https://vulnerability.circl.lu/sightings/feed 2026-06-16T18:07:11.358476+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/e8ed3522-fa4e-41ae-98a0-8929862f9e09/export 2026-06-16T18:07:11.367800+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "e8ed3522-fa4e-41ae-98a0-8929862f9e09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mobcidnjl72t", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-48558\n\nCVSS 10.0/10\n\n\ud83d\udccb WHAT IT IS:\nSimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity tokens submitted during login are accepted ", "creation_timestamp": "2026-06-14T17:33:45.801948Z"} 2026-06-14T17:33:45.801948+00:00 https://vulnerability.circl.lu/sighting/48b6053f-e4c8-4c25-99b2-f7272792ce96/export 2026-06-16T18:07:11.367675+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "48b6053f-e4c8-4c25-99b2-f7272792ce96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3modpgoxhsx2c", "content": "\ud83d\udea8 CRITICAL: CVE-2026-48558\n\nCVSS 10.0/10\n\n\ud83d\udccb WHAT IT IS:\nSimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity tokens submitted during login are accepted withou", "creation_timestamp": "2026-06-15T16:30:48.448615Z"} 2026-06-15T16:30:48.448615+00:00 https://vulnerability.circl.lu/sighting/339931b2-32d8-4e6b-b317-e6a6deecf9c2/export 2026-06-16T18:07:11.367449+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "339931b2-32d8-4e6b-b317-e6a6deecf9c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3moe5qpstav2q", "content": "CRITICAL OIDC BREAKDOWN: SimpleHelp Flaw Lets Attackers Instantly Become Privileged Technicians Without Login (CVE-2026-48558) +\u00a0Video\n\nIntroduction: When Identity Systems Become the Weakest Door in the Network Remote management tools sit at the heart of modern enterprise operations, quietly\u2026", "creation_timestamp": "2026-06-15T20:46:57.664946Z"} 2026-06-15T20:46:57.664946+00:00 https://vulnerability.circl.lu/sighting/76318a96-aa1f-4880-984b-d9a0f0f48f98/export 2026-06-16T18:07:11.367203+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "76318a96-aa1f-4880-984b-d9a0f0f48f98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3moeeegyplj2n", "content": "Critical SimpleHelp flaw CVE-2026-48558 lets unauthenticated attackers create privileged Technician accounts when OIDC is enabled, bypassing MFA. Fixes are in 5.5.16 and 6.0RC2. #SimpleHelp #CVE202648558 #OIDC", "creation_timestamp": "2026-06-15T22:45:22.233923Z"} 2026-06-15T22:45:22.233923+00:00 https://vulnerability.circl.lu/sighting/78f5e5d7-1fd0-4f19-9a4f-25777911509b/export 2026-06-16T18:07:11.366947+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "78f5e5d7-1fd0-4f19-9a4f-25777911509b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3moepyfm5qu2k", "content": "Critical SimpleHelp Zero-Day CVE-2026-48558 Enables MFA Bypass While Google Uncovers UNC6508 Espionage Campaign Hidden Since 2023 +\u00a0Video\n\nBreaking Security Landscape Overview The cybersecurity ecosystem has been shaken by two parallel revelations that expose how fragile modern digital\u2026", "creation_timestamp": "2026-06-16T02:13:23.004806Z"} 2026-06-16T02:13:23.004806+00:00 https://vulnerability.circl.lu/sighting/ef8d75f7-3bde-4d91-acea-b94753fde3ce/export 2026-06-16T18:07:11.366684+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ef8d75f7-3bde-4d91-acea-b94753fde3ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48558", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mof63lmlkj2j", "content": "\ud83d\udcf0 Celah Kritis SimpleHelp: Peretas Bisa Buat Akun Teknisi Siluman Tanpa