Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-03T00:26:27.559781+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/a5e02480-6260-488e-96d9-101218a87481/export a5e02480-6260-488e-96d9-101218a87481 2026-06-03T00:26:27.570572+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a5e02480-6260-488e-96d9-101218a87481", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45321", "type": "seen", "source": "https://t.me/GithubRedTeam/85990", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #Exploit\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a tanscript-exploit-check\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a nkopylov\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Shell\n\u2b50 Star\u6570\u91cf\uff1a 1 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-26 14:46:38\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nIOC checker for the TanStack/Mini Shai-Hulud npm supply chain attack (CVE-2026-45321)\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-26T15:00:08.000000Z"} 2026-05-26T15:00:08+00:00 https://vulnerability.circl.lu/sighting/e09aa07b-11ba-4231-88f3-8d6fc11563f7/export e09aa07b-11ba-4231-88f3-8d6fc11563f7 2026-06-03T00:26:27.570482+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e09aa07b-11ba-4231-88f3-8d6fc11563f7", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45321", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/5eca6dd4-073c-4bd1-b174-250eb902c1bf", "content": "", "creation_timestamp": "2026-05-27T18:00:02.338954Z"} 2026-05-27T18:00:02.338954+00:00 https://vulnerability.circl.lu/sighting/a2c4a233-7346-4610-ab31-03a41d4cf000/export a2c4a233-7346-4610-ab31-03a41d4cf000 2026-06-03T00:26:27.570401+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a2c4a233-7346-4610-ab31-03a41d4cf000", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45321", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mmu45ujto42h", "content": "\ud83d\uded1 CVE-2026-45321\nTanStack TanStack\nCVSS 9.6 / EPSS 0% / KEV\nTL;DR: On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @ta\u2026\nhttps://cvesentinel.com/report/CVE-2026-45321?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-05-27T18:10:43.905534Z"} 2026-05-27T18:10:43.905534+00:00 https://vulnerability.circl.lu/sighting/80d9955a-5970-46de-81f4-fbe887842a54/export 80d9955a-5970-46de-81f4-fbe887842a54 2026-06-03T00:26:27.570318+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "80d9955a-5970-46de-81f4-fbe887842a54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45321", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6591184", "content": "2026-05-27: [CVE-2026-45321] TanStack Unspecified VulnerabilityTanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealing malware under a trusted identity.\ncisakev", "creation_timestamp": "2026-05-27T19:09:44.103279Z"} 2026-05-27T19:09:44.103279+00:00 https://vulnerability.circl.lu/sighting/b12e9c3d-2d1a-4f53-a2b2-24f38c9221db/export b12e9c3d-2d1a-4f53-a2b2-24f38c9221db 2026-06-03T00:26:27.570231+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b12e9c3d-2d1a-4f53-a2b2-24f38c9221db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45321", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmucnfq3w323", "content": "~Cisa~\nCISA added three actively exploited vulnerabilities to the KEV catalog.\n-\nIOCs: CVE-2026-8398, CVE-2026-45321, CVE-2026-48027\n-\n#CISA #KEV #threatintel", "creation_timestamp": "2026-05-27T20:06:47.560330Z"} 2026-05-27T20:06:47.560330+00:00 https://vulnerability.circl.lu/sighting/453403ac-0d6d-44b0-866a-9bace3d33eda/export 453403ac-0d6d-44b0-866a-9bace3d33eda 2026-06-03T00:26:27.570137+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "453403ac-0d6d-44b0-866a-9bace3d33eda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45322", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmulp7z3no2c", "content": "CVE-2026-45322 - OS Command Injection in Microsoft UFO Shell Action Replay via Stored Session JSON\nCVE ID : CVE-2026-45322\n \n Published : May 27, 2026, 9:32 p.m. | 59\u00a0minutes ago\n \n Description : Microsoft UFO open-source framework for intelligent automation across devices and...", "creation_timestamp": "2026-05-27T22:48:52.295004Z"} 2026-05-27T22:48:52.295004+00:00 https://vulnerability.circl.lu/sighting/d1d8c2bf-e37d-4ac6-aee8-90ce071fa51f/export d1d8c2bf-e37d-4ac6-aee8-90ce071fa51f 2026-06-03T00:26:27.570048+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d1d8c2bf-e37d-4ac6-aee8-90ce071fa51f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45322", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mmuy77l42d2v", "content": "Microsoft UFO v3.0.0\u4ee5\u524d\u306eOS\u30b3\u30de\u30f3\u30c9\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u8106\u5f31\u6027\u3002\u653b\u6483\u8005\u306fJSON\u30d5\u30a1\u30a4\u30eb\u6539\u3056\u3093\u306b\u3088\u308a\u3001UFO\u30d7\u30ed\u30bb\u30b9\u30e6\u30fc\u30b6\u30fc\u6a29\u9650\u3067\u306e\u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u304c\u53ef\u80fd\u3002\nCVE-2026-45322 CVSS 7.8 | HIGH", "creation_timestamp": "2026-05-28T02:32:33.825163Z"} 2026-05-28T02:32:33.825163+00:00 https://vulnerability.circl.lu/sighting/513fa4da-c408-469c-b615-2d7b51750b85/export 513fa4da-c408-469c-b615-2d7b51750b85 2026-06-03T00:26:27.569954+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "513fa4da-c408-469c-b615-2d7b51750b85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45323", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwpgnynjr2c", "content": "\ud83d\udd34 CVE-2026-45323 - Critical (9.6)\n\nMeshCore Card provides MeshCore Lovelace card for Home Assistant. Prior to 0.3.3, Meshcore node n...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45323/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T19:01:00.135248Z"} 2026-05-28T19:01:00.135248+00:00 https://vulnerability.circl.lu/sighting/d6dbf14d-fe78-4ac6-b085-8e85947e1933/export d6dbf14d-fe78-4ac6-b085-8e85947e1933 2026-06-03T00:26:27.569827+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d6dbf14d-fe78-4ac6-b085-8e85947e1933", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45323", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwu2bimnj2p", "content": "CVE-2026-45323 - MeshCore Card: XSS vulnerability through meshcore node name\nCVE ID : CVE-2026-45323\n \n Published : May 28, 2026, 6:16 p.m. | 54\u00a0minutes ago\n \n Description : MeshCore Card provides MeshCore Lovelace card for Home Assistant. Prior to 0.3.3, Meshcore node names a...", "creation_timestamp": "2026-05-28T20:23:32.282544Z"} 2026-05-28T20:23:32.282544+00:00 https://vulnerability.circl.lu/sighting/71f8ccfc-327b-4251-96c0-3c3090fe594f/export 71f8ccfc-327b-4251-96c0-3c3090fe594f 2026-06-03T00:26:27.568218+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "71f8ccfc-327b-4251-96c0-3c3090fe594f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45324", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzikf3xhm27", "content": "CVE-2026-45324 - Rizin: Double free in cmd_search.c\nCVE ID : CVE-2026-45324\n \n Published : May 29, 2026, 8:16 p.m. | 16\u00a0minutes ago\n \n Description : Rizin is a UNIX-like reverse engineering framework and command-line toolset. There is a double free in librz/core/cmd/cmd_search...", "creation_timestamp": "2026-05-29T21:35:47.304145Z"} 2026-05-29T21:35:47.304145+00:00