https://vulnerability.circl.lu/sightings/feed 2026-06-16T11:10:49.285643+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/0bffe034-6838-414e-a968-71977667c88b/export 2026-06-16T11:10:49.297796+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0bffe034-6838-414e-a968-71977667c88b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mnhzfo6tsr2e", "content": "\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8\u578b\u8105\u5a01\u30a2\u30af\u30bf\u30fc\u304c\u30aa\u30fc\u30b1\u30b9\u30c8\u30ec\u30fc\u30b7\u30e7\u30f3\u5c64\u306b\u5230\u9054\uff1aAI\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8\u4e3b\u5c0e\u306e\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7\n\n\u8105\u5a01\u30ea\u30b5\u30fc\u30c1 \u30c7\u30a3\u30ec\u30af\u30bf\u30fc2026\u5e745\u670829\u65e5\u3001Sysdig\u8105\u5a01\u30ea\u30b5\u30fc\u30c1\u30c1\u30fc\u30e0\uff08TRT\uff09\u306f\u3001\u8105\u5a01\u30a2\u30af\u30bf\u30fc\u304c\u8106\u5f31\u306amarimo\u30ce\u30fc\u30c8\u30d6\u30c3\u30af\uff08CVE-2026-39987\uff09\u3092\u60aa\u7528\u3057\u3001\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u5c64\u3092\u8d85\u3048\u3066\u5c55\u958b\u3059\u308b\u5b8c\u5168\u81ea\u52d5\u5316\u3055\u308c\u305f\u30ad\u30eb\u30c1\u30a7\u30fc\u30f3\u3092\u5b9f\u884c\u3057\u3066\u3044\u308b\u306e\u3092\u89b3\u6e2c\u3057\u307e\u3057\u305f\u3002\u653b\u6483\u306e\u5404\u6bb5\u968e\u306b\u306f\u3001\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8\u578b\u8105\u5a01\u30a2\u30af\u30bf\u30fc\uff08A...", "creation_timestamp": "2026-06-04T16:14:39.064408Z"} 2026-06-04T16:14:39.064408+00:00 https://vulnerability.circl.lu/sighting/824889c9-10fa-49ed-bff2-0b92fd7c2071/export 2026-06-16T11:10:49.297708+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "824889c9-10fa-49ed-bff2-0b92fd7c2071", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/mel-echosphere.bsky.social/post/3mnqz4prndu2x", "content": "\u5165\u53e3\u306f\u9b54\u6cd5\u3058\u3083\u306a\u3044\u3002CVE-2026-39987\u3001`/terminal/ws` \u306e\u8a8d\u8a3c\u629c\u3051\u3002marimo\u516c\u5f0f\u30a2\u30c9\u30d0\u30a4\u30b6\u30ea\u3082\u30010.23.0\u3067\u4fee\u6b63\u6e08\u307f\u3068\u66f8\u3044\u3066\u308b\u3002\nhttps://github.com/marimo-team/marimo/security/advisories/GHSA-2679-6mx9-h9xc\n\n\u7a74\u306e\u672c\u4f53\u306f\u300cAI\u304c\u5168\u90e8\u58ca\u3057\u305f\u300d\u3058\u3083\u306d\u3047\u3002\u5165\u3089\u308c\u305f\u5f8c\u306e\u6a2a\u79fb\u52d5\u304c\u5b89\u304f\u306a\u3063\u305f\u3053\u3068\u3060\u3002", "creation_timestamp": "2026-06-08T06:03:36.227462Z"} 2026-06-08T06:03:36.227462+00:00 https://vulnerability.circl.lu/sighting/9b44c696-c47c-4704-8c34-7aaacca63883/export 2026-06-16T11:10:49.297626+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9b44c696-c47c-4704-8c34-7aaacca63883", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/patrickcmiller.bsky.social/post/3mo25bvjog62m", "content": "Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit thehackernews.com/2026/05/atta...", "creation_timestamp": "2026-06-11T21:12:07.020519Z"} 2026-06-11T21:12:07.020519+00:00 https://vulnerability.circl.lu/sighting/5c969a50-bbd2-4fcf-91e4-19e1771cdbb1/export 2026-06-16T11:10:49.297528+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "5c969a50-bbd2-4fcf-91e4-19e1771cdbb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/robsongfreire.bsky.social/post/3mod6dmp6ss2o", "content": "E n\u00e3o em uma armadilha digital. O agente de IA explorou a vulnerabilidade CVE-2026-39987 em um notebook Marimo para obter acesso inicial. A partir da\u00ed, extraiu credenciais da Amazon Web Services, localizou e usou uma chave privada de acesso remoto e lan\u00e7ou oito sess\u00f5es paralelas contra o banco 2/6\ud83d\udc47", "creation_timestamp": "2026-06-15T11:24:53.343602Z"} 2026-06-15T11:24:53.343602+00:00 https://vulnerability.circl.lu/sighting/a656fde0-11e6-493f-8c72-0365c8e20b3f/export 2026-06-16T11:10:49.297444+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a656fde0-11e6-493f-8c72-0365c8e20b3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/robsongfreire.bsky.social/post/3mod6dmplj22o", "content": "E