https://vulnerability.circl.lu/sightings/feed 2026-06-29T22:30:20.510429+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/4afc31d8-d8b7-45d7-8c38-e8864a8b0d3e/export 2026-06-29T22:30:20.531060+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4afc31d8-d8b7-45d7-8c38-e8864a8b0d3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2156", "type": "seen", "source": "https://t.me/cvedetector/24148", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2156 - Red Hat Linux Kernel Uninitialized Memory Access\", \n \"Content\": \"CVE ID : CVE-2025-2156 \nPublished : April 30, 2025, 6:15 p.m. | 1\u00a0hour, 37\u00a0minutes ago \nDescription : Rejected reason: Red Hat Product Security has come to the conclusion that this CVE is not needed. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"30 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-30T22:06:19.000000Z"} 2025-04-30T22:06:19+00:00 https://vulnerability.circl.lu/sighting/69abe5b8-ffe7-4e77-8911-0b243ae27015/export 2026-06-29T22:30:20.534535+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "69abe5b8-ffe7-4e77-8911-0b243ae27015", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21561", "type": "seen", "source": "https://t.me/cvedetector/16026", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21561 - Oracle PeopleSoft PeopleSoft Enterprise SCM Purchasing HTTP Authentication Bypass\", \n \"Content\": \"CVE ID : CVE-2025-21561 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component: Purchasing). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM Purchasing. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise SCM Purchasing accessible data as well as unauthorized read access to a subset of PeopleSoft Enterprise SCM Purchasing accessible data. CVSS 3.1 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N). \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:50:15.000000Z"} 2025-01-21T22:50:15+00:00 https://vulnerability.circl.lu/sighting/e63f3d09-eebc-4f77-bf5b-205716ac620c/export 2026-06-29T22:30:20.534913+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e63f3d09-eebc-4f77-bf5b-205716ac620c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21560", "type": "seen", "source": "https://t.me/cvedetector/16025", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21560 - Oracle Agile PLM Framework SDK-Software Development Kit HTTP Low Privilege Confidentiality Exposure\", \n \"Content\": \"CVE ID : CVE-2025-21560 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: SDK-Software Development Kit). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM Framework. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Agile PLM Framework accessible data. CVSS 3.1 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N). \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:50:14.000000Z"} 2025-01-21T22:50:14+00:00 https://vulnerability.circl.lu/sighting/84a26c9e-ddb3-4300-a244-a5c8e8773b3b/export 2026-06-29T22:30:20.535199+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "84a26c9e-ddb3-4300-a244-a5c8e8773b3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21562", "type": "seen", "source": "https://t.me/cvedetector/16018", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21562 - Oracle PeopleSoft PeopleSoft Enterprise CC Common Application Objects HTTP Unauthorized Data Read Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-21562 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft (component: Run Control Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise CC Common Application Objects. Successful attacks of this vulnerability can result in unauthorized read access to a subset of PeopleSoft Enterprise CC Common Application Objects accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N). \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:50:03.000000Z"} 2025-01-21T22:50:03+00:00 https://vulnerability.circl.lu/sighting/f035e04e-871f-4e53-b2ae-551f0007fad2/export 2026-06-29T22:30:20.535473+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f035e04e-871f-4e53-b2ae-551f0007fad2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21563", "type": "seen", "source": "https://t.me/cvedetector/16019", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21563 - Oracle PeopleSoft PeopleSoft Enterprise CC Common Application Objects HTTP Unauthorized Data Update/Insert/Delete Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-21563 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft (component: Run Control Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise CC Common Application Objects. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise CC Common Application Objects accessible data. CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N). \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:50:03.000000Z"} 2025-01-21T22:50:03+00:00 https://vulnerability.circl.lu/sighting/4f08e167-249e-449f-8300-0339e6012641/export 2026-06-29T22:30:20.535755+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4f08e167-249e-449f-8300-0339e6012641", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21569", "type": "seen", "source": "https://t.me/cvedetector/16017", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21569 - Oracle Hyperion Data Relationship Management Web Services HTTP Takeover Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-21569 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the Oracle Hyperion Data Relationship Management product of Oracle Hyperion (component: Web Services). The supported version that is affected is 11.2.19.0.000. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hyperion Data Relationship Management. Successful attacks of this vulnerability can result in takeover of Oracle Hyperion Data Relationship Management. CVSS 3.1 Base Score 6.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H). \nSeverity: 6.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:50:02.000000Z"} 2025-01-21T22:50:02+00:00 https://vulnerability.circl.lu/sighting/5500f352-d4d4-4f7c-90b9-e0e14aaf26ca/export 2026-06-29T22:30:20.536015+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "5500f352-d4d4-4f7c-90b9-e0e14aaf26ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21568", "type": "seen", "source": "https://t.me/cvedetector/16016", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21568 - Oracle Hyperion Data Relationship Management HTTP \u6b0a\u9650 escalate Denial of Confidentiality\", \n \"Content\": \"CVE ID : CVE-2025-21568 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the Oracle Hyperion Data Relationship Management product of Oracle Hyperion (component: Access and Security). The supported version that is affected is 11.2.19.0.000. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hyperion Data Relationship Management. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hyperion Data Relationship Management accessible data. CVSS 3.1 Base Score 4.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N). \nSeverity: 4.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:50:01.000000Z"} 2025-01-21T22:50:01+00:00 https://vulnerability.circl.lu/sighting/4e31193f-104b-441a-a7da-bf860550f638/export 2026-06-29T22:30:20.536514+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4e31193f-104b-441a-a7da-bf860550f638", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21567", "type": "seen", "source": "https://t.me/cvedetector/16015", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21567 - Oracle MySQL MySQL Server Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-21567 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 9.1.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N). \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:50:00.000000Z"} 2025-01-21T22:50:00+00:00 https://vulnerability.circl.lu/sighting/76b62134-6f63-4bf9-ba89-a96768131a36/export 2026-06-29T22:30:20.536877+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "76b62134-6f63-4bf9-ba89-a96768131a36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21566", "type": "seen", "source": "https://t.me/cvedetector/16014", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21566 - Oracle MySQL Server Optimizer Critical Availability DoS Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-21566 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 9.1.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:49:56.000000Z"} 2025-01-21T22:49:56+00:00 https://vulnerability.circl.lu/sighting/f4229141-7100-4120-835e-74def58af664/export 2026-06-29T22:30:20.537013+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f4229141-7100-4120-835e-74def58af664", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21565", "type": "seen", "source": "https://t.me/cvedetector/16013", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-21565 - Oracle Agile PLM Framework Unauthenticated HTTP Remote Code Execution vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-21565 \nPublished : Jan. 21, 2025, 9:15 p.m. | 29\u00a0minutes ago \nDescription : Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Install). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Agile PLM Framework. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Agile PLM Framework accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"21 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T22:49:55.000000Z"} 2025-01-21T22:49:55+00:00