https://vulnerability.circl.lu/sightings/feed 2026-06-02T04:08:52.974270+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/c650b090-be0d-4ec1-846a-2a5cd5c6e798/export 2026-06-02T04:08:52.984962+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "c650b090-be0d-4ec1-846a-2a5cd5c6e798", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "Telegram/-Rw1GdqgLbdPMkOwlVEIvz70NMtSIs0WWvrIrO5vIfavaPE", "content": "", "creation_timestamp": "2026-05-25T11:00:08.000000Z"} 2026-05-25T11:00:08+00:00 https://vulnerability.circl.lu/sighting/9701c1df-0a7c-464c-b858-7c4309328b17/export 2026-06-02T04:08:52.984845+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9701c1df-0a7c-464c-b858-7c4309328b17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "https://t.me/GithubRedTeam/85824", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #RCE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-42945-Nginx-RCE-bypass-ASLR\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a bamov970\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 1 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-25 12:21:49\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-42945 turns a 17-year-old NGINX rewrite bug into remote code execution \u2014 even with ASLR on, by chaining the heap overflow with live worker memory read through a common file-read flaw.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-25T13:00:04.000000Z"} 2026-05-25T13:00:04+00:00 https://vulnerability.circl.lu/sighting/bcf0445f-4e13-4567-b563-557075e4dfd2/export 2026-06-02T04:08:52.984738+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "bcf0445f-4e13-4567-b563-557075e4dfd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "Telegram/p4pSz48sW8Fl1dqUeH21RBDMwtfRPHmaTBryFak7xdWuTDY", "content": "", "creation_timestamp": "2026-05-25T15:00:06.000000Z"} 2026-05-25T15:00:06+00:00 https://vulnerability.circl.lu/sighting/d67887aa-89e9-4ed7-8c06-3cbe2fe8867f/export 2026-06-02T04:08:52.984623+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d67887aa-89e9-4ed7-8c06-3cbe2fe8867f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "Telegram/X1Szwu_qpRNev2GcuASsATzQD-1aeqEPKRVacdyAUElWlBI", "content": "", "creation_timestamp": "2026-05-25T15:00:12.000000Z"} 2026-05-25T15:00:12+00:00 https://vulnerability.circl.lu/sighting/3e7ddbec-9727-4f6e-b020-be8903930fd3/export 2026-06-02T04:08:52.984495+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "3e7ddbec-9727-4f6e-b020-be8903930fd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mmozdjola72r", "content": "Server admins running NGINX should patch now. CVE-2026-42945 (NGINX Rift) is an 18-year-old heap buffer overflow in the rewrite module. Unauthenticated RCE possible where ASLR is weak. F5 patched May 13 (K000161019). Active exploitation in the wild.", "creation_timestamp": "2026-05-25T17:36:54.359496Z"} 2026-05-25T17:36:54.359496+00:00 https://vulnerability.circl.lu/sighting/ad989c41-7732-4f79-af2d-51af0b3f55b2/export 2026-06-02T04:08:52.984374+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ad989c41-7732-4f79-af2d-51af0b3f55b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "Telegram/_gErohbwTCKTW_lpvhKyjoM_ZM9ytnNcaUIrq9IFwI-Mxv4", "content": "", "creation_timestamp": "2026-05-27T21:11:38.000000Z"} 2026-05-27T21:11:38+00:00 https://vulnerability.circl.lu/sighting/33cbef4f-3c28-405d-92af-911a768e3fc9/export 2026-06-02T04:08:52.984246+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "33cbef4f-3c28-405d-92af-911a768e3fc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "https://bsky.app/profile/Kubernetes.activitypub.awakari.com.ap.brid.gy/post/3mmvj65tvwwk2", "content": "NGINX Under Active Attack: CVE-2026-42945 and CVE-2026-9256 Put Your Infrastructure at Risk Two critical NGINX heap buffer overflows are under active exploitation. Learn what's at risk, affecte...