<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-08T17:21:14.257302+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1e0f45d8-42a1-4ece-8e1b-24b08296951e/export</id>
    <title>1e0f45d8-42a1-4ece-8e1b-24b08296951e</title>
    <updated>2026-07-08T17:21:14.284158+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1e0f45d8-42a1-4ece-8e1b-24b08296951e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://www.acn.gov.it/portale/w/kvm-poc-pubblico-per-lo-sfruttamento-della-cve-2026-53359", "content": "Disponibile un Proof of Concept (PoC) per lo sfruttamento della CVE-2026-53359 \u2013 nota col nome di \u201cJanuscape\u201d - presente nella componente KVM del kernel Linux. Tale vulnerabilit\u00e0, qualora sfruttata, potrebbe consentire ad un utente malintenzionato di compromettere la disponibilit\u00e0 del servizio e, in determinate condizioni, elevare i propri privilegi ed eseguire codice arbitrario sui sitemi target.", "creation_timestamp": "2026-07-08T16:01:24.062589Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1e0f45d8-42a1-4ece-8e1b-24b08296951e/export"/>
    <published>2026-07-08T16:01:24.062589+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ae24d342-82bd-4c99-817d-c5dfbf339ada/export</id>
    <title>ae24d342-82bd-4c99-817d-c5dfbf339ada</title>
    <updated>2026-07-08T17:21:14.285883+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ae24d342-82bd-4c99-817d-c5dfbf339ada", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-53359", "type": "seen", "source": "https://bsky.app/profile/vblog.io/post/3mq5hk3hyhg2c", "content": "A propos de la vuln\u00e9rabilit\u00e9 Januscape (CVE-2026-53359)\nhttps://vblog.io/a-propos-de-la-vulnerabilite-januscape-cve-2026-53359/", "creation_timestamp": "2026-07-08T15:43:57.810923Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ae24d342-82bd-4c99-817d-c5dfbf339ada/export"/>
    <published>2026-07-08T15:43:57.810923+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c414a300-0af1-4c39-be22-0d8b8128b52f/export</id>
    <title>c414a300-0af1-4c39-be22-0d8b8128b52f</title>
    <updated>2026-07-08T17:21:14.286033+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c414a300-0af1-4c39-be22-0d8b8128b52f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mq56qxxsyg2r", "content": "Januscape CVE-2026-53359 KVM\u306e\u8106\u5f31\u6027\n\n\u4eee\u60f3\u30de\u30b7\u30f3\u306f\u672c\u6765\u3001\u7269\u7406\u30db\u30b9\u30c8\u304b\u3089\u9694\u96e2\u3055\u308c\u305f\u72b6\u614b\u3092\u4fdd\u3064\u3088\u3046\u8a2d\u8a08\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3057\u304b\u3057\u3001Linux\u30ab\u30fc\u30cd\u30eb\u30d9\u30fc\u30b9\u306e\u4eee\u60f3\u30de\u30b7\u30f3(KVM)\u306b\u5b58\u5728\u3059\u308b\u91cd\u5927\u306a\u6b20\u9665\u306b\u3088\u308a\u3001\u30b2\u30b9\u30c8OS\u304c\u3053\u306e\u5883\u754c\u3092\u7a81\u7834\u3057\u3001\u30db\u30b9\u30c8\u30ab\u30fc\u30cd\u30eb\u3092\u4fb5\u5bb3\u3067\u304d\u308b\u3053\u3068\u304c\u5224\u660e\u3057\u307e\u3057\u305f\u3002Januscape\u8106\u5f31\u6027\u3068\u540d\u4ed8\u3051\u3089\u308c\u3001CVE-2026-53359...", "creation_timestamp": "2026-07-08T13:06:45.383461Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c414a300-0af1-4c39-be22-0d8b8128b52f/export"/>
    <published>2026-07-08T13:06:45.383461+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e738157d-1bdf-49fa-9782-4bb092397066/export</id>
    <title>e738157d-1bdf-49fa-9782-4bb092397066</title>
    <updated>2026-07-08T17:21:14.286157+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e738157d-1bdf-49fa-9782-4bb092397066", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mq56gexppq2d", "content": "Januscape CVE-2026-53359 KVM Vulnerability", "creation_timestamp": "2026-07-08T13:00:49.761364Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e738157d-1bdf-49fa-9782-4bb092397066/export"/>
    <published>2026-07-08T13:00:49.761364+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/afc31830-06c4-4f37-84c8-82129b0ac654/export</id>
    <title>afc31830-06c4-4f37-84c8-82129b0ac654</title>
    <updated>2026-07-08T17:21:14.286271+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "afc31830-06c4-4f37-84c8-82129b0ac654", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/crustytldr.bsky.social/post/3mq3zp2b35w2o", "content": "\ud83d\udcf0 If you self-host KVM/Proxmox with nested virtualization enabled, check for CVE-2026-53359 patches\n\nA Linux kernel vulnerability, CVE-2026-53359 (\"Januscape\"), affects KVM's shadow paging code w...\n\nhttps://tinyurl.com/2ybvt5yt #TechNews #CrustyTLDR", "creation_timestamp": "2026-07-08T02:03:31.669360Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/afc31830-06c4-4f37-84c8-82129b0ac654/export"/>
