https://vulnerability.circl.lu/sightings/feed 2026-06-25T20:51:11.730039+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/8a305c32-c23e-4c06-9890-c0e1defcc773/export 2026-06-25T20:51:11.751057+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "8a305c32-c23e-4c06-9890-c0e1defcc773", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47292", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0184", "content": "Microsoft heeft kwetsbaarheden verholpen in Developer Tools. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de categorie\u00ebn schade, zoals beschreven in de onderstaande tabellen.\n\nMet uitzondering van de kwetsbaarheid in .NET core, waarvoor geen voorafgaande authenticatie of gebruikersinteractie nodig is om een Denial-of-Service te veroorzaken, moet voor succesvol misbruik de kwaadwillende lokaal toegang hebben tot het kwetsbare systeem, of het slachtoffer misleiden een malafide broncodebestand te openen en uitvoeren.\n\n```\nVisual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-47287 | 6.50 | Manipulatie van gegevens | \n| CVE-2026-47292 | 7.80 | Verkrijgen van verhoogde rechten | \n| CVE-2026-40376 | 7.50 | Verkrijgen van verhoogde rechten | \n| CVE-2026-47281 | 9.60 | Verkrijgen van verhoogde rechten | \n| CVE-2026-47284 | 6.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-48569 | 7.10 | Omzeilen van beveiligingsmaatregel | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-45482 | 8.40 | Omzeilen van beveiligingsmaatregel | \n|----------------|------|-------------------------------------|\n\nMicrosoft Live Share Canvas SDK: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-45644 | 8.00 | Verkrijgen van verhoogde rechten | \n|----------------|------|-------------------------------------|\n\nASP.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-45591 | 7.50 | Denial-of-Service | \n|----------------|------|-------------------------------------|\n\n.NET: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-45490 | 7.80 | Verkrijgen van verhoogde rechten | \n| CVE-2026-45491 | 6.20 | Manipulatie van gegevens | \n|----------------|------|-------------------------------------|\n```", "creation_timestamp": "2026-06-09T16:23:58.000000Z"} 2026-06-09T16:23:58+00:00 https://vulnerability.circl.lu/sighting/05df86c3-da2a-4d86-b250-91d30daaa71f/export 2026-06-25T20:51:11.750989+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "05df86c3-da2a-4d86-b250-91d30daaa71f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47291", "type": "seen", "source": "https://www.ncsc.nl/alerts/microsoft-verhelpt-6-ernstige-kwetsbaarheden-in-windows", "content": "", "creation_timestamp": "2026-06-10T00:41:53.000000Z"} 2026-06-10T00:41:53+00:00 https://vulnerability.circl.lu/sighting/1be83a2c-0a5c-4543-833f-11feed9233ea/export 2026-06-25T20:51:11.750923+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "1be83a2c-0a5c-4543-833f-11feed9233ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47291", "type": "seen", "source": "https://www.cert.dk/news/2026-06-10/Patch-Tuesday-i-overdrive-206-CVEer-peger-paa-et-nyt-normalniveau", "content": "", "creation_timestamp": "2026-06-10T01:30:14.000000Z"} 2026-06-10T01:30:14+00:00 https://vulnerability.circl.lu/sighting/ad3265f8-d8cd-412f-a5b6-e5cf8da41894/export 2026-06-25T20:51:11.750832+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ad3265f8-d8cd-412f-a5b6-e5cf8da41894", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47291", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116723710293796398", "content": "A lot of offensive activities were identified targeting Microsoft Windows (CVE-2026-47291) https://vuldb.com/vuln/369746/cti", "creation_timestamp": "2026-06-10T03:34:34.739221Z"} 