<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-08T12:10:29.516031+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f2c981f3-705c-4271-9ddf-e856b1eeb98c/export</id>
    <title>f2c981f3-705c-4271-9ddf-e856b1eeb98c</title>
    <updated>2026-07-08T12:10:29.542950+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f2c981f3-705c-4271-9ddf-e856b1eeb98c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24014", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq4am2dxdh2f", "content": "\ud83d\udccc CVE-2026-24014 - Apache IoTDB DataNode\u2019s internal RPC interface for creating Trigger instances uses the uploaded Trigger JAR name to build a file path without sufficie... https://www.cyberhub.blog/cves/CVE-2026-24014", "creation_timestamp": "2026-07-08T04:07:07.286154Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f2c981f3-705c-4271-9ddf-e856b1eeb98c/export"/>
    <published>2026-07-08T04:07:07.286154+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f68fb8fb-3cd6-491d-bb35-00aabcb1b33c/export</id>
    <title>f68fb8fb-3cd6-491d-bb35-00aabcb1b33c</title>
    <updated>2026-07-08T12:10:29.545975+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f68fb8fb-3cd6-491d-bb35-00aabcb1b33c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24014", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpywlvq6ic2e", "content": "CVE-2026-24014 - apache iotdb\nApache IoTDB allows an attacker to write files on the system if the internal RPC port is exposed to an untrusted network. This could lead to unauthorized data\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apacheiotdb #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T20:30:08.486559Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f68fb8fb-3cd6-491d-bb35-00aabcb1b33c/export"/>
    <published>2026-07-06T20:30:08.486559+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/33fd5114-ced9-4155-8285-dd45e32e4d8c/export</id>
    <title>33fd5114-ced9-4155-8285-dd45e32e4d8c</title>
    <updated>2026-07-08T12:10:29.546073+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "33fd5114-ced9-4155-8285-dd45e32e4d8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24014", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpysv577xg2h", "content": "CVE-2026-24014: Apache IoTDB: Path Traversal in DataNode Internal RPC Trigger JAR Upload Allows Arbitrary File Write", "creation_timestamp": "2026-07-06T19:23:40.724232Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/33fd5114-ced9-4155-8285-dd45e32e4d8c/export"/>
    <published>2026-07-06T19:23:40.724232+00:00</published>
  </entry>
</feed>
