<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T04:20:39.607325+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/60db55c4-d29a-45f2-9863-5556979d694d/export</id>
    <title>60db55c4-d29a-45f2-9863-5556979d694d</title>
    <updated>2026-07-15T04:20:39.633073+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "60db55c4-d29a-45f2-9863-5556979d694d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/1714", "content": "CVE-2025-22457: RCE in Ivanti Connect Secure, 9.0 rating \ud83d\udd25\n\nA buffer overflow in Ivanti Connect Secure allows an unauthenticated attacker to perform remote code execution.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/zsWig\n\ud83d\udc49 Dork: http.body:\"welcome.cgi?p=logo\"\n\nVendor's advisory: https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US", "creation_timestamp": "2026-07-12T00:00:48.601383Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/60db55c4-d29a-45f2-9863-5556979d694d/export"/>
    <published>2026-07-12T00:00:48.601383+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4f5799e5-a347-4742-b0a8-d77a9422a3bf/export</id>
    <title>4f5799e5-a347-4742-b0a8-d77a9422a3bf</title>
    <updated>2026-07-15T04:20:39.635445+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4f5799e5-a347-4742-b0a8-d77a9422a3bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/1714", "content": "CVE-2025-22457: RCE in Ivanti Connect Secure, 9.0 rating \ud83d\udd25\n\nA buffer overflow in Ivanti Connect Secure allows an unauthenticated attacker to perform remote code execution.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/zsWig\n\ud83d\udc49 Dork: http.body:\"welcome.cgi?p=logo\"\n\nVendor's advisory: https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US", "creation_timestamp": "2026-07-11T13:00:05.075937Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4f5799e5-a347-4742-b0a8-d77a9422a3bf/export"/>
    <published>2026-07-11T13:00:05.075937+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3f371d29-ac9a-4f25-9527-f8a380b1c1e4/export</id>
    <title>3f371d29-ac9a-4f25-9527-f8a380b1c1e4</title>
    <updated>2026-07-15T04:20:39.635615+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3f371d29-ac9a-4f25-9527-f8a380b1c1e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "seen", "source": "https://t.me/brutsecurity/1714", "content": "CVE-2025-22457: RCE in Ivanti Connect Secure, 9.0 rating \ud83d\udd25\n\nA buffer overflow in Ivanti Connect Secure allows an unauthenticated attacker to perform remote code execution.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/zsWig\n\ud83d\udc49 Dork: http.body:\"welcome.cgi?p=logo\"\n\nVendor's advisory: https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US", "creation_timestamp": "2026-07-10T00:00:32.231964Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3f371d29-ac9a-4f25-9527-f8a380b1c1e4/export"/>
    <published>2026-07-10T00:00:32.231964+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/01d22d08-9d40-4b86-909d-bbcfdddbf7e6/export</id>
    <title>01d22d08-9d40-4b86-909d-bbcfdddbf7e6</title>
    <updated>2026-07-15T04:20:39.635780+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "01d22d08-9d40-4b86-909d-bbcfdddbf7e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "seen", "source": "https://t.me/brutsecurity/1714", "content": "CVE-2025-22457: RCE in Ivanti Connect Secure, 9.0 rating \ud83d\udd25\n\nA buffer overflow in Ivanti Connect Secure allows an unauthenticated attacker to perform remote code execution.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/zsWig\n\ud83d\udc49 Dork: http.body:\"welcome.cgi?p=logo\"\n\nVendor's advisory: https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US", "creation_timestamp": "2026-07-09T03:00:08.691971Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/01d22d08-9d40-4b86-909d-bbcfdddbf7e6/export"/>
    <published>2026-07-09T03:00:08.691971+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/732e81ba-cdd0-4247-a8ba-076b893adf7b/export</id>
    <title>732e81ba-cdd0-4247-a8ba-076b893adf7b</title>
    <updated>2026-07-15T04:20:39.635889+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "732e81ba-cdd0-4247-a8ba-076b893adf7b", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/198f55a1-f498-4b55-bb9c-b12752603c6a", "content": "", "creation_timestamp": "2026-06-23T14:06:08.020302Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/732e81ba-cdd0-4247-a8ba-076b893adf7b/export"/>
    <published>2026-06-23T14:06:08.020302+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/dd13fd32-c535-4b13-9913-04942e585166/export</id>
    <title>dd13fd32-c535-4b13-9913-04942e585166</title>
    <updated>2026-07-15T04:20:39.636014+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "dd13fd32-c535-4b13-9913-04942e585166", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/63cb24d0-6262-45db-91b7-8f8aa66a8a1a", "content": "", "creation_timestamp": "2026-06-19T12:46:23.240496Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/dd13fd32-c535-4b13-9913-04942e585166/export"/>
    <published>2026-06-19T12:46:23.240496+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/759fcf72-2e7b-4c88-a409-a335454fbd3c/export</id>
    <title>759fcf72-2e7b-4c88-a409-a335454fbd3c</title>
    <updated>2026-07-15T04:20:39.636127+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "759fcf72-2e7b-4c88-a409-a335454fbd3c", "vulnerability_lookup_origin": "cce329bf-df49-4c6e-a027-80be2e6483bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/50e9db76-374f-4d94-9409-2a9f835f79cf", "content": "", "creation_timestamp": "2026-06-05T16:59:25.126111Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/759fcf72-2e7b-4c88-a409-a335454fbd3c/export"/>
    <published>2026-06-05T16:59:25.126111+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9ca74bad-e211-47aa-8a5b-8123871f3e50/export</id>
    <title>9ca74bad-e211-47aa-8a5b-8123871f3e50</title>
    <updated>2026-07-15T04:20:39.636225+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9ca74bad-e211-47aa-8a5b-8123871f3e50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22457", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mkkuanitwx27", "content": "", "creation_timestamp": "2026-04-28T15:04:46.154427Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9ca74bad-e211-47aa-8a5b-8123871f3e50/export"/>
    <published>2026-04-28T15:04:46.154427+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a2a4fc4c-c51a-4a6e-b67d-90659500a59d/export</id>
    <title>a2a4fc4c-c51a-4a6e-b67d-90659500a59d</title>
    <updated>2026-07-15T04:20:39.636338+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a2a4fc4c-c51a-4a6e-b67d-90659500a59d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22453", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mejk4uq73l2v", "content": "", "creation_timestamp": "2026-02-10T17:59:52.766575Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a2a4fc4c-c51a-4a6e-b67d-90659500a59d/export"/>
    <published>2026-02-10T17:59:52.766575+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/99392757-9a78-4079-951c-ad46c3f75e3f/export</id>
    <title>99392757-9a78-4079-951c-ad46c3f75e3f</title>
    <updated>2026-07-15T04:20:39.636445+00:00</updated>
    <author>
      <name>Cédric Bonhomme</name>
      <uri>https://vulnerability.circl.lu/user/cedric</uri>
    </author>
    <content>{"uuid": "99392757-9a78-4079-951c-ad46c3f75e3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-22457", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/9be262d6-0d01-4d80-8129-f59b23fedb56", "content": "", "creation_timestamp": "2026-02-02T12:26:04.320214Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/99392757-9a78-4079-951c-ad46c3f75e3f/export"/>
    <published>2026-02-02T12:26:04.320214+00:00</published>
  </entry>
</feed>
