<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-09T21:50:46.528939+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8bd9beac-a5ff-4277-901c-cebdba7fba56/export</id>
    <title>8bd9beac-a5ff-4277-901c-cebdba7fba56</title>
    <updated>2026-07-09T21:50:46.550442+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8bd9beac-a5ff-4277-901c-cebdba7fba56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq6ugb4t7n2m", "content": "\ud83d\udccc CVE-2026-46454 - Improper Input Validation vulnerability in Apache Camel Cometd Component.\n\nThe camel-cometd component maps inbound Bayeux (CometD) message headers int... https://www.cyberhub.blog/cves/CVE-2026-46454", "creation_timestamp": "2026-07-09T05:07:07.562711Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8bd9beac-a5ff-4277-901c-cebdba7fba56/export"/>
    <published>2026-07-09T05:07:07.562711+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ec6ebacd-bd93-4d61-9c45-0498077ad61f/export</id>
    <title>ec6ebacd-bd93-4d61-9c45-0498077ad61f</title>
    <updated>2026-07-09T21:50:46.553613+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ec6ebacd-bd93-4d61-9c45-0498077ad61f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6pgnvwbd2f", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-46454 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 Apache Camel Cometd: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/968BE81B-7086-4A8D-BDCD-1B1A122E9771", "creation_timestamp": "2026-07-09T03:37:51.867022Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ec6ebacd-bd93-4d61-9c45-0498077ad61f/export"/>
    <published>2026-07-09T03:37:51.867022+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/539db8f8-2dd3-4d46-9b47-b383a3469ee0/export</id>
    <title>539db8f8-2dd3-4d46-9b47-b383a3469ee0</title>
    <updated>2026-07-09T21:50:46.553760+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "539db8f8-2dd3-4d46-9b47-b383a3469ee0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpypo5e3fk2s", "content": "CVE-2026-46454 - apache camel\nApache Camel's CometD component doesn't check incoming messages for security. This allows unauthenticated clients to inject custom headers that can affect how the\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T18:26:04.940886Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/539db8f8-2dd3-4d46-9b47-b383a3469ee0/export"/>
    <published>2026-07-06T18:26:04.940886+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/520a5c16-101f-4cd9-96d5-c2b06d0ecfda/export</id>
    <title>520a5c16-101f-4cd9-96d5-c2b06d0ecfda</title>
    <updated>2026-07-09T21:50:46.553890+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "520a5c16-101f-4cd9-96d5-c2b06d0ecfda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwd6qnra62b", "content": "CVE-2026-46454: Apache Camel: Camel-Cometd: Inbound Bayeux message headers are mapped into the Exchange without a HeaderFilterStrategy, allowing unauthenticated clients to inject Camel control headers", "creation_timestamp": "2026-07-05T19:37:23.534111Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/520a5c16-101f-4cd9-96d5-c2b06d0ecfda/export"/>
    <published>2026-07-05T19:37:23.534111+00:00</published>
  </entry>
</feed>
