Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-12T17:08:39.419239+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/5d4c8528-4c33-490d-8946-115666871472/export 5d4c8528-4c33-490d-8946-115666871472 2026-06-12T17:08:39.425799+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5d4c8528-4c33-490d-8946-115666871472", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/cyberlensai.bsky.social/post/3mo2v2mwuvf2i", "content": "CVE watch: CVE-2026-10520: Ivanti Sentry - Ivanti Sentry OS Command Injection...\n\nCheck exposure, dependency, and agent/tool access before panic-patching. Inventory beats vibes.\n\nSource: cisa.gov\nhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2026-10520", "creation_timestamp": "2026-06-12T04:17:28.600093Z"} 2026-06-12T04:17:28.600093+00:00 https://vulnerability.circl.lu/sighting/2523fe16-214b-4c92-8c2d-7dcf140f08b1/export 2523fe16-214b-4c92-8c2d-7dcf140f08b1 2026-06-12T17:08:39.424876+00:00 Alexandre Dulaunoy https://cve.circl.lu/user/adulau {"uuid": "2523fe16-214b-4c92-8c2d-7dcf140f08b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-10520", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/79a30108-df05-4aba-b6ba-f5007cb6cbf0", "content": "", "creation_timestamp": "2026-06-12T06:55:17.875392Z"} 2026-06-12T06:55:17.875392+00:00 https://vulnerability.circl.lu/sighting/2d9a4723-b73c-4943-8455-0b85e42a9235/export 2d9a4723-b73c-4943-8455-0b85e42a9235 2026-06-12T17:08:39.424805+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "2d9a4723-b73c-4943-8455-0b85e42a9235", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10520", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mo3f3ho3jj2p", "content": "\ud83d\udcf0 CISA Perintahkan Agen Federal Tambal Celah Keamanan Kritis Ivanti Sentry dalam 3 Hari\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/12/cisa-perintahkan-tambal-ivanti-sentry-hari-minggu/\n\n#bod26-04 #cisa #cve-2026-10520 #gadget #hacker #hardware #ivantiSentry #keamananSiber #", "creation_timestamp": "2026-06-12T09:04:16.372602Z"} 2026-06-12T09:04:16.372602+00:00 https://vulnerability.circl.lu/sighting/973c9182-f0ee-4a10-ad10-1ebed224c945/export 973c9182-f0ee-4a10-ad10-1ebed224c945 2026-06-12T17:08:39.424739+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "973c9182-f0ee-4a10-ad10-1ebed224c945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mo3fp5fk5n26", "content": "CISA just issued a Binding Operational Directive: patch the actively exploited Ivanti Sentry flaw (CVE-2026-10520) by Sunday. Attackers are already leveraging this critical command injection to gain root access. Is your network safe?\n\nhttps://www.tpp.blog/1crtyng\n\n#cybersecurity #cisa #ivanti", "creation_timestamp": "2026-06-12T09:15:17.041737Z"} 2026-06-12T09:15:17.041737+00:00 https://vulnerability.circl.lu/sighting/f3ba935a-3749-44ae-b7ea-53c85ee1cafe/export f3ba935a-3749-44ae-b7ea-53c85ee1cafe 2026-06-12T17:08:39.424670+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "f3ba935a-3749-44ae-b7ea-53c85ee1cafe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mo3huapyes2y", "content": "Ivanti Sentry\u3001\u30cf\u30cb\u30fc\u30dd\u30c3\u30c8\u3078\u306e\u60aa\u7528\u8a66\u884c\u3092\u78ba\u8a8d\n\n\u7c73\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u3001\u6700\u8fd1\u30d1\u30c3\u30c1\u304c\u9069\u7528\u3055\u308c\u305fIvanti Sentry\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u6e08\u307f\u3068\u3057\u3066\u6307\u6458\u3057\u307e\u3057\u305f\u304c\u3001Ivanti\u306f\u305d\u306e\u6d3b\u52d5\u304c\u30cf\u30cb\u30fc\u30dd\u30c3\u30c8\u4e0a\u3067\u306e\u307f\u89b3\u6e2c\u3055\u308c\u305f\u3082\u306e\u3060\u3068\u8aac\u660e\u3057\u3066\u3044\u307e\u3059\u3002 