<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Mon, 13 Jul 2026 09:11:36 +0000</lastBuildDate>
    <item>
      <title>3d0e7842-6df0-42c6-b6eb-82d3c5a2e756</title>
      <link>https://vulnerability.circl.lu/sighting/3d0e7842-6df0-42c6-b6eb-82d3c5a2e756/export</link>
      <description>{"uuid": "3d0e7842-6df0-42c6-b6eb-82d3c5a2e756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "published-proof-of-concept", "source": "https://t.me/cKure/16571", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 \ud83d\udd25 A new 16-year-old Linux KVM flaw lets a rooted nested VM crash the x86 host and take down other tenants on the same machine.\n\nDubbed \"Januscape\" (CVE-2026-53359), the bug sits in KVM\u2019s shadow MMU.\n\nResearcher says a full guest-to-host escape exploit also exists in a controlled setup; only the host-crash PoC is public.\n\nExplained here: https://thehackernews.com/2026/07/16-year-old-linux-kvm-flaw-lets-guest.html", "creation_timestamp": "2026-07-13T00:00:44.289333Z"}</description>
      <content:encoded>{"uuid": "3d0e7842-6df0-42c6-b6eb-82d3c5a2e756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "published-proof-of-concept", "source": "https://t.me/cKure/16571", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 \ud83d\udd25 A new 16-year-old Linux KVM flaw lets a rooted nested VM crash the x86 host and take down other tenants on the same machine.\n\nDubbed \"Januscape\" (CVE-2026-53359), the bug sits in KVM\u2019s shadow MMU.\n\nResearcher says a full guest-to-host escape exploit also exists in a controlled setup; only the host-crash PoC is public.\n\nExplained here: https://thehackernews.com/2026/07/16-year-old-linux-kvm-flaw-lets-guest.html", "creation_timestamp": "2026-07-13T00:00:44.289333Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3d0e7842-6df0-42c6-b6eb-82d3c5a2e756/export</guid>
      <pubDate>Mon, 13 Jul 2026 00:00:44 +0000</pubDate>
    </item>
    <item>
      <title>b85a6d93-1bcd-4756-8dae-4bf858266011</title>
      <link>https://vulnerability.circl.lu/sighting/b85a6d93-1bcd-4756-8dae-4bf858266011/export</link>
      <description>{"uuid": "b85a6d93-1bcd-4756-8dae-4bf858266011", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/vritrasecnews.bsky.social/post/3mqhzkzhzb32b", "content": "Introduction A local privilege escalation (LPE) vulnerability affecting the Linux kernel was publicly disclosed on July 6, 2026. The vulnerability was assigned CVE ID CVE-2026-53359 and i...\n\n\ud83d\udd17 https://ubuntu.com//blog/januscape-linux-vulnerability-mitigations-available", "creation_timestamp": "2026-07-12T20:33:13.337012Z"}</description>
      <content:encoded>{"uuid": "b85a6d93-1bcd-4756-8dae-4bf858266011", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/vritrasecnews.bsky.social/post/3mqhzkzhzb32b", "content": "Introduction A local privilege escalation (LPE) vulnerability affecting the Linux kernel was publicly disclosed on July 6, 2026. The vulnerability was assigned CVE ID CVE-2026-53359 and i...\n\n\ud83d\udd17 https://ubuntu.com//blog/januscape-linux-vulnerability-mitigations-available", "creation_timestamp": "2026-07-12T20:33:13.337012Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b85a6d93-1bcd-4756-8dae-4bf858266011/export</guid>
      <pubDate>Sun, 12 Jul 2026 20:33:13 +0000</pubDate>
    </item>
    <item>
      <title>8b64ab9c-baa1-4e1f-a86d-a14ceacb2309</title>
      <link>https://vulnerability.circl.lu/sighting/8b64ab9c-baa1-4e1f-a86d-a14ceacb2309/export</link>