2026-06-10T03:34:34.739221+00:00 https://vulnerability.circl.lu/sighting/e4e9099f-3c39-47e3-bf29-e6519c7063fc/export 2026-06-25T20:51:11.750120+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "e4e9099f-3c39-47e3-bf29-e6519c7063fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47291", "type": "seen", "source": "https://www.cert.se/2026/06/patchtisdag-juni-2026-samlad-information-om-manadens-sakerhetsuppdateringar.html", "content": "", "creation_timestamp": "2026-06-10T05:00:00.000000Z"} 2026-06-10T05:00:00+00:00 https://vulnerability.circl.lu/sighting/cf2466af-b80d-4612-bfed-983f672d0978/export 2026-06-25T20:51:11.749938+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "cf2466af-b80d-4612-bfed-983f672d0978", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47291", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnxpviddln2h", "content": "\ud83d\udccc CVE-2026-47291 - Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network. https://www.cyberhub.blog/cves/CVE-2026-47291", "creation_timestamp": "2026-06-10T22:07:08.055058Z"} 2026-06-10T22:07:08.055058+00:00 https://vulnerability.circl.lu/sighting/be589ba3-87c9-469a-8247-4cee04a06256/export 2026-06-25T20:51:11.749663+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "be589ba3-87c9-469a-8247-4cee04a06256", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47291", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3mnxwfaylc22s", "content": "Microsoft\u30012026\u5e746\u6708\u5b9a\u4f8b\u30d1\u30c3\u30c1\u3067\u53f2\u4e0a\u6700\u591a206\u4ef6\u306e\u8106\u5f31\u6027\u3092\u4fee\u6b63-3\u4ef6\u306e\u30bc\u30ed\u30c7\u30a4\u3084\u5371\u967a\u306a\u8106\u5f31\u6027\u542b\u3080(CVE-2026-50507,CVE-2026-45586,CVE-2026-47291,CVE-2026-49160)\n\nrocket-boys.co.jp/security-mea...\n\n#\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56Lab #security #securitynews", "creation_timestamp": "2026-06-11T00:03:23.905892Z"} 2026-06-11T00:03:23.905892+00:00 https://vulnerability.circl.lu/sighting/fd906c9c-908f-45de-995f-5e47ba48b06e/export 2026-06-25T20:51:11.749413+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fd906c9c-908f-45de-995f-5e47ba48b06e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47291", "type": "published-proof-of-concept", "source": "Telegram/J0ROb3WeJ6WKiYfRh6IAWg81KdEB4nYWqw_XCSrqEYFegis", "content": "", "creation_timestamp": "2026-06-11T03:00:06.000000Z"} 2026-06-11T03:00:06+00:00 https://vulnerability.circl.lu/sighting/eff3fecd-4198-4040-b679-9bcaf910f84e/export 2026-06-25T20:51:11.749075+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "eff3fecd-4198-4040-b679-9bcaf910f84e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47298", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mo4dg5xw372c", "content": "\ud83d\udccc CVE-2026-47298 - Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. https://www.cyberhub.blog/cves/CVE-2026-47298", "creation_timestamp": "2026-06-12T18:07:07.601739Z"} 2026-06-12T18:07:07.601739+00:00 https://vulnerability.circl.lu/sighting/35a0a316-5a12-4b8b-99f8-fdb9885e5325/export 2026-06-25T20:51:11.746621+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "35a0a316-5a12-4b8b-99f8-fdb9885e5325", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47291", "type": "seen", "source": "https://bsky.app/profile/lasenal.bsky.social/post/3mogoxgx6lk2p", "content": "Microsoft parchea 206 fallos: r\u00e9cord de Patch Tuesday con 3 zero-days\n\nEl update de junio trae 39 parches cr\u00edticos. Destaca un RCE en HTTP.sys (CVE-2026-47291, CVSS 9.8): ejecuci\u00f3n remota sin login como SYSTEM. Actualiza ya.\n\nLeer en The Hacker News \u2192\n\n#LaSe\u00f1alNews #Ciberseguridad #InfoSec", "creation_timestamp": "2026-06-16T21:00:16.630024Z"} 2026-06-16T21:00:16.630024+00:00