https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-19T17:38:05.846285+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/bafb4518-ef03-4612-8030-89c6edb56b8d/exportbafb4518-ef03-4612-8030-89c6edb56b8d2026-06-19T17:38:05.854362+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "bafb4518-ef03-4612-8030-89c6edb56b8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3molqwn4o5k62", "content": "F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution TheHackerNews F5 fixes CVE-2026-42530 and CVE-2026-42055 in NGINX Open Source, addressing HTTP/3 and HTTP/2 flaws that...\n\n#Security #News\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-18T21:18:58.455597Z"}2026-06-18T21:18:58.455597+00:00https://vulnerability.circl.lu/sighting/4cca1073-b6a8-42fd-a52d-106a110227eb/export4cca1073-b6a8-42fd-a52d-106a110227eb2026-06-19T17:38:05.854291+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "4cca1073-b6a8-42fd-a52d-106a110227eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3molsfz3p3b2n", "content": "F5 patched two critical NGINX Open Source flaws, CVE-2026-42530 and CVE-2026-42055, that could enable remote code execution in certain configs. Mitigations include disabling HTTP/3 or adjusting headers. #NGINX #F5 #CVE202642530", "creation_timestamp": "2026-06-18T21:45:26.120014Z"}2026-06-18T21:45:26.120014+00:00https://vulnerability.circl.lu/sighting/70aef19b-0cfe-463d-8ba0-557d7820fa80/export70aef19b-0cfe-463d-8ba0-557d7820fa802026-06-19T17:38:05.854221+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "70aef19b-0cfe-463d-8ba0-557d7820fa80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://bsky.app/profile/dju.eurosky.social/post/3molyw2ol3c2h", "content": "plusieurs CVE dans nginx\n\nCVE-2026-42530\nCVE-2026-42055\nCVE-2026-48142\n\nthehackernews.com/2026/06/f5-p...", "creation_timestamp": "2026-06-18T23:41:47.806117Z"}2026-06-18T23:41:47.806117+00:00https://vulnerability.circl.lu/sighting/45138370-dab5-47ec-bb7f-3a60687612d4/export45138370-dab5-47ec-bb7f-3a60687612d42026-06-19T17:38:05.854147+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "45138370-dab5-47ec-bb7f-3a60687612d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42055", "type": "seen", "source": "https://bsky.app/profile/thecybersecguru.com/post/3mompp6rrhu2b", "content": "Two 9.2s in stock NGINX: inside the HTTP/3 QPACK use-after-free and the gRPC heap overflow F5 just\u00a0patched\n\nF5 patched two critical NGINX flaws (CVSS 9.2): a QPACK use-after-free in HTTP/3 and a gRPC heap overflow. Full\u2026\n\nhttps://thecybersecguru.com/news/nginx-cve-2026-42530-cve-2026-42055-rce/", "creation_timestamp": "2026-06-19T06:29:31.995649Z"}2026-06-19T06:29:31.995649+00:00https://vulnerability.circl.lu/sighting/eea2c778-08e9-4d9e-9266-3f99a3d90886/exporteea2c778-08e9-4d9e-9266-3f99a3d908862026-06-19T17:38:05.854068+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "eea2c778-08e9-4d9e-9266-3f99a3d90886", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42055", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3momr3spaum2v", "content": "\ud83d\udcf0 Picu Kerusakan Memori, F5 Rilis Patch Darurat Tutup Celah Kritis RCE pada NGINX\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/19/f5-rilis-patch-darurat-celah-kritis-nginx/\n\n#aslr #bufferOverflow #cve-2026-42055 #cve-2026-42530 #dos #f5 #http3 #nginx #outOfBand #patchDarurat ", "creation_timestamp": "2026-06-19T06:54:28.499995Z"}2026-06-19T06:54:28.499995+00:00https://vulnerability.circl.lu/sighting/28d9557d-8c87-465c-8434-a529b7ebf6b2/export28d9557d-8c87-465c-8434-a529b7ebf6b22026-06-19T17:38:05.853985+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "28d9557d-8c87-465c-8434-a529b7ebf6b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://infosec.exchange/users/beyondmachines1/statuses/116775720185561378", "content": "F5 Patches Critical Remote Code Execution Flaws in NGINX Open Source and Plus\nF5 addressed two critical vulnerabilities (CVE-2026-42530 and CVE-2026-42055) in NGINX that allow unauthenticated remote code execution or denial-of-service. The flaws affect NGINX Open Source, NGINX Plus, and several related gateway and controller products.