<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Fri, 17 Jul 2026 23:42:38 +0000</lastBuildDate>
    <item>
      <title>f5503e06-4be8-49a2-b60d-c484c43aab55</title>
      <link>https://vulnerability.circl.lu/sighting/f5503e06-4be8-49a2-b60d-c484c43aab55/export</link>
      <description>{"uuid": "f5503e06-4be8-49a2-b60d-c484c43aab55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqovfe5as62u", "content": "\ud83d\udccc CVE-2026-62187 - OpenClaw Feishu tools (npm package @openclaw/feishu) in versions &amp;lt;= 2026.6.6 could ignore per-account disablement. A lower-trust caller or a configure... https://www.cyberhub.blog/cves/CVE-2026-62187", "creation_timestamp": "2026-07-15T14:07:06.567428Z"}</description>
      <content:encoded>{"uuid": "f5503e06-4be8-49a2-b60d-c484c43aab55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqovfe5as62u", "content": "\ud83d\udccc CVE-2026-62187 - OpenClaw Feishu tools (npm package @openclaw/feishu) in versions &amp;lt;= 2026.6.6 could ignore per-account disablement. A lower-trust caller or a configure... https://www.cyberhub.blog/cves/CVE-2026-62187", "creation_timestamp": "2026-07-15T14:07:06.567428Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f5503e06-4be8-49a2-b60d-c484c43aab55/export</guid>
      <pubDate>Wed, 15 Jul 2026 14:07:06 +0000</pubDate>
    </item>
    <item>
      <title>f2e12217-6aed-4e56-bb9d-55f56623b341</title>
      <link>https://vulnerability.circl.lu/sighting/f2e12217-6aed-4e56-bb9d-55f56623b341/export</link>
      <description>{"uuid": "f2e12217-6aed-4e56-bb9d-55f56623b341", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62186", "type": "seen", "source": "https://mastodon.social/users/hugovalters/statuses/116918699311489381", "content": "CVE-2026-62186 - Authorization bypass in Openclaw before 2026.6.8. Lower-trust callers can exploit HTTP model overrides to bypass admin controls. CVSS 7.6. No patch yet. Harden your input validation and access controls immediately. #CVE #infosec #Openclaw\nhttps://www.valtersit.com/cve/CVE-2026-62186/", "creation_timestamp": "2026-07-14T14:02:51.138633Z"}</description>
      <content:encoded>{"uuid": "f2e12217-6aed-4e56-bb9d-55f56623b341", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62186", "type": "seen", "source": "https://mastodon.social/users/hugovalters/statuses/116918699311489381", "content": "CVE-2026-62186 - Authorization bypass in Openclaw before 2026.6.8. Lower-trust callers can exploit HTTP model overrides to bypass admin controls. CVSS 7.6. No patch yet. Harden your input validation and access controls immediately. #CVE #infosec #Openclaw\nhttps://www.valtersit.com/cve/CVE-2026-62186/", "creation_timestamp": "2026-07-14T14:02:51.138633Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f2e12217-6aed-4e56-bb9d-55f56623b341/export</guid>
      <pubDate>Tue, 14 Jul 2026 14:02:51 +0000</pubDate>
    </item>
    <item>
      <title>f1c0d13f-7a61-48af-9363-c1f26889b552</title>
      <link>https://vulnerability.circl.lu/sighting/f1c0d13f-7a61-48af-9363-c1f26889b552/export</link>
      <description>{"uuid": "f1c0d13f-7a61-48af-9363-c1f26889b552", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62186", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mqmeoeeuin2e", "content": "CVE-2026-62186 - Authorization bypass in Openclaw before 2026.6.8. Lower-trust callers can exploit HTTP model overrides to bypass admin controls. CVSS 7.6. No patch yet. Harden your input validation and access controls immediately. #CVE #in...\n\nhttps://www.valtersit.com/cve/CVE-2026-62186/", "creation_timestamp": "2026-07-14T14:02:35.651788Z"}</description>
      <content:encoded>{"uuid": "f1c0d13f-7a61-48af-9363-c1f26889b552", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62186", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mqmeoeeuin2e", "content": "CVE-2026-62186 - Authorization bypass in Openclaw before 2026.6.8. Lower-trust callers can exploit HTTP model overrides to bypass admin controls. CVSS 7.6. No patch yet. Harden your input validation and access controls immediately. #CVE #in...\n\nhttps://www.valtersit.com/cve/CVE-2026-62186/", "creation_timestamp": "2026-07-14T14:02:35.651788Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f1c0d13f-7a61-48af-9363-c1f26889b552/export</guid>