      <description>{"uuid": "8b64ab9c-baa1-4e1f-a86d-a14ceacb2309", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "published-proof-of-concept", "source": "https://t.me/cKure/16571", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 \ud83d\udd25 A new 16-year-old Linux KVM flaw lets a rooted nested VM crash the x86 host and take down other tenants on the same machine.\n\nDubbed \"Januscape\" (CVE-2026-53359), the bug sits in KVM\u2019s shadow MMU.\n\nResearcher says a full guest-to-host escape exploit also exists in a controlled setup; only the host-crash PoC is public.\n\nExplained here: https://thehackernews.com/2026/07/16-year-old-linux-kvm-flaw-lets-guest.html", "creation_timestamp": "2026-07-12T13:00:04.217576Z"}</description>
      <content:encoded>{"uuid": "8b64ab9c-baa1-4e1f-a86d-a14ceacb2309", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "published-proof-of-concept", "source": "https://t.me/cKure/16571", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 \ud83d\udd25 A new 16-year-old Linux KVM flaw lets a rooted nested VM crash the x86 host and take down other tenants on the same machine.\n\nDubbed \"Januscape\" (CVE-2026-53359), the bug sits in KVM\u2019s shadow MMU.\n\nResearcher says a full guest-to-host escape exploit also exists in a controlled setup; only the host-crash PoC is public.\n\nExplained here: https://thehackernews.com/2026/07/16-year-old-linux-kvm-flaw-lets-guest.html", "creation_timestamp": "2026-07-12T13:00:04.217576Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8b64ab9c-baa1-4e1f-a86d-a14ceacb2309/export</guid>
      <pubDate>Sun, 12 Jul 2026 13:00:04 +0000</pubDate>
    </item>
    <item>
      <title>b4696590-c066-4e4e-89d2-cbed3f87963f</title>
      <link>https://vulnerability.circl.lu/sighting/b4696590-c066-4e4e-89d2-cbed3f87963f/export</link>
      <description>{"uuid": "b4696590-c066-4e4e-89d2-cbed3f87963f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mqh37nbd5j2w", "content": "A use-after-free bug in Linux KVM (CVE-2026-53359), dubbed Januscape, allows a guest VM to corrupt the host's shadow page state, risking host stability. Public proof-of-concept causes panics.", "creation_timestamp": "2026-07-12T11:29:59.413093Z"}</description>
      <content:encoded>{"uuid": "b4696590-c066-4e4e-89d2-cbed3f87963f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mqh37nbd5j2w", "content": "A use-after-free bug in Linux KVM (CVE-2026-53359), dubbed Januscape, allows a guest VM to corrupt the host's shadow page state, risking host stability. Public proof-of-concept causes panics.", "creation_timestamp": "2026-07-12T11:29:59.413093Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b4696590-c066-4e4e-89d2-cbed3f87963f/export</guid>
      <pubDate>Sun, 12 Jul 2026 11:29:59 +0000</pubDate>
    </item>
    <item>
      <title>1e92ec6b-603f-4324-8a80-7557c49d7a8e</title>
      <link>https://vulnerability.circl.lu/sighting/1e92ec6b-603f-4324-8a80-7557c49d7a8e/export</link>
      <description>{"uuid": "1e92ec6b-603f-4324-8a80-7557c49d7a8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mqfutrf5z72l", "content": "Introducing \"Januscape\" (CVE-2026-53359)  \n\nA Guest-to-Host Escape in KVM/x86 exploiting a UAF in the shadow MMU. Triggerable on both Intel and AMD hosts. Threatens x86 public clouds (GCP, AWS) that expose nested\u2026\n\n\ud83d\udd01 RT @v4bel | reposted by @HackingLZ\nhttps://x.com/v4bel/status/2074162435339207141", "creation_timestamp": "2026-07-12T00:03:18.822660Z"}</description>