CVE-2026-10520\uff08CVSS\u30b9\u30b3\u30a210/10\uff09\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u308b\u3053\u306e\u8106\u5f31\u6027\u306f", "creation_timestamp": "2026-06-12T09:53:55.725897Z"} 2026-06-12T09:53:55.725897+00:00 https://vulnerability.circl.lu/sighting/6fbc3f19-85bd-462f-b0fb-cba401c94037/export 6fbc3f19-85bd-462f-b0fb-cba401c94037 2026-06-12T17:08:39.424598+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "6fbc3f19-85bd-462f-b0fb-cba401c94037", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mo3hvyaolh2b", "content": "CVE-2026-10520 is a critical Ivanti Sentry OS command injection flaw that CISA added to KEV, while Ivanti says observed activity was limited to honeypots.\n", "creation_timestamp": "2026-06-12T09:54:54.026076Z"} 2026-06-12T09:54:54.026076+00:00 https://vulnerability.circl.lu/sighting/0f731000-d685-4802-a0fb-b4b67ca61004/export 0f731000-d685-4802-a0fb-b4b67ca61004 2026-06-12T17:08:39.424520+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "0f731000-d685-4802-a0fb-b4b67ca61004", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mo3i7isr2d26", "content": "CISA ordered federal agencies to patch the actively exploited Ivanti Sentry flaw CVE-2026-10520 within 3 days. Shadowserver reported widespread attacks against unpatched internet-exposed gateways. #IvantiSentry #CISA #Shadowserver", "creation_timestamp": "2026-06-12T10:00:13.904318Z"} 2026-06-12T10:00:13.904318+00:00 https://vulnerability.circl.lu/sighting/9618ba14-bca3-40c5-aa7c-e03e064d6f03/export 9618ba14-bca3-40c5-aa7c-e03e064d6f03 2026-06-12T17:08:39.424428+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "9618ba14-bca3-40c5-aa7c-e03e064d6f03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116736670151320147", "content": "\u26a0\ufe0f CRITICAL: Ivanti Sentry OS command injection (CVE-2026-10520) enables remote root execution via exposed mgmt port 8443. Only honeypot hits so far \u2014 patch versions 10.5.2, 10.6.2, 10.7.1+ ASAP & restrict access! https://radar.offseq.com/threat/ivanti-sentry-exploitation-attempts-hitting-honeyp-ce849175 #OffSeq #Ivanti #Vuln #Infosec", "creation_timestamp": "2026-06-12T10:30:28.225233Z"} 2026-06-12T10:30:28.225233+00:00 https://vulnerability.circl.lu/sighting/177105ad-6b31-4fe1-83cd-14212d360a04/export 177105ad-6b31-4fe1-83cd-14212d360a04 2026-06-12T17:08:39.424341+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "177105ad-6b31-4fe1-83cd-14212d360a04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mo3vmoic7o2d", "content": "CISA added CVE-2026-10520 in Ivanti Sentry to its KEV list after signs of exploitation. Ivanti says activity was seen on honeypots. The flaw is a critical unauthenticated OS command injection bug. #CISA #IvantiSentry #KEV", "creation_timestamp": "2026-06-12T14:00:14.261470Z"} 2026-06-12T14:00:14.261470+00:00 https://vulnerability.circl.lu/sighting/47f134f8-d401-4f6e-9be9-2f4fdec8576b/export 47f134f8-d401-4f6e-9be9-2f4fdec8576b 2026-06-12T17:08:39.423213+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "47f134f8-d401-4f6e-9be9-2f4fdec8576b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mo3vyysdje2c", "content": "\ud83d\udccc CVE-2026-10520 - An OS Command Injection vulnerability\u00a0in Ivanti\u00a0Sentry before\u00a0the\u00a0R10.5.2, R10.6.2 and R10.7.1\u00a0versions\u00a0allows\u00a0a remote unauthenticated user to achiev... https://www.cyberhub.blog/cves/CVE-2026-10520", "creation_timestamp": "2026-06-12T14:07:07.484358Z"} 2026-06-12T14:07:07.484358+00:00