      <pubDate>Tue, 14 Jul 2026 14:02:35 +0000</pubDate>
    </item>
    <item>
      <title>0c7f9c3d-da76-49c4-b74d-0251ac20654f</title>
      <link>https://vulnerability.circl.lu/sighting/0c7f9c3d-da76-49c4-b74d-0251ac20654f/export</link>
      <description>{"uuid": "0c7f9c3d-da76-49c4-b74d-0251ac20654f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mqm5ydioea2n", "content": "CVE-2026-62187 - Privilege Escalation in Openclaw Feishu tools. Bypasses per-account disablement allowing unauthorized actions. CVSS 8.1. Update to v2026.6.9 immediately. #CVE #Openclaw #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-62187/", "creation_timestamp": "2026-07-14T12:03:09.540799Z"}</description>
      <content:encoded>{"uuid": "0c7f9c3d-da76-49c4-b74d-0251ac20654f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mqm5ydioea2n", "content": "CVE-2026-62187 - Privilege Escalation in Openclaw Feishu tools. Bypasses per-account disablement allowing unauthorized actions. CVSS 8.1. Update to v2026.6.9 immediately. #CVE #Openclaw #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-62187/", "creation_timestamp": "2026-07-14T12:03:09.540799Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0c7f9c3d-da76-49c4-b74d-0251ac20654f/export</guid>
      <pubDate>Tue, 14 Jul 2026 12:03:09 +0000</pubDate>
    </item>
    <item>
      <title>9871b896-3943-41ec-84a9-9b46774c897c</title>
      <link>https://vulnerability.circl.lu/sighting/9871b896-3943-41ec-84a9-9b46774c897c/export</link>
      <description>{"uuid": "9871b896-3943-41ec-84a9-9b46774c897c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://mastodon.social/users/hugovalters/statuses/116918228655494378", "content": "CVE-2026-62187 - Privilege Escalation in Openclaw Feishu tools. Bypasses per-account disablement allowing unauthorized actions. CVSS 8.1. Update to v2026.6.9 immediately. #CVE #Openclaw #infosec\nhttps://www.valtersit.com/cve/CVE-2026-62187/", "creation_timestamp": "2026-07-14T12:03:09.511555Z"}</description>
      <content:encoded>{"uuid": "9871b896-3943-41ec-84a9-9b46774c897c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://mastodon.social/users/hugovalters/statuses/116918228655494378", "content": "CVE-2026-62187 - Privilege Escalation in Openclaw Feishu tools. Bypasses per-account disablement allowing unauthorized actions. CVSS 8.1. Update to v2026.6.9 immediately. #CVE #Openclaw #infosec\nhttps://www.valtersit.com/cve/CVE-2026-62187/", "creation_timestamp": "2026-07-14T12:03:09.511555Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9871b896-3943-41ec-84a9-9b46774c897c/export</guid>
      <pubDate>Tue, 14 Jul 2026 12:03:09 +0000</pubDate>
    </item>
    <item>
      <title>8fbde5ba-f781-4f46-924f-af57cfbec791</title>
      <link>https://vulnerability.circl.lu/sighting/8fbde5ba-f781-4f46-924f-af57cfbec791/export</link>
      <description>{"uuid": "8fbde5ba-f781-4f46-924f-af57cfbec791", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62188", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqktx6xbvt27", "content": "CVE-2026-62188 - OpenClaw\nCVE ID : CVE-2026-62188\n \n Published : July 13, 2026, 9:30 p.m. | 22\u00a0minutes ago\n \n Description : OpenClaw @openclaw/feishu versions 2026.6.6 and earlier contain an incorrect authorization vulnerability in which the Feishu permission tools could ignor...", "creation_timestamp": "2026-07-13T23:30:38.695885Z"}</description>
      <content:encoded>{"uuid": "8fbde5ba-f781-4f46-924f-af57cfbec791", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62188", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqktx6xbvt27", "content": "CVE-2026-62188 - OpenClaw\nCVE ID : CVE-2026-62188\n \n Published : July 13, 2026, 9:30 p.m. | 22\u00a0minutes ago\n \n Description : OpenClaw @openclaw/feishu versions 2026.6.6 and earlier contain an incorrect authorization vulnerability in which the Feishu permission tools could ignor...", "creation_timestamp": "2026-07-13T23:30:38.695885Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8fbde5ba-f781-4f46-924f-af57cfbec791/export</guid>
      <pubDate>Mon, 13 Jul 2026 23:30:38 +0000</pubDate>
    </item>
    <item>
      <title>ca7138fd-85f8-4757-a992-de4cb27b90d3</title>
