https://vulnerability.circl.lu/sightings/feed 2026-06-08T12:23:44.876483+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/7ae7a372-cce9-4c61-8fbc-778c4699a64b/export 2026-06-08T12:23:45.080223+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "7ae7a372-cce9-4c61-8fbc-778c4699a64b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21997", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llvrfca3zv24", "content": "", "creation_timestamp": "2025-04-03T11:11:57.515490Z"} 2025-04-03T11:11:57.515490+00:00 https://vulnerability.circl.lu/sighting/ce33d5d9-f7ac-4f8c-a64d-1bb9a5f318ce/export 2026-06-08T12:23:45.080153+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ce33d5d9-f7ac-4f8c-a64d-1bb9a5f318ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21998", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llvrfcn4qm2x", "content": "", "creation_timestamp": "2025-04-03T11:11:58.801490Z"} 2025-04-03T11:11:58.801490+00:00 https://vulnerability.circl.lu/sighting/de618d2a-5b32-4b9e-9ca7-d10f4e419f18/export 2026-06-08T12:23:45.080080+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "de618d2a-5b32-4b9e-9ca7-d10f4e419f18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21996", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llvrfcubva2o", "content": "", "creation_timestamp": "2025-04-03T11:12:00.034762Z"} 2025-04-03T11:12:00.034762+00:00 https://vulnerability.circl.lu/sighting/694b7bbd-9b07-4201-9690-1c387df3f4a1/export 2026-06-08T12:23:45.080005+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "694b7bbd-9b07-4201-9690-1c387df3f4a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21995", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llvrfcxyc32k", "content": "", "creation_timestamp": "2025-04-03T11:12:00.647890Z"} 2025-04-03T11:12:00.647890+00:00 https://vulnerability.circl.lu/sighting/180228eb-1210-4ded-b15c-943fde17ccbd/export 2026-06-08T12:23:45.079926+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "180228eb-1210-4ded-b15c-943fde17ccbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21999", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llvrfd6t542i", "content": "", "creation_timestamp": "2025-04-03T11:12:01.768559Z"} 2025-04-03T11:12:01.768559+00:00 https://vulnerability.circl.lu/sighting/fbc07eef-9732-4e65-8caf-f9d7f9d6a915/export 2026-06-08T12:23:45.079810+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fbc07eef-9732-4e65-8caf-f9d7f9d6a915", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21991", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14810", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21991\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes\n\nCurrently, load_microcode_amd() iterates over all NUMA nodes, retrieves their\nCPU masks and unconditionally accesses per-CPU data for the first CPU of each\nmask.\n\nAccording to Documentation/admin-guide/mm/numaperf.rst:\n\n \"Some memory may share the same node as a CPU, and others are provided as\n memory only nodes.\"\n\nTherefore, some node CPU masks may be empty and wouldn't have a \"first CPU\".\n\nOn a machine with far memory (and therefore CPU-less NUMA nodes):\n- cpumask_of_node(nid) is 0\n- cpumask_first(0) is CONFIG_NR_CPUS\n- cpu_data(CONFIG_NR_CPUS) accesses the cpu_info per-CPU array at an\n index that is 1 out of bounds\n\nThis does not have any security implications since flashing microcode is\na privileged operation but I believe this has reliability implications by\npotentially corrupting memory while flashing a microcode update.\n\nWhen booting with CONFIG_UBSAN_BOUNDS=y on an AMD machine that flashes\na microcode update. I get the following splat:\n\n UBSAN: array-index-out-of-bounds in arch/x86/kernel/cpu/microcode/amd.c:X:Y\n index 512 is out of range for type 'unsigned long[512]'\n [...]\n Call Trace:\n dump_stack\n __ubsan_handle_out_of_bounds\n load_microcode_amd\n request_microcode_amd\n reload_store\n kernfs_fop_write_iter\n vfs_write\n ksys_write\n do_syscall_64\n entry_SYSCALL_64_after_hwframe\n\nChange the loop to go over only NUMA nodes which have CPUs before determining\nwhether the first CPU on the respective node needs microcode update.\n\n [ bp: Massage commit message, fix typo. ]\n\ud83d\udccf Published: 2025-04-02T12:53:14.230Z\n\ud83d\udccf Modified: 2025-05-04T13:06:52.038Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/d509c4731090ebd9bbdb72c70a2d70003ae81f4f\n2. https://git.kernel.org/stable/c/985a536e04bbfffb1770df43c6470f635a6b1073\n3. https://git.kernel.org/stable/c/18b5d857c6496b78ead2fd10001b81ae32d30cac\n4. https://git.kernel.org/stable/c/ec52240622c4d218d0240079b7c1d3ec2328a9f4\n5. https://git.kernel.org/stable/c/e686349cc19e800dac8971929089ba5ff59abfb0\n6. https://git.kernel.org/stable/c/488ffc0cac38f203979f83634236ee53251ce593\n7. https://git.kernel.org/stable/c/5ac295dfccb5b015493f86694fa13a0dde4d3665\n8. https://git.kernel.org/stable/c/e3e89178a9f4a80092578af3ff3c8478f9187d59", "creation_timestamp": "2025-05-04T13:18:56.000000Z"} 2025-05-04T13:18:56+00:00 https://vulnerability.circl.lu/sighting/0dd9f7cf-2cc0-445a-8b1e-a862b3e35c6e/export 2026-06-08T12:23:45.078991+00:00 Alexandre Dulaunoy https://cve.circl.lu/user/adulau {"uuid": "0dd9f7cf-2cc0-445a-8b1e-a862b3e35c6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-21999", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/9d7fef5d-952d-4ecc-880d-94d02304e7a3", "content": "", "creation_timestamp": "2025-07-30T07:59:24.597474Z"} 2025-07-30T07:59:24.597474+00:00 https://vulnerability.circl.lu/sighting/e0617e67-81c9-46a4-aa6a-823d41ca18ae/export 2026-06-08T12:23:45.078909+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "e0617e67-81c9-46a4-aa6a-823d41ca18ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21991", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lwbhky6biw2y", "content": "", "creation_timestamp": "2025-08-13T09:00:05.188742Z"} 2025-08-13T09:00:05.188742+00:00 https://vulnerability.circl.lu/sighting/d086e61c-6359-4ddd-a16b-1207af13a283/export 2026-06-08T12:23:45.078804+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "d086e61c-6359-4ddd-a16b-1207af13a283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2199", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:35.000000Z"} 2025-08-13T13:26:35+00:00 https://vulnerability.circl.lu/sighting/a869b258-ee80-4f1b-baa7-214e977a85dc/export 2026-06-08T12:23:45.076634+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "a869b258-ee80-4f1b-baa7-214e977a85dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21999", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmgyqvvbua2x", "content": "\ud83d\udd17 CVE : CVE-2025-21999, CVE-2025-38024, CVE-2025-71238, CVE-2026-23191, CVE-2026-23243, CVE-2026-23401, CVE-2026-31419, CVE-2026-31532, CVE-2026-43284, CVE-2026-46300, CVE-2026-46333", "creation_timestamp": "2026-05-22T13:05:11.045886Z"} 2026-05-22T13:05:11.045886+00:00