      <content:encoded>{"uuid": "1e92ec6b-603f-4324-8a80-7557c49d7a8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mqfutrf5z72l", "content": "Introducing \"Januscape\" (CVE-2026-53359)  \n\nA Guest-to-Host Escape in KVM/x86 exploiting a UAF in the shadow MMU. Triggerable on both Intel and AMD hosts. Threatens x86 public clouds (GCP, AWS) that expose nested\u2026\n\n\ud83d\udd01 RT @v4bel | reposted by @HackingLZ\nhttps://x.com/v4bel/status/2074162435339207141", "creation_timestamp": "2026-07-12T00:03:18.822660Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1e92ec6b-603f-4324-8a80-7557c49d7a8e/export</guid>
      <pubDate>Sun, 12 Jul 2026 00:03:18 +0000</pubDate>
    </item>
    <item>
      <title>fc5234d7-bf3a-4669-92e1-35f3404e6c00</title>
      <link>https://vulnerability.circl.lu/sighting/fc5234d7-bf3a-4669-92e1-35f3404e6c00/export</link>
      <description>{"uuid": "fc5234d7-bf3a-4669-92e1-35f3404e6c00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/billingsley.bsky.social/post/3mqe7qkiszr2q", "content": "COGNOSCERE Tech Brief \u2014 2026-07-11\n\nCVE-2026-53359, dubbed Januscape, is a use-after-free bug in Linux KVM's shadow \n\nhttps://www.cognoscerellc.com/news", "creation_timestamp": "2026-07-11T08:13:03.528627Z"}</description>
      <content:encoded>{"uuid": "fc5234d7-bf3a-4669-92e1-35f3404e6c00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/billingsley.bsky.social/post/3mqe7qkiszr2q", "content": "COGNOSCERE Tech Brief \u2014 2026-07-11\n\nCVE-2026-53359, dubbed Januscape, is a use-after-free bug in Linux KVM's shadow \n\nhttps://www.cognoscerellc.com/news", "creation_timestamp": "2026-07-11T08:13:03.528627Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/fc5234d7-bf3a-4669-92e1-35f3404e6c00/export</guid>
      <pubDate>Sat, 11 Jul 2026 08:13:03 +0000</pubDate>
    </item>
    <item>
      <title>91a32611-cbbc-45e7-b33e-a6aec65a9d7c</title>
      <link>https://vulnerability.circl.lu/sighting/91a32611-cbbc-45e7-b33e-a6aec65a9d7c/export</link>
      <description>{"uuid": "91a32611-cbbc-45e7-b33e-a6aec65a9d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://fosstodon.org/users/cedric/statuses/116896957268026860", "content": "\ud83c\udd95 Vulnerability-Lookup now imports Microsoft CSAF VEX documents from MSRC \u2014 joining the Red Hat VEX feed as a vendor VEX enrichment source.\nPer-CVE VEX statements (product status, severity) are attached directly to CVE records, visible on the vulnerability page and via the API with the full CSAF documents.\nExample with both Red Hat and Microsoft VEX:https://vulnerability.circl.lu/vuln/CVE-2026-53359#vex\n#VEX #CSAF #VulnerabilityManagement #CVE #OpenSource", "creation_timestamp": "2026-07-10T17:53:34.162676Z"}</description>
      <content:encoded>{"uuid": "91a32611-cbbc-45e7-b33e-a6aec65a9d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://fosstodon.org/users/cedric/statuses/116896957268026860", "content": "\ud83c\udd95 Vulnerability-Lookup now imports Microsoft CSAF VEX documents from MSRC \u2014 joining the Red Hat VEX feed as a vendor VEX enrichment source.\nPer-CVE VEX statements (product status, severity) are attached directly to CVE records, visible on the vulnerability page and via the API with the full CSAF documents.\nExample with both Red Hat and Microsoft VEX:https://vulnerability.circl.lu/vuln/CVE-2026-53359#vex\n#VEX #CSAF #VulnerabilityManagement #CVE #OpenSource", "creation_timestamp": "2026-07-10T17:53:34.162676Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/91a32611-cbbc-45e7-b33e-a6aec65a9d7c/export</guid>
      <pubDate>Fri, 10 Jul 2026 17:53:34 +0000</pubDate>
    </item>
    <item>
      <title>5b35085f-b68f-4e6d-8341-ecec5ccef8ee</title>
      <link>https://vulnerability.circl.lu/sighting/5b35085f-b68f-4e6d-8341-ecec5ccef8ee/export</link>
