Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-20T11:36:22.923258+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/ca834db4-a672-48c2-a81b-1f14a9184850/export ca834db4-a672-48c2-a81b-1f14a9184850 2026-06-20T11:36:23.321837+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ca834db4-a672-48c2-a81b-1f14a9184850", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11718", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mokvs5esly2y", "content": "CVE-2026-11718 - Google Cloud Token Validation Authentication Bypass\nCVE ID : CVE-2026-11718\n \n Published : June 18, 2026, 11:52 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : An authentication bypass vulnerability exists in the generic opaque token validation path (validateOp...", "creation_timestamp": "2026-06-18T13:13:13.478050Z"} 2026-06-18T13:13:13.478050+00:00 https://vulnerability.circl.lu/sighting/dd43ec3c-23b7-499a-a600-5e82d4a44911/export dd43ec3c-23b7-499a-a600-5e82d4a44911 2026-06-20T11:36:23.321688+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "dd43ec3c-23b7-499a-a600-5e82d4a44911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11718", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mokygbvzep2c", "content": "Critical auth bypass in Google MCP Toolbox for Databases v1.0.0 (CVE-2026-11718). Flawed token validation can allow unauthorized access. Do not use v1.0.0 in production; monitor for patches. https://radar.offseq.com/threat/cve-2026-11718-cwe-287-improper-authentication-in--680f47148b06b96d #OffSe...", "creation_timestamp": "2026-06-18T14:00:17.378276Z"} 2026-06-18T14:00:17.378276+00:00 https://vulnerability.circl.lu/sighting/bd284468-f7a5-4f98-bdd7-62c96236c63c/export bd284468-f7a5-4f98-bdd7-62c96236c63c 2026-06-20T11:36:23.318608+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "bd284468-f7a5-4f98-bdd7-62c96236c63c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11718", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116771469042261685", "content": "CVE-2026-11718 (CRITICAL): Google MCP Toolbox for Databases v1.0.0 has an auth bypass flaw in token validation. Issuer checks can be skipped, enabling unauthorized access. Avoid v1.0.0 & monitor for fixes. https://radar.offseq.com/threat/cve-2026-11718-cwe-287-improper-authentication-in--680f47148b06b96d #OffSeq #CVE202611718 #infosec #oauth2", "creation_timestamp": "2026-06-18T14:00:30.755198Z"} 2026-06-18T14:00:30.755198+00:00