https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 08 Jun 2026 03:08:17 +0000 https://vulnerability.circl.lu/sighting/1337e4f2-ff85-4c74-98d1-9cb310c32a68/export {"uuid": "1337e4f2-ff85-4c74-98d1-9cb310c32a68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mi72ygcdxt2l", "content": "", "creation_timestamp": "2026-03-29T11:43:06.661009Z"} {"uuid": "1337e4f2-ff85-4c74-98d1-9cb310c32a68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mi72ygcdxt2l", "content": "", "creation_timestamp": "2026-03-29T11:43:06.661009Z"} https://vulnerability.circl.lu/sighting/1337e4f2-ff85-4c74-98d1-9cb310c32a68/export Sun, 29 Mar 2026 11:43:06 +0000 https://vulnerability.circl.lu/sighting/197d52b6-2413-447e-81f9-9652ea411842/export {"uuid": "197d52b6-2413-447e-81f9-9652ea411842", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://bsky.app/profile/g0rosato.bsky.social/post/3miz2afb7yr2v", "content": "", "creation_timestamp": "2026-04-08T19:38:53.554436Z"} {"uuid": "197d52b6-2413-447e-81f9-9652ea411842", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://bsky.app/profile/g0rosato.bsky.social/post/3miz2afb7yr2v", "content": "", "creation_timestamp": "2026-04-08T19:38:53.554436Z"} https://vulnerability.circl.lu/sighting/197d52b6-2413-447e-81f9-9652ea411842/export Wed, 08 Apr 2026 19:38:53 +0000 https://vulnerability.circl.lu/sighting/a04a6df4-8c34-44b0-a4ff-3ed3e2410721/export {"uuid": "a04a6df4-8c34-44b0-a4ff-3ed3e2410721", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24294", "type": "seen", "source": "Telegram/yjUnQ6hKYXBxzaCr4Cr42UE0MHqi1VzU3UchLcz_NxtZwAY", "content": "", "creation_timestamp": "2026-04-30T09:00:04.000000Z"} {"uuid": "a04a6df4-8c34-44b0-a4ff-3ed3e2410721", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24294", "type": "seen", "source": "Telegram/yjUnQ6hKYXBxzaCr4Cr42UE0MHqi1VzU3UchLcz_NxtZwAY", "content": "", "creation_timestamp": "2026-04-30T09:00:04.000000Z"} https://vulnerability.circl.lu/sighting/a04a6df4-8c34-44b0-a4ff-3ed3e2410721/export Thu, 30 Apr 2026 09:00:04 +0000 https://vulnerability.circl.lu/sighting/c31c1c7a-6598-4f24-993a-193a82eeeb99/export {"uuid": "c31c1c7a-6598-4f24-993a-193a82eeeb99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24294", "type": "seen", "source": "https://t.me/P0x3k_1N73LL1G3NC3/343", "content": "BYPASSING WINDOWS AUTHENTICATION REFLECTION MITIGATIONS FOR SYSTEM SHELLS - PART \u2461\n\nA new arbitrary Kerberos coercion technique (CVE-2026-26128) that led to a complete bypass of the patch of CVE-2025-33073. This short-lived RCE was then transformed into a universal LPE attack.\n\nBYPASSING WINDOWS AUTHENTICATION REFLECTION MITIGATIONS FOR SYSTEM SHELLS - PART 1\n\nAbuse of a new feature of recent Windows versions, namely the ability to connect to SMB shares on arbitrary TCP ports, to achieve local privilege escalation\u00a0(CVE-2026-24294) on up-to-date Windows Server 2025 machines.", "creation_timestamp": "2026-05-02T06:09:03.000000Z"} {"uuid": "c31c1c7a-6598-4f24-993a-193a82eeeb99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24294", "type": "seen", "source": "https://t.me/P0x3k_1N73LL1G3NC3/343", "content": "BYPASSING WINDOWS AUTHENTICATION REFLECTION MITIGATIONS FOR SYSTEM SHELLS - PART \u2461\n\nA new arbitrary Kerberos coercion technique (CVE-2026-26128) that led to a complete bypass of the patch of CVE-2025-33073. This short-lived RCE was then transformed into a universal LPE attack.\n\nBYPASSING WINDOWS AUTHENTICATION REFLECTION MITIGATIONS FOR SYSTEM SHELLS - PART 1\n\nAbuse of a new feature of recent Windows versions, namely the ability to connect to SMB shares on arbitrary TCP ports, to achieve local privilege escalation\u00a0(CVE-2026-24294) on up-to-date Windows Server 2025 machines.", "creation_timestamp": "2026-05-02T06:09:03.000000Z"} https://vulnerability.circl.lu/sighting/c31c1c7a-6598-4f24-993a-193a82eeeb99/export Sat, 02 May 2026 06:09:03 +0000 https://vulnerability.circl.lu/sighting/ca702bc5-55e5-43b5-b644-3ced397f3640/export {"uuid": "ca702bc5-55e5-43b5-b644-3ced397f3640", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24294", "type": "seen", "source": "Telegram/GBpYOLFByJUZNo27RsDzztksilkUG3XAg7CrsrR5OqI_xQ", "content": "", "creation_timestamp": "2026-05-02T13:21:19.000000Z"} {"uuid": "ca702bc5-55e5-43b5-b644-3ced397f3640", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24294", "type": "seen", "source": "Telegram/GBpYOLFByJUZNo27RsDzztksilkUG3XAg7CrsrR5OqI_xQ", "content": "", "creation_timestamp": "2026-05-02T13:21:19.000000Z"} https://vulnerability.circl.lu/sighting/ca702bc5-55e5-43b5-b644-3ced397f3640/export Sat, 02 May 2026 13:21:19 +0000 https://vulnerability.circl.lu/sighting/845f17d6-8431-484f-ae1f-d4358535d16d/export {"uuid": "845f17d6-8431-484f-ae1f-d4358535d16d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24299", "type": "seen", "source": "Telegram/17cmREU9ZDSDvyz78F9oo9Lr_unjD9vL2ztNU0fhrgd68AR1", "content": "", "creation_timestamp": "2026-05-04T13:15:05.000000Z"} {"uuid": "845f17d6-8431-484f-ae1f-d4358535d16d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24299", "type": "seen", "source": "Telegram/17cmREU9ZDSDvyz78F9oo9Lr_unjD9vL2ztNU0fhrgd68AR1", "content": "", "creation_timestamp": "2026-05-04T13:15:05.000000Z"} https://vulnerability.circl.lu/sighting/845f17d6-8431-484f-ae1f-d4358535d16d/export Mon, 04 May 2026 13:15:05 +0000 https://vulnerability.circl.lu/sighting/6e5d0977-6a7b-4022-b269-a027023ae555/export {"uuid": "6e5d0977-6a7b-4022-b269-a027023ae555", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24299", "type": "seen", "source": "https://bsky.app/profile/glitterbean.wehavecookies.social.ap.brid.gy/post/3mkzxscfe5bu2", "content": "Copirate 365 at DEF CON: Plundering in the Depths of Microsoft Copilot (CVE-2026-24299) https://embracethered.com/blog/posts/2026/defcon-talk-copirate-365/", "creation_timestamp": "2026-05-04T15:21:52.678481Z"} {"uuid": "6e5d0977-6a7b-4022-b269-a027023ae555", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24299", "type": "seen", "source": "https://bsky.app/profile/glitterbean.wehavecookies.social.ap.brid.gy/post/3mkzxscfe5bu2", "content": "Copirate 365 at DEF CON: Plundering in the Depths of Microsoft Copilot (CVE-2026-24299) https://embracethered.com/blog/posts/2026/defcon-talk-copirate-365/", "creation_timestamp": "2026-05-04T15:21:52.678481Z"} https://vulnerability.circl.lu/sighting/6e5d0977-6a7b-4022-b269-a027023ae555/export Mon, 04 May 2026 15:21:52 +0000 https://vulnerability.circl.lu/sighting/6babbed5-3900-4140-a7a5-5d847ffbecc4/export {"uuid": "6babbed5-3900-4140-a7a5-5d847ffbecc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24299", "type": "seen", "source": "https://bsky.app/profile/warthogtk.bsky.social/post/3ml4zuqd7f22t", "content": "Copirate 365 at DEF CON: Plundering in the Depths of Microsoft Copilot (CVE-2026-24299) \u00b7 Embrace The Red embracethered.com/blog/posts/2...", "creation_timestamp": "2026-05-05T20:33:24.740866Z"} {"uuid": "6babbed5-3900-4140-a7a5-5d847ffbecc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24299", "type": "seen", "source": "https://bsky.app/profile/warthogtk.bsky.social/post/3ml4zuqd7f22t", "content": "Copirate 365 at DEF CON: Plundering in the Depths of Microsoft Copilot (CVE-2026-24299) \u00b7 Embrace The Red embracethered.com/blog/posts/2...", "creation_timestamp": "2026-05-05T20:33:24.740866Z"} https://vulnerability.circl.lu/sighting/6babbed5-3900-4140-a7a5-5d847ffbecc4/export Tue, 05 May 2026 20:33:24 +0000 https://vulnerability.circl.lu/sighting/44e2b14e-9858-4392-9122-56abd92c8fc8/export {"uuid": "44e2b14e-9858-4392-9122-56abd92c8fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://infosec.exchange/users/0patch/statuses/116601532783321868", "content": "Micropatches released for Windows Accessibility Infrastructure Elevation of Privilege Vulnerability (CVE-2026-24291, CVE-2026-25186, CVE-2026-25187) https://blog.0patch.com/2026/05/micropatches-released-for-windows.html", "creation_timestamp": "2026-05-19T13:43:15.281244Z"} {"uuid": "44e2b14e-9858-4392-9122-56abd92c8fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://infosec.exchange/users/0patch/statuses/116601532783321868", "content": "Micropatches released for Windows Accessibility Infrastructure Elevation of Privilege Vulnerability (CVE-2026-24291, CVE-2026-25186, CVE-2026-25187) https://blog.0patch.com/2026/05/micropatches-released-for-windows.html", "creation_timestamp": "2026-05-19T13:43:15.281244Z"} https://vulnerability.circl.lu/sighting/44e2b14e-9858-4392-9122-56abd92c8fc8/export Tue, 19 May 2026 13:43:15 +0000 https://vulnerability.circl.lu/sighting/81cd9175-b7c7-48d9-845a-5ac991c97690/export {"uuid": "81cd9175-b7c7-48d9-845a-5ac991c97690", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mma33thltp25", "content": "Micropatches released for Windows Accessibility Infrastructure Elevation of Privilege Vulnerability (CVE-2026-24291, CVE-2026-25186, CVE-2026-25187)", "creation_timestamp": "2026-05-19T18:58:29.146853Z"} {"uuid": "81cd9175-b7c7-48d9-845a-5ac991c97690", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24291", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mma33thltp25", "content": "Micropatches released for Windows Accessibility Infrastructure Elevation of Privilege Vulnerability (CVE-2026-24291, CVE-2026-25186, CVE-2026-25187)", "creation_timestamp": "2026-05-19T18:58:29.146853Z"} https://vulnerability.circl.lu/sighting/81cd9175-b7c7-48d9-845a-5ac991c97690/export Tue, 19 May 2026 18:58:29 +0000