<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-16T18:53:48.407635+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d987d3c9-4f1d-4395-aae0-7c11ea18263b/export</id>
    <title>d987d3c9-4f1d-4395-aae0-7c11ea18263b</title>
    <updated>2026-07-16T18:53:48.424403+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d987d3c9-4f1d-4395-aae0-7c11ea18263b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "published-proof-of-concept", "source": "https://t.me/libs_of_hackers/1053", "content": "\u0412 HPE OneView \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 RCE-\u0431\u0430\u0433 \n \n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Hewlett Packard Enterprise (HPE) \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u0432 \u041f\u041e \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0418\u0422-\u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u043e\u0439 OneView. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2025-37164 (\u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u044b\u0435 10,0 \u0431\u0430\u043b\u043b\u0430 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS) \u0438 \u043c\u043e\u0436\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438. \n \nhttps://xakep.ru/2025/12/23/cve-2025-37164/\n\n@libs_of_hackers", "creation_timestamp": "2026-07-16T07:00:04.402234Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d987d3c9-4f1d-4395-aae0-7c11ea18263b/export"/>
    <published>2026-07-16T07:00:04.402234+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f7c9373d-b381-47bf-b1b8-b2aab82c3279/export</id>
    <title>f7c9373d-b381-47bf-b1b8-b2aab82c3279</title>
    <updated>2026-07-16T18:53:48.426845+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f7c9373d-b381-47bf-b1b8-b2aab82c3279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "published-proof-of-concept", "source": "https://t.me/iiLinux/3164", "content": "CVE-2025-37164: Unauthenticated RCE in HPE OneView.\n\nUnauthenticated RCE (10.0 CVSS) vulnerability, in Hewlett Packard Enterprise (HPE) OneView via an unauthenticated REST endpoint called executeCommand. All versions below 11.00 are vulnerable (so long as the vendor supplied hotfix has not been applied), however some VM product versions do not enable the vulnerable \"ID Pools\" endpoint, and are not exploitable.\n\nPOC : https://github.com/g0vguy/CVE-2025-37164-PoC", "creation_timestamp": "2026-07-12T00:00:55.112265Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f7c9373d-b381-47bf-b1b8-b2aab82c3279/export"/>
    <published>2026-07-12T00:00:55.112265+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/21e31187-0e1b-41f5-b366-a886a3fe8a40/export</id>
    <title>21e31187-0e1b-41f5-b366-a886a3fe8a40</title>
    <updated>2026-07-16T18:53:48.426991+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "21e31187-0e1b-41f5-b366-a886a3fe8a40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "published-proof-of-concept", "source": "https://t.me/iiLinux/3164", "content": "CVE-2025-37164: Unauthenticated RCE in HPE OneView.\n\nUnauthenticated RCE (10.0 CVSS) vulnerability, in Hewlett Packard Enterprise (HPE) OneView via an unauthenticated REST endpoint called executeCommand. All versions below 11.00 are vulnerable (so long as the vendor supplied hotfix has not been applied), however some VM product versions do not enable the vulnerable \"ID Pools\" endpoint, and are not exploitable.\n\nPOC : https://github.com/g0vguy/CVE-2025-37164-PoC", "creation_timestamp": "2026-07-11T09:00:04.948377Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/21e31187-0e1b-41f5-b366-a886a3fe8a40/export"/>
    <published>2026-07-11T09:00:04.948377+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b78f4c45-0b14-4ea6-a8a5-219004daa764/export</id>
    <title>b78f4c45-0b14-4ea6-a8a5-219004daa764</title>
    <updated>2026-07-16T18:53:48.427103+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b78f4c45-0b14-4ea6-a8a5-219004daa764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "seen", "source": "https://t.me/iiLinux/3164", "content": "CVE-2025-37164: Unauthenticated RCE in HPE OneView.\n\nUnauthenticated RCE (10.0 CVSS) vulnerability, in Hewlett Packard Enterprise (HPE) OneView via an unauthenticated REST endpoint called executeCommand. All versions below 11.00 are vulnerable (so long as the vendor supplied hotfix has not been applied), however some VM product versions do not enable the vulnerable \"ID Pools\" endpoint, and are not exploitable.\n\nPOC : https://github.com/g0vguy/CVE-2025-37164-PoC", "creation_timestamp": "2026-07-10T00:00:11.303364Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b78f4c45-0b14-4ea6-a8a5-219004daa764/export"/>
