source=mastodon\u2026", "creation_timestamp": "2026-07-12T14:01:19.301454Z"}</description>
      <content:encoded>{"uuid": "2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40639", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116907368666921137", "content": "\ud83d\udcf0 Critical Dell BIOS Flaw Allows Plaintext Password Recovery in Milliseconds\n\ud83d\udd12 Critical Dell BIOS flaw (CVE-2026-40639) allows instant recovery of admin passwords from SPI flash due to weak XOR encryption. Affects numerous Latitude, XPS &amp;amp; Wyse models. Physical access is all that's needed. Patch now! #Dell #BIOS #Vulnerabilit...\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/dell-bios-flaw-cve-2026-40639-instant-password-recovery/?utm_source=mastodon\u2026", "creation_timestamp": "2026-07-12T14:01:19.301454Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/2fd8a7a5-1844-4e9b-b63a-0d9e0cbdd3d0/export</guid>
      <pubDate>Sun, 12 Jul 2026 14:01:19 +0000</pubDate>
    </item>
    <item>
      <title>d86e64fa-5cde-489d-adff-500d43689482</title>
      <link>https://vulnerability.circl.lu/sighting/d86e64fa-5cde-489d-adff-500d43689482/export</link>
      <description>{"uuid": "d86e64fa-5cde-489d-adff-500d43689482", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mqf7fj763y2u", "content": "Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639)", "creation_timestamp": "2026-07-11T17:39:31.952664Z"}</description>
      <content:encoded>{"uuid": "d86e64fa-5cde-489d-adff-500d43689482", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mqf7fj763y2u", "content": "Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639)", "creation_timestamp": "2026-07-11T17:39:31.952664Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d86e64fa-5cde-489d-adff-500d43689482/export</guid>
      <pubDate>Sat, 11 Jul 2026 17:39:31 +0000</pubDate>
    </item>
    <item>
      <title>333a6b07-3a88-4d88-82b3-3358f7427a78</title>
      <link>https://vulnerability.circl.lu/sighting/333a6b07-3a88-4d88-82b3-3358f7427a78/export</link>
      <description>{"uuid": "333a6b07-3a88-4d88-82b3-3358f7427a78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mqdzkirt2z2k", "content": "Dell\u306eBIOS\u6b20\u9665\u3001SPI\u30d5\u30e9\u30c3\u30b7\u30e5\u304b\u3089\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u5fa9\u5143\u53ef\u80fd\u306b\n\nDell\u304cBIOS\u7ba1\u7406\u8005\u30d1\u30b9\u30ef\u30fc\u30c9\u304a\u3088\u3073\u30e6\u30fc\u30b6\u30fc\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u4fdd\u5b58\u3059\u308b\u65b9\u5f0f\u306b\u95a2\u3057\u3066\u3001\u65b0\u305f\u306b\u91cd\u5927\u306a\u6b20\u9665\u304c\u516c\u8868\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u308c\u306b\u3088\u308a\u3001\u30d5\u30e9\u30c3\u30b7\u30e5\u30c0\u30f3\u30d7\u304b\u3089\u308f\u305a\u304b\u6570\u30df\u30ea\u79d2\u3067\u5e73\u6587\u306e\u8a8d\u8a3c\u60c5\u5831\u3092\u5b8c\u5168\u306b\u5fa9\u5143\u3067\u304d\u3066\u3057\u307e\u3044\u307e\u3059\u3002 CVE-2026-40639(DSA-2026-197)\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u308b\u3053\u306e\u554f\u984c\u306f\u3001\u6697\u53f7\u5b66\u7684\u30cf\u30c3\u30b7\u30e5\u3067\u306f", "creation_timestamp": "2026-07-11T06:22:17.452252Z"}</description>
      <content:encoded>{"uuid": "333a6b07-3a88-4d88-82b3-3358f7427a78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40639", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mqdzkirt2z2k", "content": "Dell\u306eBIOS\u6b20\u9665\u3001SPI\u30d5\u30e9\u30c3\u30b7\u30e5\u304b\u3089\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u5fa9\u5143\u53ef\u80fd\u306b\n\nDell\u304cBIOS\u7ba1\u7406\u8005\u30d1\u30b9\u30ef\u30fc\u30c9\u304a\u3088\u3073\u30e6\u30fc\u30b6\u30fc\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u4fdd\u5b58\u3059\u308b\u65b9\u5f0f\u306b\u95a2\u3057\u3066\u3001\u65b0\u305f\u306b\u91cd\u5927\u306a\u6b20\u9665\u304c\u516c\u8868\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u308c\u306b\u3088\u308a\u3001\u30d5\u30e9\u30c3\u30b7\u30e5\u30c0\u30f3\u30d7\u304b\u3089\u308f\u305a\u304b\u6570\u30df\u30ea\u79d2\u3067\u5e73\u6587\u306e\u8a8d\u8a3c\u60c5\u5831\u3092\u5b8c\u5168\u306b\u5fa9\u5143\u3067\u304d\u3066\u3057\u307e\u3044\u307e\u3059\u3002 CVE-2026-40639(DSA-2026-197)\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u308b\u3053\u306e\u554f\u984c\u306f\u3001\u6697\u53f7\u5b66\u7684\u30cf\u30c3\u30b7\u30e5\u3067\u306f", "creation_timestamp": "2026-07-11T06:22:17.452252Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/333a6b07-3a88-4d88-82b3-3358f7427a78/export</guid>
