<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 08 Jul 2026 23:01:43 +0000</lastBuildDate>
    <item>
      <title>5b913b38-8c06-4b21-9d18-9b1effa9f368</title>
      <link>https://vulnerability.circl.lu/sighting/5b913b38-8c06-4b21-9d18-9b1effa9f368/export</link>
      <description>{"uuid": "5b913b38-8c06-4b21-9d18-9b1effa9f368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mq5t7popij2g", "content": "Self-hosted BeyondTrust appliances are exposed until admins patch: two CVSS 9.2 pre-auth flaws, CVE-2026-40138 and CVE-2026-40139, let unauthenticated attackers reach privileged accounts in Remote Support and Privileged Remote Access. Cloud was patched in April. Per The Hacker News.", "creation_timestamp": "2026-07-08T19:12:54.766649Z"}</description>
      <content:encoded>{"uuid": "5b913b38-8c06-4b21-9d18-9b1effa9f368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mq5t7popij2g", "content": "Self-hosted BeyondTrust appliances are exposed until admins patch: two CVSS 9.2 pre-auth flaws, CVE-2026-40138 and CVE-2026-40139, let unauthenticated attackers reach privileged accounts in Remote Support and Privileged Remote Access. Cloud was patched in April. Per The Hacker News.", "creation_timestamp": "2026-07-08T19:12:54.766649Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/5b913b38-8c06-4b21-9d18-9b1effa9f368/export</guid>
      <pubDate>Wed, 08 Jul 2026 19:12:54 +0000</pubDate>
    </item>
    <item>
      <title>ba7c1b38-1c67-4a60-81cc-5fdc29771001</title>
      <link>https://vulnerability.circl.lu/sighting/ba7c1b38-1c67-4a60-81cc-5fdc29771001/export</link>
      <description>{"uuid": "ba7c1b38-1c67-4a60-81cc-5fdc29771001", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mq5ept3hka2f", "content": "\ud83d\udea8 URGENT: BeyondTrust patches two CRITICAL auth bypass flaws (CVE-2026-40138, CVE-2026-40139) in its Remote Support &amp;amp; Privileged Remote Access tools. Unauthenticated remote access is possible. Patch NOW. #Vulnerability #PAM #CyberSecurity\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-08T14:53:28.862202Z"}</description>
      <content:encoded>{"uuid": "ba7c1b38-1c67-4a60-81cc-5fdc29771001", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mq5ept3hka2f", "content": "\ud83d\udea8 URGENT: BeyondTrust patches two CRITICAL auth bypass flaws (CVE-2026-40138, CVE-2026-40139) in its Remote Support &amp;amp; Privileged Remote Access tools. Unauthenticated remote access is possible. Patch NOW. #Vulnerability #PAM #CyberSecurity\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-08T14:53:28.862202Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ba7c1b38-1c67-4a60-81cc-5fdc29771001/export</guid>
      <pubDate>Wed, 08 Jul 2026 14:53:28 +0000</pubDate>
    </item>
    <item>
      <title>46bb67d8-0eef-4e52-a39b-e4d85c12564e</title>
      <link>https://vulnerability.circl.lu/sighting/46bb67d8-0eef-4e52-a39b-e4d85c12564e/export</link>
      <description>{"uuid": "46bb67d8-0eef-4e52-a39b-e4d85c12564e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116884921728737765", "content": "\ud83d\udcf0 BeyondTrust Patches Critical Flaws in Remote Support and Privileged Access Tools\n\ud83d\udea8 URGENT: BeyondTrust patches two CRITICAL auth bypass flaws (CVE-2026-40138, CVE-2026-40139) in its Remote Support &amp;amp; Privileged Remote Access tools. Unauthenticated remote access is possible. Patch NOW. #Vulnerability #PAM #CyberSecurity\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/beyondtrust-patches-critical-authentication-bypass-flaws-in-remote-access-tools/?utm\u2026", "creation_timestamp": "2026-07-08T14:52:49.321047Z"}</description>
      <content:encoded>{"uuid": "46bb67d8-0eef-4e52-a39b-e4d85c12564e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116884921728737765", "content": "\ud83d\udcf0 BeyondTrust Patches Critical Flaws in Remote Support and Privileged Access Tools\n\ud83d\udea8 URGENT: BeyondTrust patches two CRITICAL auth bypass flaws (CVE-2026-40138, CVE-2026-40139) in its Remote Support &amp;amp; Privileged Remote Access tools. Unauthenticated remote access is possible. Patch NOW. #Vulnerability #PAM #CyberSecurity\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/beyondtrust-patches-critical-authentication-bypass-flaws-in-remote-access-tools/?utm\u2026", "creation_timestamp": "2026-07-08T14:52:49.321047Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/46bb67d8-0eef-4e52-a39b-e4d85c12564e/export</guid>
