https://vulnerability.circl.lu/sightings/feed 2026-06-05T18:30:02.136251+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/f5827f53-93f8-46c0-9fa7-19f6746cfd40/export 2026-06-05T18:30:02.160836+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f5827f53-93f8-46c0-9fa7-19f6746cfd40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42079", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml2bgbykt22w", "content": "\ud83d\udfe0 CVE-2026-42079 - High (8.6)\n\nPPTAgent is an agentic framework for reflective PowerPoint generation. Prior to commit 418491a, P...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42079/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-04T18:10:30.932002Z"} 2026-05-04T18:10:30.932002+00:00 https://vulnerability.circl.lu/sighting/d003427e-8588-42ea-9f8f-fc25136565d3/export 2026-06-05T18:30:02.160765+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d003427e-8588-42ea-9f8f-fc25136565d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42079", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml2bhdmvyd2c", "content": "\ud83d\udfe0 CVE-2026-42079 - High (8.6)\n\nPPTAgent is an agentic framework for reflective PowerPoint generation. Prior to commit 418491a, P...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42079/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-04T18:11:05.881166Z"} 2026-05-04T18:11:05.881166+00:00 https://vulnerability.circl.lu/sighting/e67f1c80-dbbd-4319-9805-2b39d18c7319/export 2026-06-05T18:30:02.160694+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e67f1c80-dbbd-4319-9805-2b39d18c7319", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42072", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlealona2526", "content": "\ud83d\udd34 CVE-2026-42072 - Critical (9.8)\n\nNornicdb is a distributed low-latency, Graph+Vector, Temporal MVCC with all sub-ms HNSW search, g...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42072/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T17:22:15.165295Z"} 2026-05-08T17:22:15.165295+00:00 https://vulnerability.circl.lu/sighting/fa4107f1-a8ce-4b0e-ac36-63cac8372bae/export 2026-06-05T18:30:02.160622+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "fa4107f1-a8ce-4b0e-ac36-63cac8372bae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42072", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mleem5x72k2v", "content": "CVE-2026-42072 - Nornicdb: Improper Network Binding in NornicDB Bolt Server allows unauthorized remote access\nCVE ID : CVE-2026-42072\n \n Published : May 8, 2026, 5:16 p.m. | 1\u00a0hour, 4\u00a0minutes ago\n \n Description : Nornicdb is a distributed low-latency, Graph+Vector, Temporal MV...", "creation_timestamp": "2026-05-08T18:34:05.872931Z"} 2026-05-08T18:34:05.872931+00:00 https://vulnerability.circl.lu/sighting/7fb8de08-be07-492a-ac85-c119f3619aa8/export 2026-06-05T18:30:02.160543+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7fb8de08-be07-492a-ac85-c119f3619aa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42072", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116544151733422821", "content": "\u26a0\ufe0f CRITICAL: orneryd NornicDB (<1.0.42-hotfix) exposes Bolt server on all LAN interfaces with default admin creds (admin:password). Full DB compromise possible! Upgrade to 1.0.42-hotfix now. CVE-2026-42072 https://radar.offseq.com/threat/cve-2026-42072-cwe-1392-use-of-default-credentials-cb1c5acf #OffSeq #CVE202642072 #infosec", "creation_timestamp": "2026-05-09T10:30:28.544883Z"} 2026-05-09T10:30:28.544883+00:00 https://vulnerability.circl.lu/sighting/4cdb49b2-9104-4bc6-a456-b2a7a5222d04/export 2026-06-05T18:30:02.160466+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4cdb49b2-9104-4bc6-a456-b2a7a5222d04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42072", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlg22dseio2y", "content": "NornicDB (<1.0.42-hotfix) critical vuln: Bolt server exposed on LAN with default admin creds. Upgrade to 1.0.42-hotfix ASAP to prevent DB compromise! \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-42072-cwe-1392-use-of-default-credentials-cb1c5acf #OffSeq #CVE202642072", "creation_timestamp": "2026-05-09T10:30:30.417316Z"} 2026-05-09T10:30:30.417316+00:00 https://vulnerability.circl.lu/sighting/6b316a40-ccfa-4fd7-a5c0-8e9a6d938f3e/export 2026-06-05T18:30:02.160380+00:00 Joseph Lee https://vulnerability.circl.lu/user/syspect {"uuid": "6b316a40-ccfa-4fd7-a5c0-8e9a6d938f3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42073", "type": "published-proof-of-concept", "source": "https://github.com/Gitlawb/openclaude/security/advisories/GHSA-c73c-x77g-854r", "content": "", "creation_timestamp": "2026-05-12T15:22:12.000000Z"} 2026-05-12T15:22:12+00:00 https://vulnerability.circl.lu/sighting/c6c70979-2e8a-4577-9858-e83576af8692/export 2026-06-05T18:30:02.158785+00:00 Joseph Lee https://vulnerability.circl.lu/user/syspect {"uuid": "c6c70979-2e8a-4577-9858-e83576af8692", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42074", "type": "published-proof-of-concept", "source": "https://github.com/Gitlawb/openclaude/security/advisories/GHSA-m77w-p5jj-xmhg", "content": "", "creation_timestamp": "2026-05-12T15:22:53.000000Z"} 2026-05-12T15:22:53+00:00 https://vulnerability.circl.lu/sighting/8c3eb214-bd8a-4b7a-8403-cc6175adcb09/export 2026-06-05T18:30:02.158408+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "8c3eb214-bd8a-4b7a-8403-cc6175adcb09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42074", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mndd3o6o4n24", "content": "CVE-2026-42074 - OpenClaude: Sandbox Bypass via Model-Controlled `dangerouslyDisableSandbox` Input\nCVE ID : CVE-2026-42074\n \n Published : June 2, 2026, 5:16 p.m. | 1\u00a0hour, 57\u00a0minutes ago\n \n Description : OpenClaude is an open-source coding-agent command line interface for clou...", "creation_timestamp": "2026-06-02T19:24:42.173758Z"} 2026-06-02T19:24:42.173758+00:00 https://vulnerability.circl.lu/sighting/63e6de97-18fc-4964-9984-f30efe43ab24/export 2026-06-05T18:30:02.154972+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "63e6de97-18fc-4964-9984-f30efe43ab24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42074", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnh2ggyv6525", "content": "\ud83d\udd34 CVE-2026-42074 - Critical (9.8)\n\nOpenClaude is an open-source coding-agent command line interface for cloud and local model provid...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42074/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-04T07:00:20.206182Z"} 2026-06-04T07:00:20.206182+00:00