Autentikasi\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/16/celah-kritis-simplehelp-hacker-buat-akun-teknisi/\n\n#azureAd #cve-2026-48558 #hacker #keamananSiber #komputer #oidc #patch #peretas #remoteSuppor", "creation_timestamp": "2026-06-16T06:25:42.618982Z"} 2026-06-16T06:25:42.618982+00:00 https://vulnerability.circl.lu/sighting/dd93826d-0232-4e4f-8c13-04d4aa3ab75e/export 2026-06-16T18:07:11.366419+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "dd93826d-0232-4e4f-8c13-04d4aa3ab75e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/helpnetsecurity.com/post/3mofwfvnkj22s", "content": "SimpleHelp RMM flaw could give attackers full access to managed endpoints (CVE-2026-48558)\n\n\ud83d\udcd6 Read more: www.helpnetsecurity.com/2026/06/16/s...\n\n#MSP #remotemanagement #SMBs #vulnerability #RMM #SimpleHelp #cybersecurity #cybersecuritynews @horizon3ai.bsky.social", "creation_timestamp": "2026-06-16T13:41:01.514086Z"} 2026-06-16T13:41:01.514086+00:00 https://vulnerability.circl.lu/sighting/1ecf71a1-2f22-4fe8-8efe-b51c6fc37cef/export 2026-06-16T18:07:11.366107+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "1ecf71a1-2f22-4fe8-8efe-b51c6fc37cef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mofww4z7ix2c", "content": "SimpleHelp RMM\u306e\u8106\u5f31\u6027\u3001\u653b\u6483\u8005\u304c\u7ba1\u7406\u5bfe\u8c61\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u3078\u30d5\u30eb\u30a2\u30af\u30bb\u30b9\u53ef\u80fd\u306b\uff08CVE-2026-48558\uff09\n\n\u4eba\u6c17\u306e\u30ea\u30e2\u30fc\u30c8\u30e2\u30cb\u30bf\u30ea\u30f3\u30b0\u30fb\u7ba1\u7406\uff08RMM\uff09\u30c4\u30fc\u30eb\u300cSimpleHelp\u300d\u306b\u91cd\u5927\u306a\u8106\u5f31\u6027\uff08CVE-2026-48558\uff09\u304c\u767a\u898b\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u3068\u3001\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u653b\u6483\u8005\u304c\u30ea\u30e2\u30fc\u30c8\u304b\u3089\u65b0\u305f\u306a\u300c\u30c6\u30af\u30cb\u30b7\u30e3\u30f3\u300d\u30a2\u30ab\u30a6\u30f3\u30c8\u3092\u4f5c\u6210\u3057\u3001\u7ba1\u7406\u5bfe\u8c61\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u3078\u306e\u30ea\u30e2\u30fc\u30c8\u63a5\u7d9a\u3084\u30b9\u30af\u30ea\u30d7\u30c8\u5b9f\u884c\u306a\u3069\u304c\u884c\u3048...", "creation_timestamp": "2026-06-16T13:50:02.410167Z"} 2026-06-16T13:50:02.410167+00:00 https://vulnerability.circl.lu/sighting/5b3342c5-f653-4378-a9fc-c3eea81a9086/export 2026-06-16T18:07:11.365733+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5b3342c5-f653-4378-a9fc-c3eea81a9086", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mofz4czfrc24", "content": "Critical SimpleHelp vulnerability (CVE-2026-48558) exposes thousands of servers to unauthorized access. Immediate action required. #SimpleHelp #CVE202648558 #AuthenticationBypass #CyberSecurity thedailytechfeed.com/critical-vul...", "creation_timestamp": "2026-06-16T14:29:17.826870Z"} 2026-06-16T14:29:17.826870+00:00 https://vulnerability.circl.lu/sighting/fdd1d262-93fa-42a8-8636-2f331ef335b9/export 2026-06-16T18:07:11.362445+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fdd1d262-93fa-42a8-8636-2f331ef335b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/attrition.org/post/3mog7m2jsis2z", "content": "@f5labs.bsky.social re: www.f5.com/labs/article... Are you using \"AI\" to do these? e.g. \"Threat Details and IOCs\" and \"CVE-2026-35273, CVE-2026-46695, CVE-2026-46703, CVE-2026-48558, CVE-2026-50545\" has nothing to do with the section above, and those CVEs are largely not for the software listed.", "creation_timestamp": "2026-06-16T16:25:31.463878Z"} 2026-06-16T16:25:31.463878+00:00