<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T15:06:57.880476+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b72120ae-a1c2-4b04-8486-2e0d84f7f725/export</id>
    <title>b72120ae-a1c2-4b04-8486-2e0d84f7f725</title>
    <updated>2026-07-15T15:06:57.908240+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b72120ae-a1c2-4b04-8486-2e0d84f7f725", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqoocwtofd25", "content": "ServiceNow AI platform CRITICAL RCE (CVE-2026-6875) patched \u2014 unauthenticated remote code execution risk. Ivanti &amp;amp; Fortinet also released fixes. Patch all affected products now. \ud83d\udee1\ufe0f https://radar.offseq.com/threat/vulnerabilities-patched-by-fortinet-ivanti-service-e42e461913c3f486 #OffSeq #Vulnera...", "creation_timestamp": "2026-07-15T12:00:29.606229Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b72120ae-a1c2-4b04-8486-2e0d84f7f725/export"/>
    <published>2026-07-15T12:00:29.606229+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/57f0b0a6-5d3d-4bfc-a32b-9fef77c4ec7f/export</id>
    <title>57f0b0a6-5d3d-4bfc-a32b-9fef77c4ec7f</title>
    <updated>2026-07-15T15:06:57.910734+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "57f0b0a6-5d3d-4bfc-a32b-9fef77c4ec7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116923880381527171", "content": "CRITICAL RCE in ServiceNow AI platform (CVE-2026-6875) allows unauthenticated code execution. Patched \u2014 no active exploitation. Ivanti &amp;amp; Fortinet also released key updates. Patch all affected systems promptly. https://radar.offseq.com/threat/vulnerabilities-patched-by-fortinet-ivanti-service-e42e461913c3f486 #OffSeq #Vuln #ServiceNow #Ivanti #Fortinet", "creation_timestamp": "2026-07-15T12:00:27.896189Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/57f0b0a6-5d3d-4bfc-a32b-9fef77c4ec7f/export"/>
    <published>2026-07-15T12:00:27.896189+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fbebecb8-5c7c-4bf0-86e8-2f1a3f876d89/export</id>
    <title>fbebecb8-5c7c-4bf0-86e8-2f1a3f876d89</title>
    <updated>2026-07-15T15:06:57.910875+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fbebecb8-5c7c-4bf0-86e8-2f1a3f876d89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqonnys6rs2t", "content": "CVE-2026-6875: Did ServiceNow's Critical RCE Patch Miss Critical Context? #CVE20266875 #ServiceNow #CyberSecurity", "creation_timestamp": "2026-07-15T11:48:46.899871Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fbebecb8-5c7c-4bf0-86e8-2f1a3f876d89/export"/>
    <published>2026-07-15T11:48:46.899871+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7e0a15ab-59c9-46ed-9e58-ccfc728627c1/export</id>
    <title>7e0a15ab-59c9-46ed-9e58-ccfc728627c1</title>
    <updated>2026-07-15T15:06:57.910979+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7e0a15ab-59c9-46ed-9e58-ccfc728627c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://threatintel.cc/2026/07/14/servicenow-security-advisory-av-canadian.html", "content": "ServiceNow security advisory (AV26-693) - Canadian Centre for Cyber Security\n\nServiceNow security advisory AV26-693 addresses a critical sandbox escape vulnerability affecting multiple versions of their AI platform products. Users and administrators are urged to apply the necessary security updates to mitigate risks identified in CVE-2026-6875.", "creation_timestamp": "2026-07-15T01:00:46.304144Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7e0a15ab-59c9-46ed-9e58-ccfc728627c1/export"/>
    <published>2026-07-15T01:00:46.304144+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/13010b1c-6926-46db-b03c-b13d534c406a/export</id>
    <title>13010b1c-6926-46db-b03c-b13d534c406a</title>
    <updated>2026-07-15T15:06:57.911079+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "13010b1c-6926-46db-b03c-b13d534c406a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://threatintel.cc/2026/07/14/servicenow-security-advisory-av-canadian.html", "content": "ServiceNow security advisory (AV26-693) - Canadian Centre for Cyber Security\n\nServiceNow security advisory AV26-693 addresses a critical sandbox escape vulnerability affecting multiple versions of their AI platform products. Users and administrators are urged to apply the necessary security updates to mitigate risks identified in CVE-2026-6875.", "creation_timestamp": "2026-07-14T19:00:52.301863Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/13010b1c-6926-46db-b03c-b13d534c406a/export"/>
