{"vulnerability": "cve-2026-8398", "sightings": [{"uuid": "0ddaf687-45c3-4acf-9fce-8fe6a60e373e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlv35uqdzj2k", "content": "\ud83d\udd34 CVE-2026-8398 - Critical (9.8)\n\nA supply chain attack compromised the official installation packages of DAEMON Tools Lite (Window...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-8398/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-15T10:00:18.716501Z"}, {"uuid": "2fc6031f-5ea6-4548-9172-4711b3bd792f", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/11739434-0930-4569-82cd-80d659d1039f", "content": "", "creation_timestamp": "2026-05-27T18:00:02.449510Z"}, {"uuid": "3dbeb53c-2b7a-421c-b6a2-ee4153792a78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mmu45v5bcy2s", "content": "\ud83d\uded1 CVE-2026-8398\nDaemon Daemon Tools Lite\nCVSS 9.3 / EPSS 0% / KEV\nTL;DR: A supply chain attack compromised the official installation packages of DAEMON Tools Lit\u2026\nhttps://cvesentinel.com/report/CVE-2026-8398?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-05-27T18:10:54.897071Z"}, {"uuid": "d0cdf8a9-52ac-4b4e-be86-89cebffaab18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6591183", "content": "2026-05-27: [CVE-2026-8398] Daemon Tools Lite Embedded Malicious Code VulnerabilityDaemon Tools contains an unspecified vulnerability that has a high impact on confidentiality, integrity, and availability.\ncisakev", "creation_timestamp": "2026-05-27T19:09:41.010220Z"}, {"uuid": "f0e5960f-7f4b-48c7-8695-3f6561646efb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmucnfq3w323", "content": "~Cisa~\nCISA added three actively exploited vulnerabilities to the KEV catalog.\n-\nIOCs: CVE-2026-8398, CVE-2026-45321, CVE-2026-48027\n-\n#CISA #KEV #threatintel", "creation_timestamp": "2026-05-27T20:06:47.282418Z"}, {"uuid": "4b224adf-82e2-44ba-9be3-33c4c889df3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/happeningnow.news/post/3mmuo7acp4a2e", "content": "CISA Adds Three Known Exploited Vulnerabilities to Catalog\nCISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-8398\u2026\n\n\ud83d\udd17 https://hnow.live/a/f7097d69", "creation_timestamp": "2026-05-27T23:33:36.948234Z"}, {"uuid": "84688bda-be8d-4c9d-bb5a-4e2008fc4ddf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/render87.bsky.social/post/3mmvo5ojqy62u", "content": "CVE-2026-8398 mit einem CVSS-Risiko von 9,8: Wie sicher sind unsere Lieferketten wirklich?.\n\nCISA warnt vor Malware durch Supply-Chain-Attacken\n\n#Cybersecurity #Geopolitics\n\n\ud83d\udd17 https://www.heise.de/news/CISA-warnt-vor-Malware-durch-Supply-Chain-Attacken-11309253.html?wt_mc=rss.red.ho.ho.atom.be\u2026", "creation_timestamp": "2026-05-28T09:05:24.552204Z"}, {"uuid": "e730b402-434c-4bc0-abc6-39d292939628", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mmvo5oyd322u", "content": "CVE-2026-8398 mit einem CVSS-Risiko von 9,8: Wie sicher sind unsere Lieferketten wirklich?.