      <pubDate>Sat, 11 Jul 2026 06:22:17 +0000</pubDate>
    </item>
    <item>
      <title>00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb</title>
      <link>https://vulnerability.circl.lu/sighting/00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb/export</link>
      <description>{"uuid": "00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40630", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpcmtzjxoj2y", "content": "\ud83d\udccc CVE-2026-40630 - A vulnerability in\u00a0\nSenseLive \n\nX3050\u2019s web management interface allows unauthorized access to certain configuration endpoints due to improper access ... https://www.cyberhub.blog/cves/CVE-2026-40630", "creation_timestamp": "2026-06-27T23:37:06.529604Z"}</description>
      <content:encoded>{"uuid": "00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40630", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpcmtzjxoj2y", "content": "\ud83d\udccc CVE-2026-40630 - A vulnerability in\u00a0\nSenseLive \n\nX3050\u2019s web management interface allows unauthorized access to certain configuration endpoints due to improper access ... https://www.cyberhub.blog/cves/CVE-2026-40630", "creation_timestamp": "2026-06-27T23:37:06.529604Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/00c5cff0-ea4f-4bb9-a73c-79bce3ba8eeb/export</guid>
      <pubDate>Sat, 27 Jun 2026 23:37:06 +0000</pubDate>
    </item>
    <item>
      <title>0ba17255-6766-4c6d-9a87-71dc4281bce4</title>
      <link>https://vulnerability.circl.lu/sighting/0ba17255-6766-4c6d-9a87-71dc4281bce4/export</link>
      <description>{"uuid": "0ba17255-6766-4c6d-9a87-71dc4281bce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40631", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/f5-products-multiple-vulnerabilities_20260515", "content": "", "creation_timestamp": "2026-05-14T18:00:00.000000Z"}</description>
      <content:encoded>{"uuid": "0ba17255-6766-4c6d-9a87-71dc4281bce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40631", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/f5-products-multiple-vulnerabilities_20260515", "content": "", "creation_timestamp": "2026-05-14T18:00:00.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0ba17255-6766-4c6d-9a87-71dc4281bce4/export</guid>
      <pubDate>Thu, 14 May 2026 18:00:00 +0000</pubDate>
    </item>
    <item>
      <title>1cc5c7a0-f4d3-4395-b9fb-4f470fa26075</title>
      <link>https://vulnerability.circl.lu/sighting/1cc5c7a0-f4d3-4395-b9fb-4f470fa26075/export</link>
      <description>{"uuid": "1cc5c7a0-f4d3-4395-b9fb-4f470fa26075", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40638", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlo4ohqfcm2k", "content": "CVE-2026-40638 - Dell PowerScale InsightIQ Execution of Code with Unnecessary Privileges\nCVE ID : CVE-2026-40638\n \n Published : May 12, 2026, 2:17 p.m. | 13\u00a0minutes ago\n \n Description : Dell PowerScale InsightIQ, versions 5.0.0 through 6.2.0, contains an execution with unneces...", "creation_timestamp": "2026-05-12T15:39:00.031856Z"}</description>
