https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 23 Jun 2026 22:39:10 +0000 https://vulnerability.circl.lu/sighting/a8c5c901-c1f2-46c9-a289-66bf469070ce/export {"uuid": "a8c5c901-c1f2-46c9-a289-66bf469070ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11374", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mox6zvolwn2f", "content": "Zoho ManageEngine ADSelfService Plus faces CRITICAL CVE-2026-11374: predictable SSO tickets let attackers hijack accounts. No patch \u2014 monitor vendor updates and restrict access. https://radar.offseq.com/threat/cve-2026-11374-cwe-340-generation-of-predictable-n-3400726b0246539c #OffSeq #Zoho #SSO", "creation_timestamp": "2026-06-23T10:30:35.844123Z"} {"uuid": "a8c5c901-c1f2-46c9-a289-66bf469070ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11374", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mox6zvolwn2f", "content": "Zoho ManageEngine ADSelfService Plus faces CRITICAL CVE-2026-11374: predictable SSO tickets let attackers hijack accounts. No patch \u2014 monitor vendor updates and restrict access. https://radar.offseq.com/threat/cve-2026-11374-cwe-340-generation-of-predictable-n-3400726b0246539c #OffSeq #Zoho #SSO", "creation_timestamp": "2026-06-23T10:30:35.844123Z"} https://vulnerability.circl.lu/sighting/a8c5c901-c1f2-46c9-a289-66bf469070ce/export Tue, 23 Jun 2026 10:30:35 +0000 https://vulnerability.circl.lu/sighting/a248eeb5-a98f-465c-b87f-80494043795d/export {"uuid": "a248eeb5-a98f-465c-b87f-80494043795d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11374", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116798955994793705", "content": "Zoho ManageEngine ADSelfService Plus hit by CRITICAL CVE-2026-11374: predictable SSO tickets enable unauthenticated account takeover. No patch yet \u2014 monitor advisories and review exposure. https://radar.offseq.com/threat/cve-2026-11374-cwe-340-generation-of-predictable-n-3400726b0246539c #OffSeq #Zoho #Vuln #SSO #Infosec", "creation_timestamp": "2026-06-23T10:30:36.922945Z"} {"uuid": "a248eeb5-a98f-465c-b87f-80494043795d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11374", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116798955994793705", "content": "Zoho ManageEngine ADSelfService Plus hit by CRITICAL CVE-2026-11374: predictable SSO tickets enable unauthenticated account takeover. No patch yet \u2014 monitor advisories and review exposure. https://radar.offseq.com/threat/cve-2026-11374-cwe-340-generation-of-predictable-n-3400726b0246539c #OffSeq #Zoho #Vuln #SSO #Infosec", "creation_timestamp": "2026-06-23T10:30:36.922945Z"} https://vulnerability.circl.lu/sighting/a248eeb5-a98f-465c-b87f-80494043795d/export Tue, 23 Jun 2026 10:30:36 +0000 https://vulnerability.circl.lu/sighting/a42cd323-f3de-4990-8b79-8008434b5d96/export {"uuid": "a42cd323-f3de-4990-8b79-8008434b5d96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11374", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moxbkdgb2s2j", "content": "CVE-2026-11374 - Account Takeover via Predictable SSO Ticket Generation\nCVE ID : CVE-2026-11374\n \n Published : 23 juin 2026 08:19 | 1\u00a0heure, 23\u00a0minutes ago\n \n Description : In ManageEngine ADSelfService Plus, RecoveryManager Plus, M365 Manager Plus, and ADAudit Plus, the SSO t...", "creation_timestamp": "2026-06-23T11:15:33.375690Z"} {"uuid": "a42cd323-f3de-4990-8b79-8008434b5d96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11374", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moxbkdgb2s2j", "content": "CVE-2026-11374 - Account Takeover via Predictable SSO Ticket Generation\nCVE ID : CVE-2026-11374\n \n Published : 23 juin 2026 08:19 | 1\u00a0heure, 23\u00a0minutes ago\n \n Description : In ManageEngine ADSelfService Plus, RecoveryManager Plus, M365 Manager Plus, and ADAudit Plus, the SSO t...", "creation_timestamp": "2026-06-23T11:15:33.375690Z"} https://vulnerability.circl.lu/sighting/a42cd323-f3de-4990-8b79-8008434b5d96/export Tue, 23 Jun 2026 11:15:33 +0000