n\u00e3o em uma armadilha digital. O agente de IA explorou a vulnerabilidade CVE-2026-39987 em um notebook Marimo para obter acesso inicial. A partir da\u00ed, extraiu credenciais da Amazon Web Services, localizou e usou uma chave privada de acesso remoto e lan\u00e7ou oito sess\u00f5es paralelas contra o banco 2/6\ud83d\udc47", "creation_timestamp": "2026-06-15T11:24:54.067890Z"} 2026-06-15T11:24:54.067890+00:00 https://vulnerability.circl.lu/sighting/ad2a6ea1-6d8e-49a0-b1ee-88691b0e2e86/export 2026-06-16T11:10:49.297359+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ad2a6ea1-6d8e-49a0-b1ee-88691b0e2e86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/robsongfreire.bsky.social/post/3mod6dmpnhk2o", "content": "E n\u00e3o em uma armadilha digital. O agente de IA explorou a vulnerabilidade CVE-2026-39987 em um notebook Marimo para obter acesso inicial. A partir da\u00ed, extraiu credenciais da Amazon Web Services, localizou e usou uma chave privada de acesso remoto e lan\u00e7ou oito sess\u00f5es paralelas contra o banco 2/6\ud83d\udc47", "creation_timestamp": "2026-06-15T11:24:56.568514Z"} 2026-06-15T11:24:56.568514+00:00 https://vulnerability.circl.lu/sighting/6305930c-af6d-4540-883e-b39d3f81232a/export 2026-06-16T11:10:49.297270+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "6305930c-af6d-4540-883e-b39d3f81232a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/robsongfreire.bsky.social/post/3mod6dmpogs2o", "content": "E n\u00e3o em uma armadilha digital. O agente de IA explorou a vulnerabilidade CVE-2026-39987 em um notebook Marimo para obter acesso inicial. A partir da\u00ed, extraiu credenciais da Amazon Web Services, localizou e usou uma chave privada de acesso remoto e lan\u00e7ou oito sess\u00f5es paralelas contra o banco 2/6\ud83d\udc47", "creation_timestamp": "2026-06-15T11:24:57.156557Z"} 2026-06-15T11:24:57.156557+00:00 https://vulnerability.circl.lu/sighting/377a4e18-1f1e-40d8-b495-6abca8b0b464/export 2026-06-16T11:10:49.297174+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "377a4e18-1f1e-40d8-b495-6abca8b0b464", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/robsongfreire.bsky.social/post/3mod6dmppg22o", "content": "E n\u00e3o em uma armadilha digital. O agente de IA explorou a vulnerabilidade CVE-2026-39987 em um notebook Marimo para obter acesso inicial. A partir da\u00ed, extraiu credenciais da Amazon Web Services, localizou e usou uma chave privada de acesso remoto e lan\u00e7ou oito sess\u00f5es paralelas contra o banco 2/6\ud83d\udc47", "creation_timestamp": "2026-06-15T11:24:57.686380Z"} 2026-06-15T11:24:57.686380+00:00 https://vulnerability.circl.lu/sighting/ca8e3e4e-c578-4c86-8405-ac7c98893a61/export 2026-06-16T11:10:49.297042+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ca8e3e4e-c578-4c86-8405-ac7c98893a61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/robsongfreire.bsky.social/post/3mod6dmprek2o", "content": "E n\u00e3o em uma armadilha digital. O agente de IA explorou a vulnerabilidade CVE-2026-39987 em um notebook Marimo para obter acesso inicial. A partir da\u00ed, extraiu credenciais da Amazon Web Services, localizou e usou uma chave privada de acesso remoto e lan\u00e7ou oito sess\u00f5es paralelas contra o banco 2/6\ud83d\udc47", "creation_timestamp": "2026-06-15T11:24:58.214687Z"} 2026-06-15T11:24:58.214687+00:00 https://vulnerability.circl.lu/sighting/832ed5fe-97bd-4562-a190-004597a0818a/export 2026-06-16T11:10:49.295779+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "832ed5fe-97bd-4562-a190-004597a0818a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39987", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3moeqyf377y2r", "content": "Top 3 CVE for last 7 days:\nCVE-2026-35273: 57 interactions\nCVE-2026-11645: 30 interactions\nCVE-2025-10263: 25 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-39987: 18 interactions\nCVE-2026-0257: 7 interactions\nCVE-2026-12221: 6 interactions\n", "creation_timestamp": "2026-06-16T02:31:16.680831Z"} 2026-06-16T02:31:16.680831+00:00