\n**If you run NGINX (Open Source, Plus, Ingress Controller, Gateway Fabric, Instance Manager, or App Protect WAF), update immediately to the fixed versions F5 released: NGINX Open Source 1.31.2 or 1.30.3, and NGINX Plus 37.0.2.1 or R36 P6. If you can't patch right away, temporarily disable HTTP/3 by removing \"quic\" from all listen directives, and remove the \"ignore_invalid_headers off\" directive or shrink \"large_client_header_buffers\" to block these attacks until you update.**#cybersecurity #infosec #advisory #vulnerabilityhttps://beyondmachines.net/event_details/f5-patches-critical-remote-code-execution-flaws-in-nginx-open-source-and-plus-q-l-g-f-a/gD2P6Ple2L", "creation_timestamp": "2026-06-19T13:20:06.012658Z"}2026-06-19T13:20:06.012658+00:00https://vulnerability.circl.lu/sighting/75b96418-1e26-4553-832d-85f6ddd20b1f/export75b96418-1e26-4553-832d-85f6ddd20b1f2026-06-19T17:38:05.853907+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "75b96418-1e26-4553-832d-85f6ddd20b1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3monjucmz5s2h", "content": "F5 Patches Critical NGINX Vulnerabilities Enabling Unauthenticated Code Execution\n\nF5 released emergency updates for critical NGINX flaws (CVE-2026-42530, CVE-2026-42055) that could enable unauthenticated code execution. F5 has issued out-of-band patches for multiple NGINX vulnera\u2026\n#hackernews #news", "creation_timestamp": "2026-06-19T14:17:41.146746Z"}2026-06-19T14:17:41.146746+00:00https://vulnerability.circl.lu/sighting/fd6e90a2-0252-4d3a-9762-a7a3c4a379cb/exportfd6e90a2-0252-4d3a-9762-a7a3c4a379cb2026-06-19T17:38:05.853829+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "fd6e90a2-0252-4d3a-9762-a7a3c4a379cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://bsky.app/profile/toxy4ny.bsky.social/post/3moory7o7bs2s", "content": "Friday fuck-up) this time F5-Nginx - The vulnerabilities have been assigned the identifiers CVE-2026-42530 and CVE-2026-42055 and received a CVSS score of 9.2. They allow an unauthenticated remote attacker to trigger a denial-of-service (DoS) condition or achieve arbitrary code execution.", "creation_timestamp": "2026-06-19T16:15:53.287974Z"}2026-06-19T16:15:53.287974+00:00https://vulnerability.circl.lu/sighting/e9567ef2-bbc9-40bd-9480-e291a8fd8908/exporte9567ef2-bbc9-40bd-9480-e291a8fd89082026-06-19T17:38:05.853727+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "e9567ef2-bbc9-40bd-9480-e291a8fd8908", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://bsky.app/profile/toxy4ny.bsky.social/post/3moory7oj2c2s", "content": "Friday fuck-up) this time F5-Nginx - The vulnerabilities have been assigned the identifiers CVE-2026-42530 and CVE-2026-42055 and received a CVSS score of 9.2. They allow an unauthenticated remote attacker to trigger a denial-of-service (DoS) condition or achieve arbitrary code execution.", "creation_timestamp": "2026-06-19T16:15:55.143782Z"}2026-06-19T16:15:55.143782+00:00https://vulnerability.circl.lu/sighting/a76787a2-f0ce-4eac-aaa6-4a1b1633a25e/exporta76787a2-f0ce-4eac-aaa6-4a1b1633a25e2026-06-19T17:38:05.852593+00:00Automation userhttps://vulnerability.circl.lu/user/automation{"uuid": "a76787a2-f0ce-4eac-aaa6-4a1b1633a25e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42055", "type": "seen", "source": "https://bsky.app/profile/toxy4ny.bsky.social/post/3moory7oly22s", "content": "Friday fuck-up) this time F5-Nginx - The vulnerabilities have been assigned the identifiers CVE-2026-42530 and CVE-2026-42055 and received a CVSS score of 9.2. They allow an unauthenticated remote attacker to trigger a denial-of-service (DoS) condition or achieve arbitrary code execution.", "creation_timestamp": "2026-06-19T16:15:57.061829Z"}2026-06-19T16:15:57.061829+00:00