      <description>{"uuid": "5b35085f-b68f-4e6d-8341-ecec5ccef8ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53354", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqclyfpnse2z", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-53354 \u0432 \u044f\u0434\u0440\u0435 Linux: \u0447\u0442\u043e \u044d\u0442\u043e \u0437\u043d\u0430\u0447\u0438\u0442 \u0434\u043b\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0438 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u043e\u0432?\n\n\n\nhttps://kripta.biz/posts/9B1BF6DA-8B91-4798-BF1F-13CB8CD88CBE", "creation_timestamp": "2026-07-10T16:46:52.145320Z"}</description>
      <content:encoded>{"uuid": "5b35085f-b68f-4e6d-8341-ecec5ccef8ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53354", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqclyfpnse2z", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-53354 \u0432 \u044f\u0434\u0440\u0435 Linux: \u0447\u0442\u043e \u044d\u0442\u043e \u0437\u043d\u0430\u0447\u0438\u0442 \u0434\u043b\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0438 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u043e\u0432?\n\n\n\nhttps://kripta.biz/posts/9B1BF6DA-8B91-4798-BF1F-13CB8CD88CBE", "creation_timestamp": "2026-07-10T16:46:52.145320Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/5b35085f-b68f-4e6d-8341-ecec5ccef8ee/export</guid>
      <pubDate>Fri, 10 Jul 2026 16:46:52 +0000</pubDate>
    </item>
    <item>
      <title>c3d8cdcc-303e-4d75-928d-63646e287994</title>
      <link>https://vulnerability.circl.lu/sighting/c3d8cdcc-303e-4d75-928d-63646e287994/export</link>
      <description>{"uuid": "c3d8cdcc-303e-4d75-928d-63646e287994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-53359", "type": "seen", "source": "https://bsky.app/profile/vblog.io/post/3mqcihaubt422", "content": "A propos de la vuln\u00e9rabilit\u00e9 Januscape (CVE-2026-53359)\nhttps://vblog.io/a-propos-de-la-vulnerabilite-januscape-cve-2026-53359/", "creation_timestamp": "2026-07-10T15:43:34.756956Z"}</description>
      <content:encoded>{"uuid": "c3d8cdcc-303e-4d75-928d-63646e287994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-53359", "type": "seen", "source": "https://bsky.app/profile/vblog.io/post/3mqcihaubt422", "content": "A propos de la vuln\u00e9rabilit\u00e9 Januscape (CVE-2026-53359)\nhttps://vblog.io/a-propos-de-la-vulnerabilite-januscape-cve-2026-53359/", "creation_timestamp": "2026-07-10T15:43:34.756956Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c3d8cdcc-303e-4d75-928d-63646e287994/export</guid>
      <pubDate>Fri, 10 Jul 2026 15:43:34 +0000</pubDate>
    </item>
    <item>
      <title>9802b9e8-0f37-4686-825d-45d25554d56e</title>
      <link>https://vulnerability.circl.lu/sighting/9802b9e8-0f37-4686-825d-45d25554d56e/export</link>
      <description>{"uuid": "9802b9e8-0f37-4686-825d-45d25554d56e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/xceptn.bsky.social/post/3mqcb5tor3v2p", "content": "A recent KVM vulnerability fix - NVD - CVE-2026-53359 nvd.nist.gov/vuln/detail/... #Linux #FOSS #OpenSource #Technology #Security", "creation_timestamp": "2026-07-10T13:33:03.814105Z"}</description>
      <content:encoded>{"uuid": "9802b9e8-0f37-4686-825d-45d25554d56e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/xceptn.bsky.social/post/3mqcb5tor3v2p", "content": "A recent KVM vulnerability fix - NVD - CVE-2026-53359 nvd.nist.gov/vuln/detail/... #Linux #FOSS #OpenSource #Technology #Security", "creation_timestamp": "2026-07-10T13:33:03.814105Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9802b9e8-0f37-4686-825d-45d25554d56e/export</guid>
      <pubDate>Fri, 10 Jul 2026 13:33:03 +0000</pubDate>
    </item>
  </channel>
</rss>