      <content:encoded>{"uuid": "1cc5c7a0-f4d3-4395-b9fb-4f470fa26075", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40638", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlo4ohqfcm2k", "content": "CVE-2026-40638 - Dell PowerScale InsightIQ Execution of Code with Unnecessary Privileges\nCVE ID : CVE-2026-40638\n \n Published : May 12, 2026, 2:17 p.m. | 13\u00a0minutes ago\n \n Description : Dell PowerScale InsightIQ, versions 5.0.0 through 6.2.0, contains an execution with unneces...", "creation_timestamp": "2026-05-12T15:39:00.031856Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1cc5c7a0-f4d3-4395-b9fb-4f470fa26075/export</guid>
      <pubDate>Tue, 12 May 2026 15:39:00 +0000</pubDate>
    </item>
    <item>
      <title>70919e48-e39e-4dbe-ae2e-b09a8c0c56d9</title>
      <link>https://vulnerability.circl.lu/sighting/70919e48-e39e-4dbe-ae2e-b09a8c0c56d9/export</link>
      <description>{"uuid": "70919e48-e39e-4dbe-ae2e-b09a8c0c56d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40636", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116557578982936259", "content": "Attention, elevated activities detected targeting Dell ECS and ObjectScale (CVE-2026-40636) https://vuldb.com/vuln/362603/cti", "creation_timestamp": "2026-05-11T19:25:11.729874Z"}</description>
      <content:encoded>{"uuid": "70919e48-e39e-4dbe-ae2e-b09a8c0c56d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40636", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116557578982936259", "content": "Attention, elevated activities detected targeting Dell ECS and ObjectScale (CVE-2026-40636) https://vuldb.com/vuln/362603/cti", "creation_timestamp": "2026-05-11T19:25:11.729874Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/70919e48-e39e-4dbe-ae2e-b09a8c0c56d9/export</guid>
      <pubDate>Mon, 11 May 2026 19:25:11 +0000</pubDate>
    </item>
    <item>
      <title>081e1731-82c0-46de-87e0-1c0e91099ffa</title>
      <link>https://vulnerability.circl.lu/sighting/081e1731-82c0-46de-87e0-1c0e91099ffa/export</link>
      <description>{"uuid": "081e1731-82c0-46de-87e0-1c0e91099ffa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40636", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mllbl6lado2t", "content": "\ud83d\udd34 CVE-2026-40636 - Critical (9.8)\n\nDell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0,\u00a0contai...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-40636/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T12:28:30.132217Z"}</description>
      <content:encoded>{"uuid": "081e1731-82c0-46de-87e0-1c0e91099ffa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40636", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mllbl6lado2t", "content": "\ud83d\udd34 CVE-2026-40636 - Critical (9.8)\n\nDell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0,\u00a0contai...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-40636/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T12:28:30.132217Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/081e1731-82c0-46de-87e0-1c0e91099ffa/export</guid>
      <pubDate>Mon, 11 May 2026 12:28:30 +0000</pubDate>
    </item>
    <item>
      <title>da3e02a3-a361-4cc5-929f-36047471dfee</title>
      <link>https://vulnerability.circl.lu/sighting/da3e02a3-a361-4cc5-929f-36047471dfee/export</link>
      <description>{"uuid": "da3e02a3-a361-4cc5-929f-36047471dfee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40636", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116555868168543714", "content": "A severe vulnerability was disclosed for Dell ECS and ObjectScale (CVE-2026-40636) https://vuldb.com/vuln/362603", "creation_timestamp": "2026-05-11T12:10:07.810144Z"}</description>
      <content:encoded>{"uuid": "da3e02a3-a361-4cc5-929f-36047471dfee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40636", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116555868168543714", "content": "A severe vulnerability was disclosed for Dell ECS and ObjectScale (CVE-2026-40636) https://vuldb.com/vuln/362603", "creation_timestamp": "2026-05-11T12:10:07.810144Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/da3e02a3-a361-4cc5-929f-36047471dfee/export</guid>
      <pubDate>Mon, 11 May 2026 12:10:07 +0000</pubDate>
    </item>
  </channel>
</rss>