      <pubDate>Wed, 08 Jul 2026 14:52:49 +0000</pubDate>
    </item>
    <item>
      <title>a4d3267b-de88-4227-aace-fbfef9e05434</title>
      <link>https://vulnerability.circl.lu/sighting/a4d3267b-de88-4227-aace-fbfef9e05434/export</link>
      <description>{"uuid": "a4d3267b-de88-4227-aace-fbfef9e05434", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq4hcmam3s2f", "content": "\ud83d\udccc CVE-2026-40139 - A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Support.\u00a0Improper processing of authenticatio... https://www.cyberhub.blog/cves/CVE-2026-40139", "creation_timestamp": "2026-07-08T06:07:08.480879Z"}</description>
      <content:encoded>{"uuid": "a4d3267b-de88-4227-aace-fbfef9e05434", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq4hcmam3s2f", "content": "\ud83d\udccc CVE-2026-40139 - A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Support.\u00a0Improper processing of authenticatio... https://www.cyberhub.blog/cves/CVE-2026-40139", "creation_timestamp": "2026-07-08T06:07:08.480879Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a4d3267b-de88-4227-aace-fbfef9e05434/export</guid>
      <pubDate>Wed, 08 Jul 2026 06:07:08 +0000</pubDate>
    </item>
    <item>
      <title>993a059b-414f-47cb-9b3d-f3122122223c</title>
      <link>https://vulnerability.circl.lu/sighting/993a059b-414f-47cb-9b3d-f3122122223c/export</link>
      <description>{"uuid": "993a059b-414f-47cb-9b3d-f3122122223c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40139", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mq2n4r5f2d2d", "content": "\ud83d\udcf0 BeyondTrust Rilis Patch untuk Dua Celah Kritis yang Memungkinkan Bypass Autentikasi\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/07/beyondtrust-authentication-bypass-vulnerability-patch/\n\n#beyondtrust #cve-2026-40138 #cve-2026-40139 #cve-2026-40140 #cve-2026-40141 #potatosec", "creation_timestamp": "2026-07-07T12:45:53.421521Z"}</description>
      <content:encoded>{"uuid": "993a059b-414f-47cb-9b3d-f3122122223c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40139", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mq2n4r5f2d2d", "content": "\ud83d\udcf0 BeyondTrust Rilis Patch untuk Dua Celah Kritis yang Memungkinkan Bypass Autentikasi\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/07/beyondtrust-authentication-bypass-vulnerability-patch/\n\n#beyondtrust #cve-2026-40138 #cve-2026-40139 #cve-2026-40140 #cve-2026-40141 #potatosec", "creation_timestamp": "2026-07-07T12:45:53.421521Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/993a059b-414f-47cb-9b3d-f3122122223c/export</guid>
      <pubDate>Tue, 07 Jul 2026 12:45:53 +0000</pubDate>
    </item>
    <item>
      <title>a96183ff-0e6e-4d08-9fb1-0a9482a86435</title>
      <link>https://vulnerability.circl.lu/sighting/a96183ff-0e6e-4d08-9fb1-0a9482a86435/export</link>
      <description>{"uuid": "a96183ff-0e6e-4d08-9fb1-0a9482a86435", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40139", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mq2lxpdkie2j", "content": "\ud83d\udcf0 BeyondTrust Rilis Patch untuk Dua Celah Kritis yang Memungkinkan Bypass Autentikasi\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/07/beyondtrust-authentication-bypass-vulnerability-patch/\n\n#beyondtrust #cve-2026-40138 #cve-2026-40139 #cve-2026-40140 #cve-2026-40141 #cybersec", "creation_timestamp": "2026-07-07T12:25:10.986934Z"}</description>
      <content:encoded>{"uuid": "a96183ff-0e6e-4d08-9fb1-0a9482a86435", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40139", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mq2lxpdkie2j", "content": "\ud83d\udcf0 BeyondTrust Rilis Patch untuk Dua Celah Kritis yang Memungkinkan Bypass Autentikasi\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/07/beyondtrust-authentication-bypass-vulnerability-patch/\n\n#beyondtrust #cve-2026-40138 #cve-2026-40139 #cve-2026-40140 #cve-2026-40141 #cybersec", "creation_timestamp": "2026-07-07T12:25:10.986934Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a96183ff-0e6e-4d08-9fb1-0a9482a86435/export</guid>
