https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 20 Jun 2026 17:43:15 +0000 https://vulnerability.circl.lu/sighting/de6415b0-0794-445c-8280-386702103eb6/export {"uuid": "de6415b0-0794-445c-8280-386702103eb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9697", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3moirewb2xs2g", "content": "\ud83d\udea8 High-severity security fix in undici (7.28.0, 8.5.0) just released!\n\nPatches CVE-2026-9697. undici vulnerable to TLS certificate validation bypass via dropped requestTls in SOCKS5 ProxyAgent.\n\ngithub.com/nodejs/undic...", "creation_timestamp": "2026-06-17T16:48:56.776729Z"} {"uuid": "de6415b0-0794-445c-8280-386702103eb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9697", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3moirewb2xs2g", "content": "\ud83d\udea8 High-severity security fix in undici (7.28.0, 8.5.0) just released!\n\nPatches CVE-2026-9697. undici vulnerable to TLS certificate validation bypass via dropped requestTls in SOCKS5 ProxyAgent.\n\ngithub.com/nodejs/undic...", "creation_timestamp": "2026-06-17T16:48:56.776729Z"} https://vulnerability.circl.lu/sighting/de6415b0-0794-445c-8280-386702103eb6/export Wed, 17 Jun 2026 16:48:56 +0000 https://vulnerability.circl.lu/sighting/9df3d6f0-530e-4009-82ce-bdcf3ee7dfbc/export {"uuid": "9df3d6f0-530e-4009-82ce-bdcf3ee7dfbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9697", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mojrwgzt3f2d", "content": "Top 3 CVE for last 7 days:\nCVE-2026-35273: 64 interactions\nCVE-2026-54420: 26 interactions\nCVE-2026-39987: 20 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-9697: 16 interactions\nCVE-2026-50656: 13 interactions\nCVE-2026-42824: 11 interactions\n", "creation_timestamp": "2026-06-18T02:31:23.587466Z"} {"uuid": "9df3d6f0-530e-4009-82ce-bdcf3ee7dfbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9697", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mojrwgzt3f2d", "content": "Top 3 CVE for last 7 days:\nCVE-2026-35273: 64 interactions\nCVE-2026-54420: 26 interactions\nCVE-2026-39987: 20 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-9697: 16 interactions\nCVE-2026-50656: 13 interactions\nCVE-2026-42824: 11 interactions\n", "creation_timestamp": "2026-06-18T02:31:23.587466Z"} https://vulnerability.circl.lu/sighting/9df3d6f0-530e-4009-82ce-bdcf3ee7dfbc/export Thu, 18 Jun 2026 02:31:23 +0000 https://vulnerability.circl.lu/sighting/5ca08743-7064-40a3-be91-8b5d89606cd8/export {"uuid": "5ca08743-7064-40a3-be91-8b5d89606cd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9697", "type": "seen", "source": "https://bsky.app/profile/nodeland.dev/post/3mol72mz6sq2s", "content": "\ud83d\udfe0 High: SOCKS5 TLS bypass (CVE-2026-9697).\nProxyAgent silently dropped `requestTls` over SOCKS5 \u2192 your `ca`, `cert`, `rejectUnauthorized`, `servername` were ignored, falling back to the Mozilla bundle. Cert pinning broke = MITM risk.\nv7/v8. Fixed in 7.28.0 / 8.5.0.", "creation_timestamp": "2026-06-18T15:59:02.862109Z"} {"uuid": "5ca08743-7064-40a3-be91-8b5d89606cd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9697", "type": "seen", "source": "https://bsky.app/profile/nodeland.dev/post/3mol72mz6sq2s", "content": "\ud83d\udfe0 High: SOCKS5 TLS bypass (CVE-2026-9697).\nProxyAgent silently dropped `requestTls` over SOCKS5 \u2192 your `ca`, `cert`, `rejectUnauthorized`, `servername` were ignored, falling back to the Mozilla bundle. Cert pinning broke = MITM risk.\nv7/v8. Fixed in 7.28.0 / 8.5.0.", "creation_timestamp": "2026-06-18T15:59:02.862109Z"} https://vulnerability.circl.lu/sighting/5ca08743-7064-40a3-be91-8b5d89606cd8/export Thu, 18 Jun 2026 15:59:02 +0000