      <link>https://vulnerability.circl.lu/sighting/ca7138fd-85f8-4757-a992-de4cb27b90d3/export</link>
      <description>{"uuid": "ca7138fd-85f8-4757-a992-de4cb27b90d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62184", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkrur56ci2g", "content": "CVE-2026-62184 - luci-app-banip Log Monitor IP Extraction Bypass\nCVE ID : CVE-2026-62184\n \n Published : July 13, 2026, 9:30 p.m. | 22\u00a0minutes ago\n \n Description : luci-app-banip contains a log parsing vulnerability where the awk-based parser extracts the first IPv4 address fro...", "creation_timestamp": "2026-07-13T22:53:29.410287Z"}</description>
      <content:encoded>{"uuid": "ca7138fd-85f8-4757-a992-de4cb27b90d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62184", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkrur56ci2g", "content": "CVE-2026-62184 - luci-app-banip Log Monitor IP Extraction Bypass\nCVE ID : CVE-2026-62184\n \n Published : July 13, 2026, 9:30 p.m. | 22\u00a0minutes ago\n \n Description : luci-app-banip contains a log parsing vulnerability where the awk-based parser extracts the first IPv4 address fro...", "creation_timestamp": "2026-07-13T22:53:29.410287Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ca7138fd-85f8-4757-a992-de4cb27b90d3/export</guid>
      <pubDate>Mon, 13 Jul 2026 22:53:29 +0000</pubDate>
    </item>
    <item>
      <title>af4e5e7e-16ac-4670-89ce-79c8042cef65</title>
      <link>https://vulnerability.circl.lu/sighting/af4e5e7e-16ac-4670-89ce-79c8042cef65/export</link>
      <description>{"uuid": "af4e5e7e-16ac-4670-89ce-79c8042cef65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkrm5eao22k", "content": "CVE-2026-62187 - OpenClaw\nCVE ID : CVE-2026-62187\n \n Published : July 13, 2026, 9:30 p.m. | 22\u00a0minutes ago\n \n Description : OpenClaw Feishu tools (npm package @openclaw/feishu) in versions &amp;lt;= 2026.6.6 could ignore per-account disablement. A lower-trust caller or a configure...", "creation_timestamp": "2026-07-13T22:48:40.479968Z"}</description>
      <content:encoded>{"uuid": "af4e5e7e-16ac-4670-89ce-79c8042cef65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62187", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkrm5eao22k", "content": "CVE-2026-62187 - OpenClaw\nCVE ID : CVE-2026-62187\n \n Published : July 13, 2026, 9:30 p.m. | 22\u00a0minutes ago\n \n Description : OpenClaw Feishu tools (npm package @openclaw/feishu) in versions &amp;lt;= 2026.6.6 could ignore per-account disablement. A lower-trust caller or a configure...", "creation_timestamp": "2026-07-13T22:48:40.479968Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/af4e5e7e-16ac-4670-89ce-79c8042cef65/export</guid>
      <pubDate>Mon, 13 Jul 2026 22:48:40 +0000</pubDate>
    </item>
    <item>
      <title>82ffd940-1c0e-4787-933e-33d36e8e9b6a</title>
      <link>https://vulnerability.circl.lu/sighting/82ffd940-1c0e-4787-933e-33d36e8e9b6a/export</link>
      <description>{"uuid": "82ffd940-1c0e-4787-933e-33d36e8e9b6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62185", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkrepm4uj2g", "content": "CVE-2026-62185 - Argo CD Helm Chart\nCVE ID : CVE-2026-62185\n \n Published : July 13, 2026, 9:31 p.m. | 20\u00a0minutes ago\n \n Description : Argo CD Helm Chart before 10.0.0 fails to install network policies by default, allowing any pod on a cluster to access repo-server and other Ar...", "creation_timestamp": "2026-07-13T22:44:31.066595Z"}</description>
      <content:encoded>{"uuid": "82ffd940-1c0e-4787-933e-33d36e8e9b6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-62185", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkrepm4uj2g", "content": "CVE-2026-62185 - Argo CD Helm Chart\nCVE ID : CVE-2026-62185\n \n Published : July 13, 2026, 9:31 p.m. | 20\u00a0minutes ago\n \n Description : Argo CD Helm Chart before 10.0.0 fails to install network policies by default, allowing any pod on a cluster to access repo-server and other Ar...", "creation_timestamp": "2026-07-13T22:44:31.066595Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/82ffd940-1c0e-4787-933e-33d36e8e9b6a/export</guid>
      <pubDate>Mon, 13 Jul 2026 22:44:31 +0000</pubDate>
    </item>
  </channel>
</rss>