    <published>2026-07-14T19:00:52.301863+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/72fe8bb8-4ed6-4075-a409-afd14279e05c/export</id>
    <title>72fe8bb8-4ed6-4075-a409-afd14279e05c</title>
    <updated>2026-07-15T15:06:57.911184+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "72fe8bb8-4ed6-4075-a409-afd14279e05c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://bsky.app/profile/cerberusit.bsky.social/post/3mqmqdxcyw52p", "content": "In today's episode of rushed technology, ServiceNow has disclosed a critical sandbox escape vulnerability, CVE-2026-6875, lurking inside its AI Platform. This delightful flaw allows unauthenticated remote code execution, meaning absolute strangers can execute arbitrary commands o...\n\nRead full story", "creation_timestamp": "2026-07-14T17:31:31.296736Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/72fe8bb8-4ed6-4075-a409-afd14279e05c/export"/>
    <published>2026-07-14T17:31:31.296736+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/cbadf9dd-2ebb-4216-b326-4e2faf4ee55a/export</id>
    <title>cbadf9dd-2ebb-4216-b326-4e2faf4ee55a</title>
    <updated>2026-07-15T15:06:57.911283+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "cbadf9dd-2ebb-4216-b326-4e2faf4ee55a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/116919330785017978", "content": "ServiceNow security advisory AV26-693 addresses a critical sandbox escape vulnerability affecting multiple versions of their AI platform products. Users and administrators are urged to apply the necessary security updates to mitigate risks identified in CVE-2026-6875.https://www.cyber.gc.ca/en/alerts-advisories/servicenow-security-advisory-av26-693", "creation_timestamp": "2026-07-14T16:43:26.198536Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/cbadf9dd-2ebb-4216-b326-4e2faf4ee55a/export"/>
    <published>2026-07-14T16:43:26.198536+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1be53fab-6ac0-4654-a531-86e0f5a2e1b1/export</id>
    <title>1be53fab-6ac0-4654-a531-86e0f5a2e1b1</title>
    <updated>2026-07-15T15:06:57.911378+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cve.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "1be53fab-6ac0-4654-a531-86e0f5a2e1b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/servicenow-security-advisory-av26-693", "content": "", "creation_timestamp": "2026-07-14T16:15:18.984943Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1be53fab-6ac0-4654-a531-86e0f5a2e1b1/export"/>
    <published>2026-07-14T16:15:18.984943+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ac0102dd-f2c3-4b47-8f0b-3d61c074b8ef/export</id>
    <title>ac0102dd-f2c3-4b47-8f0b-3d61c074b8ef</title>
    <updated>2026-07-15T15:06:57.912470+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ac0102dd-f2c3-4b47-8f0b-3d61c074b8ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://bsky.app/profile/cyfar.ca/post/3mqmlit7kfu2q", "content": "~Cybergcca~\nCanadian Cyber Centre published 6 advisories covering critical vulnerabilities in ServiceNow, Veeam, Mozilla, SAP, Siemens, and HPE.\n-\nIOCs: CVE-2026-6875\n-\n#PatchTuesday #ThreatIntel #Vulnerability", "creation_timestamp": "2026-07-14T16:04:46.252380Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ac0102dd-f2c3-4b47-8f0b-3d61c074b8ef/export"/>
    <published>2026-07-14T16:04:46.252380+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a9a95065-1456-4077-bbfb-9feb75ef5cb8/export</id>
    <title>a9a95065-1456-4077-bbfb-9feb75ef5cb8</title>
    <updated>2026-07-15T15:06:57.912597+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a9a95065-1456-4077-bbfb-9feb75ef5cb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6875", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/116918849655114550", "content": "I fucking hate delayed advisories like this. Do better, ServiceNow.\nhttps://support.servicenow.com/kb?id=kb_article_view&amp;amp;sysparm_article=KB3137947\n\nServiceNow has addressed a critical remote code execution vulnerability that was identified in the ServiceNow AI platform. This vulnerability, tracked as CVE-2026-6875, could enable an unauthenticated user, in certain circumstances, to execute code within the ServiceNow platform. \nhttps://www.cve.org/CVERecord?id=CVE-2026-6875\nsev:CRIT 9.5 - CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H", "creation_timestamp": "2026-07-14T14:41:05.234168Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a9a95065-1456-4077-bbfb-9feb75ef5cb8/export"/>
    <published>2026-07-14T14:41:05.234168+00:00</published>
  </entry>
</feed>