\n\n#Security #Bulletin #CVE-2026-42945 #CVE-2026-9256 #NGINX [\u2026] \n\n[Original post on indusface.com]", "creation_timestamp": "2026-05-28T07:38:45.661595Z"} 2026-05-28T07:38:45.661595+00:00 https://vulnerability.circl.lu/sighting/d992c4ff-2088-4382-94a5-1132011d9df0/export 2026-06-02T04:08:52.984115+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d992c4ff-2088-4382-94a5-1132011d9df0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3mn23th5ytx2x", "content": "The latest update for #Indusface includes \"6 WAAP Features Every Bank and Financial Institution Needs in 2026\" and \"NGINX Under Active Attack: CVE-2026-42945 and CVE-2026-9256 Put Your Infrastructure at Risk\".\n \n#cybersecurity #infosec https://opsmtrs.com/3ySs2VF", "creation_timestamp": "2026-05-30T03:20:52.720991Z"} 2026-05-30T03:20:52.720991+00:00 https://vulnerability.circl.lu/sighting/afa58572-aa24-44cf-8076-7004c3a038a1/export 2026-06-02T04:08:52.983955+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "afa58572-aa24-44cf-8076-7004c3a038a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mnav5brc2k2s", "content": "\u30a6\u30a7\u30d6\u30b5\u30fc\u30d0\u300cnginx\u300d\u306b\u8907\u6570\u8106\u5f31\u6027 - \u300c\u30af\u30ea\u30c6\u30a3\u30ab\u30eb\u300d\u3082\n\n\u30a6\u30a7\u30d6\u30b5\u30fc\u30d0\u300cnginx\u300d\u306b\u8907\u6570\u306e\u8106\u5f31\u6027\u304c\u5224\u660e\u3057\u305f\u3002\u300c\u30af\u30ea\u30c6\u30a3\u30ab\u30eb\u300d\u3068\u3055\u308c\u308b\u8106\u5f31\u6027\u3082\u4fee\u6b63\u3055\u308c\u3066\u3044\u308b\u3002\n\n\u958b\u767a\u30c1\u30fc\u30e0\u304c\u73fe\u5730\u6642\u95935\u670813\u65e5\u306b\u300cnginx 1.31.0 mainline\u300d\u300c\u540c1.30.1 stable\u300d\u3092\u30ea\u30ea\u30fc\u30b9\u3057\u305f\u3082\u306e\u3002CVE\u30d9\u30fc\u30b9\u30676\u4ef6\u306e\u8106\u5f31\u6027\u3078\u5bfe\u51e6\u3057\u305f\u3002\n\n\u300cCVE-2026-42945\u300d\u306f\u3001\u30ea\u30af\u30a8\u30b9\u30c8URI\u306e\u66f8\u304d\u63db\u3048\u51e6\u7406\u3092\u884c\u3046\u30e2\u30b8\u30e5\u30fc\u30eb\u300cngx_http_rewrite_module\u300d\u306b\u78ba\u8a8d\u3055\u308c\u305f\u30d2\u30fc\u30d7\u30d9\u30fc\u30b9\u306e\u30d0\u30c3\u30d5\u30a1\u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u306e\u8106\u5f31\u6027\u3002\n\n\u540c\u30e2\u30b8\u30e5\u30fc\u30eb\u306b\u304a\u3051\u308b\u7279\u5b9a\u306e\u8a2d\u5b9a\u74b0\u5883\u4e0b\u306b\u7d30\u5de5\u3057\u305fHTTP\u30ea\u30af...", "creation_timestamp": "2026-06-01T20:09:46.155195Z"} 2026-06-01T20:09:46.155195+00:00 https://vulnerability.circl.lu/sighting/861e15c2-fc6b-4dcd-b3ec-ca0d63b3e603/export 2026-06-02T04:08:52.982575+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "861e15c2-fc6b-4dcd-b3ec-ca0d63b3e603", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42945", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mnazr7atvk2s", "content": "\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c\u3092\u53ef\u80fd\u306b\u3059\u308b18\u5e74\u306eNGINX\u6b20\u9665\u306b\u5bfe\u3059\u308bPoC\u304c\u30ea\u30ea\u30fc\u30b9\u3055\u308c\u307e\u3057\u305f\n\n2008\u5e74\u304b\u3089\u96a0\u3055\u308c\u3066\u3044\u305fNGINX\u306e\u30bd\u30fc\u30b9\u30b3\u30fc\u30c9\u306b\u304a\u3051\u308b\u91cd\u5927\u306a\u8106\u5f31\u6027\u304c\u3064\u3044\u306b\u660e\u3089\u304b\u306b\u306a\u308a\u3001\u52d5\u4f5c\u3059\u308b\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u304c\u3059\u3067\u306b\u91ce\u751f\u3067\u767a\u751f\u3057\u3066\u3044\u307e\u3059\u3002\n\ndepthfirst \u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7814\u7a76\u8005\u306f\u3001\u4e16\u754c\u3067\u6700\u3082\u4eba\u6c17\u306e\u3042\u308b\u30a6\u30a7\u30d6\u30b5\u30fc\u30d0\u30fc\u3067\u3042\u308b NGINX \u306b\u5bfe\u3057\u3066\u3001\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c\uff08RCE\uff09\u3092\u793a\u3059\u6982\u5ff5\u5b9f\u2026\n\n\u3053\u306e\u8106\u5f31\u6027\u306f\u3001CVE-2026-42945 \u3068\u8ffd\u8de1\u3055\u308c\u3001\u30b3\u30fc\u30c9\u30cd\u30fc\u30e0\u306f NGINX Rift \u3068\u3055\u308c\u3001CVSS v4.0 \u306e\u30af\u30ea\u30c6\u30a3\u30ab\u30eb\u30b9\u30b3\u30a2 9.2 \u3092\u6709\u3057\u300118 \u5e74\u9593\u691c\u51fa\u3055\u308c\u3066\u3044\u307e\u305b\u3093\u3002", "creation_timestamp": "2026-06-01T21:32:42.463034Z"} 2026-06-01T21:32:42.463034+00:00