\n\nCISA warnt vor Malware durch Supply-Chain-Attacken\n\n#Potatosecurity #Geopolitics\n\n\ud83d\udd17 https://www.heise.de/news/CISA-warnt-vor-Malware-durch-Supply-Chain-Attacken-11309253.html?wt_mc=rss.red.ho.ho.atom.be\u2026", "creation_timestamp": "2026-05-28T09:05:25.161043Z"}, {"uuid": "44be950e-7b90-41d3-9a81-65d8b5121feb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/render87.bsky.social/post/3mmvod4u4tk2s", "content": "Die j\u00fcngsten Warnungen vor Malware durch Supply-Chain-Attacken wie CVE-2026-8398 unterstreichen die Bedeutung einer umfassenden Risikobewertung in der Lieferkette, da laut einer Studie etwa 80 Prozent der Unternehmen von solchen Angriffen betroffen sind.\u2026", "creation_timestamp": "2026-05-28T09:08:27.095964Z"}, {"uuid": "d60401fa-eae2-4c79-8964-45d53e68ee37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmwceiomx52v", "content": "\ud83d\udccc CVE-2026-8398 - A supply chain attack compromised the official installation packages of DAEMON Tools Lite (Windows versions 12.5.0.2421 through 12.5.0.2434), distribu... https://www.cyberhub.blog/cves/CVE-2026-8398", "creation_timestamp": "2026-05-28T15:07:08.038974Z"}, {"uuid": "6f641604-124a-4ced-b464-550686c91248", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://www.acn.gov.it/portale/w/daemon-tools-lite-rilevato-sfruttamento-della-cve-2026-8398", "content": "Rilevato sfruttamento attivo in rete della CVE-2026-8398 \u2013 gi\u00e0 sanata dal vendor \u2013 presente in DAEMON Tools Lite, versione freeware della nota piattaforma per la gestione e l\u2019utilizzo di immagini disco virtuali.", "creation_timestamp": "2026-05-28T11:52:54.000000Z"}, {"uuid": "c9417eef-b6e8-4cf5-96f3-cfc896a58a49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mmyf5hp4ih2g", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-8398 AVB Disc Soft\u306eDAEMON Tools\u00a0Lite\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\n\u3053\u306e\u8106\u5f31\u6027\u306f\u3001DAEMON Tools Lite\u306e\u516c\u5f0f\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u30d1\u30c3\u30b1\u30fc\u30b8\u304c\u4f9b\u7d66\u9023\u9396\u653b\u6483\u306b\u3088\u308a\u4fb5\u5bb3\u3055\u308c\u305f\u3053\u3068\u306b\u95a2\u9023\u3057\u3066\u3044\u307e\u3059\u3002", "creation_timestamp": "2026-05-29T11:02:26.260289Z"}, {"uuid": "0d5922b0-3cf8-4650-abc4-0984c4295166", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mmyf6jwo5g27", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-8398 AVB Disc Soft\u306eDAEMON Tools\u00a0Lite\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\n\u3053\u306e\u8106\u5f31\u6027\u306f\u3001DAEMON Tools Lite\u306e\u516c\u5f0f\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u30d1\u30c3\u30b1\u30fc\u30b8\u304c\u4f9b\u7d66\u9023\u9396\u653b\u6483\u306b\u3088\u308a\u4fb5\u5bb3\u3055\u308c\u305f\u3053\u3068\u306b\u8d77\u56e0\u3057\u307e\u3059\u3002", "creation_timestamp": "2026-05-29T11:02:49.563662Z"}, {"uuid": "2782ca39-581c-48f0-836e-d5830375c7f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mohdlbz4u62v", "content": "Anyone who installed DAEMON Tools Lite on Windows between April 8 and May 5 may now have a Chinese-linked backdoor calling out at every system startup. Three signed components were trojanized: DTHelper.exe, DiscSoftBusServiceLite.exe, DTShellHlp.exe. CISA added CVE-2026-8398 to KEV May 