Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-30T21:45:22.693110+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/a5d8fca9-a16c-4d84-93c5-fa7d437cb448/export a5d8fca9-a16c-4d84-93c5-fa7d437cb448 2026-05-30T21:45:22.715568+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a5d8fca9-a16c-4d84-93c5-fa7d437cb448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42369", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116514778449951013", "content": "\ud83d\udea8 CVE-2026-42369 (CRITICAL, CVSS 10): GeoVision GV-VMS V20.0.2 stack overflow in gvapi endpoint lets unauthenticated remote attackers execute code as SYSTEM. Restrict remote access, monitor for patches. https://radar.offseq.com/threat/cve-2026-42369-cwe-787-out-of-bounds-write-in-geov-0757b787 #OffSeq #CVE202642369 #infosec #zeroday", "creation_timestamp": "2026-05-04T06:00:31.183284Z"} 2026-05-04T06:00:31.183284+00:00 https://vulnerability.circl.lu/sighting/c849bd34-f1b0-424c-bc55-f06ebcf4d98c/export c849bd34-f1b0-424c-bc55-f06ebcf4d98c 2026-05-30T21:45:22.715502+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "c849bd34-f1b0-424c-bc55-f06ebcf4d98c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42369", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3mkzbmxfeo22a", "content": "\ud83d\udea8 Critical flaw in CVE-2026-42369 affects GeoVision GV-VMS V20 (CVSS 10.0). Unauthenticated attackers can gain full SYSTEM access via the WebCam Server. \n\n\ud83d\udd17 basefortify.eu/cve_reports/... \n\n#CVE #CyberSecurity #GeoVision", "creation_timestamp": "2026-05-04T08:41:41.153344Z"} 2026-05-04T08:41:41.153344+00:00 https://vulnerability.circl.lu/sighting/2d8afbe9-2ebc-4e45-b63c-bbe5b123330f/export 2d8afbe9-2ebc-4e45-b63c-bbe5b123330f 2026-05-30T21:45:22.715439+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "2d8afbe9-2ebc-4e45-b63c-bbe5b123330f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42369", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3mkzbmysrs22a", "content": "\ud83d\udea8 Critical flaw in CVE-2026-42369 affects GeoVision GV-VMS V20 (CVSS 10.0). Unauthenticated attackers can gain full SYSTEM access via the WebCam Server. \n\n\ud83d\udd17 basefortify.eu/cve_reports/... \n\n#CVE #CyberSecurity #GeoVision", "creation_timestamp": "2026-05-04T08:41:43.094535Z"} 2026-05-04T08:41:43.094535+00:00 https://vulnerability.circl.lu/sighting/4a9b500e-07c8-4954-8f32-cc638d52b7a3/export 4a9b500e-07c8-4954-8f32-cc638d52b7a3 2026-05-30T21:45:22.715375+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4a9b500e-07c8-4954-8f32-cc638d52b7a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42369", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3mkzbn3lrh22a", "content": "\ud83d\udea8 Critical flaw in CVE-2026-42369 affects GeoVision GV-VMS V20 (CVSS 10.0). Unauthenticated attackers can gain full SYSTEM access via the WebCam Server. \n\n\ud83d\udd17 basefortify.eu/cve_reports/... \n\n#CVE #CyberSecurity #GeoVision", "creation_timestamp": "2026-05-04T08:41:43.757601Z"} 2026-05-04T08:41:43.757601+00:00 https://vulnerability.circl.lu/sighting/7b1695d7-0a13-40a4-b7e9-20070b2acc59/export 7b1695d7-0a13-40a4-b7e9-20070b2acc59 2026-05-30T21:45:22.715310+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7b1695d7-0a13-40a4-b7e9-20070b2acc59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42368", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116515840100676025", "content": "\ud83c\udf10 CVE-2026-42368 | CRITICAL privilege escalation in GeoVision GV-LPC2011/LPC2211 v1.10. Remote attackers can gain full control via crafted HTTP requests. No patch \u2014 restrict web interface access & monitor traffic. Details: https://radar.offseq.com/threat/cve-2026-42368-cwe-266-incorrect-privilege-assignm-b84e399c #OffSeq #Vuln #IoT #CyberSecurity", "creation_timestamp": "2026-05-04T10:30:27.922246Z"} 2026-05-04T10:30:27.922246+00:00 https://vulnerability.circl.lu/sighting/c281fb92-cf26-4ec5-aa8d-91859aecd2c7/export c281fb92-cf26-4ec5-aa8d-91859aecd2c7 2026-05-30T21:45:22.715246+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "c281fb92-cf26-4ec5-aa8d-91859aecd2c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42368", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mkzhppcbyr2o", "content": "CRITICAL: GeoVision GV-LPC2011/LPC2211 v1.10 has a severe privilege escalation flaw. Restrict web access & monitor HTTP requests \u2014 no patch yet. Protect your devices! https://radar.offseq.com/threat/cve-2026-42368-cwe-266-incorrect-privilege-assignm-b84e399c #OffSeq #Vulnerability #IoTSecurity", "creation_timestamp": "2026-05-04T10:30:29.375888Z"} 2026-05-04T10:30:29.375888+00:00 https://vulnerability.circl.lu/sighting/5fffef79-c9d0-4289-991a-ec2b8b762e4a/export 5fffef79-c9d0-4289-991a-ec2b8b762e4a 2026-05-30T21:45:22.715181+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "5fffef79-c9d0-4289-991a-ec2b8b762e4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42368", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ml3cr4g2zt2s", "content": "\ud83d\udccc CVE-2026-42368 - A privilege escalation vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted HTTP request can... https://www.cyberhub.blog/cves/CVE-2026-42368", "creation_timestamp": "2026-05-05T04:07:08.709882Z"} 2026-05-05T04:07:08.709882+00:00 https://vulnerability.circl.lu/sighting/05d41c02-0d68-49da-b5f2-ea4291a0f3ef/export 05d41c02-0d68-49da-b5f2-ea4291a0f3ef 2026-05-30T21:45:22.715110+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "05d41c02-0d68-49da-b5f2-ea4291a0f3ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42365", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ml3hs3742i2v", "content": "\ud83d\udccc CVE-2026-42365 - A guessable session cookie vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted series of HT... https://www.cyberhub.blog/cves/CVE-2026-42365", "creation_timestamp": "2026-05-05T05:37:07.923869Z"} 2026-05-05T05:37:07.923869+00:00 https://vulnerability.circl.lu/sighting/ce747fa4-dc42-4e09-8563-a9895712f982/export ce747fa4-dc42-4e09-8563-a9895712f982 2026-05-30T21:45:22.715021+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ce747fa4-dc42-4e09-8563-a9895712f982", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42366", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mlxwdselvi2h", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-42366 GeoVision LPC2011/LPC2211\u00a01.10\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nGeoVision LPC2011/LPC2211 1.10\u306eWeb Interface / ssi.cgi\u6a5f\u80fd\u306b\u8907\u6570\u306e\u53cd\u5c04\u578b\u30af\u30ed\u30b9\u30b5\u30a4\u30c8\u30b9\u30af\u30ea\u30d7\u30c6\u30a3\u30f3\u30b0\uff08XSS\uff09\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u307e\u3059\u3002", "creation_timestamp": "2026-05-16T13:12:07.550279Z"} 2026-05-16T13:12:07.550279+00:00 https://vulnerability.circl.lu/sighting/4a2bf48e-2239-4692-84fb-d6305f31d24f/export 4a2bf48e-2239-4692-84fb-d6305f31d24f 2026-05-30T21:45:22.711790+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4a2bf48e-2239-4692-84fb-d6305f31d24f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42364", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmp2zlx4ie2r", "content": "\ud83d\udccc CVE-2026-42364 - An os command injection vulnerability exists in the DdnsSetting.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted DDNS configur... https://www.cyberhub.blog/cves/CVE-2026-42364", "creation_timestamp": "2026-05-25T18:07:08.445895Z"} 2026-05-25T18:07:08.445895+00:00