    <published>2026-07-10T00:00:11.303364+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/76276895-4c7b-41c0-849d-4ad258e7aad3/export</id>
    <title>76276895-4c7b-41c0-849d-4ad258e7aad3</title>
    <updated>2026-07-16T18:53:48.427210+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "76276895-4c7b-41c0-849d-4ad258e7aad3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "seen", "source": "https://t.me/iiLinux/3164", "content": "CVE-2025-37164: Unauthenticated RCE in HPE OneView.\n\nUnauthenticated RCE (10.0 CVSS) vulnerability, in Hewlett Packard Enterprise (HPE) OneView via an unauthenticated REST endpoint called executeCommand. All versions below 11.00 are vulnerable (so long as the vendor supplied hotfix has not been applied), however some VM product versions do not enable the vulnerable \"ID Pools\" endpoint, and are not exploitable.\n\nPOC : https://github.com/g0vguy/CVE-2025-37164-PoC", "creation_timestamp": "2026-07-09T03:00:04.260871Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/76276895-4c7b-41c0-849d-4ad258e7aad3/export"/>
    <published>2026-07-09T03:00:04.260871+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c56bdc6e-9c40-4813-875b-f07a7768e973/export</id>
    <title>c56bdc6e-9c40-4813-875b-f07a7768e973</title>
    <updated>2026-07-16T18:53:48.427329+00:00</updated>
    <author>
      <name>Cédric Bonhomme</name>
      <uri>https://vulnerability.circl.lu/user/cedric</uri>
    </author>
    <content>{"uuid": "c56bdc6e-9c40-4813-875b-f07a7768e973", "vulnerability_lookup_origin": "c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-37164", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/e43e5d7e-3f98-4df5-aff8-a79553d32660", "content": "", "creation_timestamp": "2026-06-30T09:42:36.162292Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c56bdc6e-9c40-4813-875b-f07a7768e973/export"/>
    <published>2026-06-30T09:42:36.162292+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/517d1d14-9cd8-4297-9249-e5a7e48f021a/export</id>
    <title>517d1d14-9cd8-4297-9249-e5a7e48f021a</title>
    <updated>2026-07-16T18:53:48.428818+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "517d1d14-9cd8-4297-9249-e5a7e48f021a", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/90f2570a-c6ae-407a-b90c-bfa99ba17c21", "content": "", "creation_timestamp": "2026-06-23T14:03:45.572158Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/517d1d14-9cd8-4297-9249-e5a7e48f021a/export"/>
    <published>2026-06-23T14:03:45.572158+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8e3959e4-f4a8-435e-b2d8-44907eae1341/export</id>
    <title>8e3959e4-f4a8-435e-b2d8-44907eae1341</title>
    <updated>2026-07-16T18:53:48.428971+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8e3959e4-f4a8-435e-b2d8-44907eae1341", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/94a6e03e-43b1-4354-bde7-bef3da2b13df", "content": "", "creation_timestamp": "2026-06-19T12:45:19.984590Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8e3959e4-f4a8-435e-b2d8-44907eae1341/export"/>
    <published>2026-06-19T12:45:19.984590+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/139a396f-c311-43ee-b047-e5452f6cfecc/export</id>
    <title>139a396f-c311-43ee-b047-e5452f6cfecc</title>
    <updated>2026-07-16T18:53:48.429083+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "139a396f-c311-43ee-b047-e5452f6cfecc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/5922978", "content": "", "creation_timestamp": "2026-03-04T01:42:54.503043Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/139a396f-c311-43ee-b047-e5452f6cfecc/export"/>
    <published>2026-03-04T01:42:54.503043+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/eb302262-f6d2-4a44-8912-700fac741353/export</id>
    <title>eb302262-f6d2-4a44-8912-700fac741353</title>
    <updated>2026-07-16T18:53:48.429183+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "eb302262-f6d2-4a44-8912-700fac741353", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-37164", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3meuh5tcgbc2w", "content": "", "creation_timestamp": "2026-02-15T02:06:03.296721Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/eb302262-f6d2-4a44-8912-700fac741353/export"/>
    <published>2026-02-15T02:06:03.296721+00:00</published>
  </entry>
</feed>