      <pubDate>Tue, 07 Jul 2026 12:25:10 +0000</pubDate>
    </item>
    <item>
      <title>86ce58f4-2ea6-4b77-851c-1ae16c0d457c</title>
      <link>https://vulnerability.circl.lu/sighting/86ce58f4-2ea6-4b77-851c-1ae16c0d457c/export</link>
      <description>{"uuid": "86ce58f4-2ea6-4b77-851c-1ae16c0d457c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mpynkx35vt2f", "content": "BeyondTrust patched a critical pre-authentication vulnerability (CVE-2026-40138, CVE-2026-40139, CVE-2026-40140). Update Remote Support instances now.\n\n#BeyondTrust #Vulnerability #CVE202640138 #CyberSecurity #RemoteSupport", "creation_timestamp": "2026-07-06T17:48:42.488219Z"}</description>
      <content:encoded>{"uuid": "86ce58f4-2ea6-4b77-851c-1ae16c0d457c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mpynkx35vt2f", "content": "BeyondTrust patched a critical pre-authentication vulnerability (CVE-2026-40138, CVE-2026-40139, CVE-2026-40140). Update Remote Support instances now.\n\n#BeyondTrust #Vulnerability #CVE202640138 #CyberSecurity #RemoteSupport", "creation_timestamp": "2026-07-06T17:48:42.488219Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/86ce58f4-2ea6-4b77-851c-1ae16c0d457c/export</guid>
      <pubDate>Mon, 06 Jul 2026 17:48:42 +0000</pubDate>
    </item>
    <item>
      <title>96b079d1-7f37-44f2-aac0-a33078f9650a</title>
      <link>https://vulnerability.circl.lu/sighting/96b079d1-7f37-44f2-aac0-a33078f9650a/export</link>
      <description>{"uuid": "96b079d1-7f37-44f2-aac0-a33078f9650a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpymjzwroy2i", "content": "CVE-2026-40139\nAn attacker can bypass security checks and gain access to BeyondTrust Remote Support, including accounts with high-level permissions, if a specific configuration is set up. This could lead to unauthorized\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-06T17:30:05.629968Z"}</description>
      <content:encoded>{"uuid": "96b079d1-7f37-44f2-aac0-a33078f9650a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpymjzwroy2i", "content": "CVE-2026-40139\nAn attacker can bypass security checks and gain access to BeyondTrust Remote Support, including accounts with high-level permissions, if a specific configuration is set up. This could lead to unauthorized\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-06T17:30:05.629968Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/96b079d1-7f37-44f2-aac0-a33078f9650a/export</guid>
      <pubDate>Mon, 06 Jul 2026 17:30:05 +0000</pubDate>
    </item>
    <item>
      <title>48882a7c-a5cf-492d-93d0-a43628eaa7d3</title>
      <link>https://vulnerability.circl.lu/sighting/48882a7c-a5cf-492d-93d0-a43628eaa7d3/export</link>
      <description>{"uuid": "48882a7c-a5cf-492d-93d0-a43628eaa7d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpymetigjj26", "content": "CVE-2026-40139 - Critical Pre-Authentication Vulnerability in BeyondTrust Remote Support and Privileged Remote Access\nCVE ID : CVE-2026-40139\n \n Published : July 6, 2026, 4:13 p.m. | 1\u00a0hour, 1\u00a0minute ago\n \n Description : A critical pre-authentication vulnerability exists in th...", "creation_timestamp": "2026-07-06T17:27:11.212327Z"}</description>
      <content:encoded>{"uuid": "48882a7c-a5cf-492d-93d0-a43628eaa7d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40139", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpymetigjj26", "content": "CVE-2026-40139 - Critical Pre-Authentication Vulnerability in BeyondTrust Remote Support and Privileged Remote Access\nCVE ID : CVE-2026-40139\n \n Published : July 6, 2026, 4:13 p.m. | 1\u00a0hour, 1\u00a0minute ago\n \n Description : A critical pre-authentication vulnerability exists in th...", "creation_timestamp": "2026-07-06T17:27:11.212327Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/48882a7c-a5cf-492d-93d0-a43628eaa7d3/export</guid>
      <pubDate>Mon, 06 Jul 2026 17:27:11 +0000</pubDate>
    </item>
  </channel>
</rss>