27.", "creation_timestamp": "2026-06-17T03:09:16.979138Z"}, {"uuid": "78085e76-b19e-45f3-85d6-db0486b1d92b", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/a069d887-2c72-439e-93b1-0495818bd5cd", "content": "", "creation_timestamp": "2026-06-19T12:45:32.687799Z"}, {"uuid": "c5ae6f3d-4999-4d2f-bc07-a8374847cdf8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxecmqe2c2n", "content": "\u8907\u6570\u30bd\u30d5\u30c8\u304c\u6539\u3056\u3093\u88ab\u5bb3\u3001\u6b63\u898f\u30eb\u30fc\u30c8\u3067\u6c5a\u67d3\u7248\u304c\u6d41\u901a - \u7c73\u5f53\u5c40\u304c\u6ce8\u610f\u559a\u8d77\n\n\u7c73\u5f53\u5c40\u306f\u3001\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u30b5\u30d7\u30e9\u30a4\u30c1\u30a7\u30fc\u30f3\u4fb5\u5bb3\u306b\u8d77\u56e0\u3059\u308b\u8106\u5f31\u60273\u4ef6\u306b\u3064\u3044\u3066\u6ce8\u610f\u3092\u547c\u3073\u304b\u3051\u305f\u3002\n\n\u7c73\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u73fe\u5730\u6642\u95932026\u5e745\u670827\u65e5\u3001\u300cCVE-2026-8398\u300d\u300cCVE-2026-45321\u300d\u300cCVE-2026-48027\u300d\u3092\u300c\u60aa\u7528\u304c\u78ba\u8a8d\u3055\u308c\u305f\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\uff08KEV\uff09\u300d\u3078\u8ffd\u52a0\u3057\u305f\u3002\u3044\u305a\u308c\u3082\u63d0\u4f9b\u5143\u306e\u4fb5\u5bb3\u3084\u6b63\u898f\u7d4c\u8def\u306b\u3088\u308b\u914d\u5e03\u306a\u3069\u3001\u30b5\u30d7\u30e9\u30a4\u30c1\u30a7\u30fc\u30f3\u4fb5\u5bb3\u306b\u8d77\u56e0\u3059\u308b\u554f\u984c\u3068\u306a\u308b\u3002\n\n\u300cCVE-2026-8398\u300d\u306f\u3001\u30c7\u30a3\u30b9\u30af\u30a4\u30e1\u30fc\u30b8\u7ba1\u7406\u30bd\u30d5\u30c8\u300cDAEMON Too...", "creation_timestamp": "2026-06-23T12:04:55.813573Z"}, {"uuid": "2b019105-c9ab-4b25-ac38-9b9c33ca021b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxebiqfqk2n", "content": "CISA Adds Three Known Exploited Vulnerabilities to Catalog\nRelease Date May 27, 2026\n\nCVE-2026-8398 Daemon Tools Lite Embedded Malicious Code Vulnerability\nCVE-2026-45321 TanStack Unspecified Vulnerability\nCVE-2026-48027 Nx Console Embedded Malicious Code Vulnerability", "creation_timestamp": "2026-06-23T12:04:17.975226Z"}, {"uuid": "45cb0b2e-1146-4c2e-a888-2f0f6f9161aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxezct7oc2n", "content": "\u7c73\u56fd\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u3001Daemon Tools\u3001TanStack\u3001\u304a\u3088\u3073Nx Console\u306e\u8106\u5f31\u6027\u3092\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\u3057\u305f\n\nCVE-2026-8398\uff08CVSS\u30b9\u30b3\u30a2\uff1a\u30d0\u30fc\u30b8\u30e7\u30f34.0\u30679.3\uff09Daemon Tools Lite Embedded\u306e\u60aa\u610f\u306e\u3042\u308b\u30b3\u30fc\u30c9\u306e\u8106\u5f31\u6027\nCVE-2026-45321\uff08CVSS\u30b9\u30b3\u30a2\uff1a\u30d0\u30fc\u30b8\u30e7\u30f33.1\u30679.5\uff09TanStack\u306e\u7279\u5b9a\u3055\u308c\u3066\u3044\u306a\u3044\u8106\u5f31\u6027\nCVE-2026-48027\uff08CVSS\u30b9\u30b3\u30a2\uff1a\u30d0\u30fc\u30b8\u30e7\u30f34.0\u30679.3\uff09Nx Console\u7d44\u307f\u8fbc\u307f\u578b\u60aa\u610f\u306e\u3042\u308b\u30b3\u30fc\u30c9\u306e\u8106\u5f31\u6027", "creation_timestamp": "2026-06-23T12:17:37.938798Z"}, {"uuid": "5cb97d2a-90a5-4423-a592-946640514cfe", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8398", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/12d3ead8-7852-4708-b0a5-2eb031bea199", "content": "", "creation_timestamp": "2026-06-23T14:03:56.368540Z"}]}