    <published>2026-07-08T02:03:31.669360+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ec451422-4923-4b99-91fe-e9fdaf2c8cc9/export</id>
    <title>ec451422-4923-4b99-91fe-e9fdaf2c8cc9</title>
    <updated>2026-07-08T17:21:14.286387+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ec451422-4923-4b99-91fe-e9fdaf2c8cc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://threatintel.cc/2026/07/07/linux-kernel-vulnerability-allows-vm.html", "content": "Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems - SecurityWeek\n\nThe Januscape vulnerability (CVE-2026-53359) in the Linux KVM hypervisor allows attackers to execute a VM escape, enabling code execution on both Intel and AMD host systems. This use-after-free flaw can be exploited by an attacker with guest root access to achieve full host compromise or cause a denial-of-service.", "creation_timestamp": "2026-07-08T01:00:54.120639Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ec451422-4923-4b99-91fe-e9fdaf2c8cc9/export"/>
    <published>2026-07-08T01:00:54.120639+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/59fca4b4-500b-4351-a39d-d80a0bab022a/export</id>
    <title>59fca4b4-500b-4351-a39d-d80a0bab022a</title>
    <updated>2026-07-08T17:21:14.286502+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "59fca4b4-500b-4351-a39d-d80a0bab022a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mq3fs4tl3b2f", "content": "A use-after-free vulnerability in Linux's KVM hypervisor, tracked as CVE-2026-53359 and named 'Januscape', allows guest VMs to escape to the host on Intel and AMD systems. Discovered by Hyunwoo Kim, the flaw has existed for 16 years and can lead to host code execution.", "creation_timestamp": "2026-07-07T20:07:20.535529Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/59fca4b4-500b-4351-a39d-d80a0bab022a/export"/>
    <published>2026-07-07T20:07:20.535529+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/06848184-41f2-49af-a2d7-0fb5a5d8b60c/export</id>
    <title>06848184-41f2-49af-a2d7-0fb5a5d8b60c</title>
    <updated>2026-07-08T17:21:14.286618+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "06848184-41f2-49af-a2d7-0fb5a5d8b60c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/securestep9.bsky.social/post/3mq34hkw7uz2c", "content": "A 16-year-old flaw in #Linux KVM hypervisor dubbed \"#Januscape\" (CVE-2026-53359) is a Use-After-Free vulnerability which allows guest VMs to escape to the host:\n\nThe fix was merged into the mainline Linux kernel on June 19, 2026:\n\ud83d\udc47", "creation_timestamp": "2026-07-07T17:20:22.686440Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/06848184-41f2-49af-a2d7-0fb5a5d8b60c/export"/>
    <published>2026-07-07T17:20:22.686440+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e089ac08-950c-4f89-9422-07ab6d64e883/export</id>
    <title>e089ac08-950c-4f89-9422-07ab6d64e883</title>
    <updated>2026-07-08T17:21:14.286731+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e089ac08-950c-4f89-9422-07ab6d64e883", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/it-connect.bsky.social/post/3mq33eolbgi2v", "content": "Januscape (CVE-2026-53359) : une faille use-after-free rest\u00e9e 16 ans dans KVM.\n\nLouez un VPS, activez la virtu imbriqu\u00e9e c\u00f4t\u00e9 h\u00f4te, et une seule VM peut faire tomber l'h\u00f4te + toutes les VM voisines.\n\n\u00c0 patcher \ud83d\udc47\nwww.it-connect.fr/januscape-fa...\n\n#linux", "creation_timestamp": "2026-07-07T17:00:52.410471Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e089ac08-950c-4f89-9422-07ab6d64e883/export"/>
    <published>2026-07-07T17:00:52.410471+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fe8be2b1-684f-4261-9f75-d48d11934848/export</id>
    <title>fe8be2b1-684f-4261-9f75-d48d11934848</title>
    <updated>2026-07-08T17:21:14.286842+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fe8be2b1-684f-4261-9f75-d48d11934848", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://threatintel.cc/2026/07/07/linux-kernel-vulnerability-allows-vm.html", "content": "Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems - SecurityWeek\n\nThe Januscape vulnerability (CVE-2026-53359) in the Linux KVM hypervisor allows attackers to execute a VM escape, enabling code execution on both Intel and AMD host systems. This use-after-free flaw can be exploited by an attacker with guest root access to achieve full host compromise or cause a denial-of-service.", "creation_timestamp": "2026-07-07T16:00:45.483193Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fe8be2b1-684f-4261-9f75-d48d11934848/export"/>
    <published>2026-07-07T16:00:45.483193+00:00</published>
  </entry>
</feed>
