<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 18 Jul 2026 11:13:16 +0000</lastBuildDate>
    <item>
      <title>85263180-4909-4244-be86-e8bfe4dbc3cd</title>
      <link>https://vulnerability.circl.lu/sighting/85263180-4909-4244-be86-e8bfe4dbc3cd/export</link>
      <description>{"uuid": "85263180-4909-4244-be86-e8bfe4dbc3cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "published-proof-of-concept", "source": "https://t.me/cyberwarehouse/167", "content": "https://github.com/ShielderSec/poc/tree/main/CVE-2023-33466", "creation_timestamp": "2026-07-18T01:00:14.424601Z"}</description>
      <content:encoded>{"uuid": "85263180-4909-4244-be86-e8bfe4dbc3cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "published-proof-of-concept", "source": "https://t.me/cyberwarehouse/167", "content": "https://github.com/ShielderSec/poc/tree/main/CVE-2023-33466", "creation_timestamp": "2026-07-18T01:00:14.424601Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/85263180-4909-4244-be86-e8bfe4dbc3cd/export</guid>
      <pubDate>Sat, 18 Jul 2026 01:00:14 +0000</pubDate>
    </item>
    <item>
      <title>b063c95c-2a06-4cf2-b137-918210d1ed48</title>
      <link>https://vulnerability.circl.lu/sighting/b063c95c-2a06-4cf2-b137-918210d1ed48/export</link>
      <description>{"uuid": "b063c95c-2a06-4cf2-b137-918210d1ed48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "seen", "source": "https://t.me/cyberwarehouse/167", "content": "https://github.com/ShielderSec/poc/tree/main/CVE-2023-33466", "creation_timestamp": "2026-07-17T12:00:09.527717Z"}</description>
      <content:encoded>{"uuid": "b063c95c-2a06-4cf2-b137-918210d1ed48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "seen", "source": "https://t.me/cyberwarehouse/167", "content": "https://github.com/ShielderSec/poc/tree/main/CVE-2023-33466", "creation_timestamp": "2026-07-17T12:00:09.527717Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b063c95c-2a06-4cf2-b137-918210d1ed48/export</guid>
      <pubDate>Fri, 17 Jul 2026 12:00:09 +0000</pubDate>
    </item>
    <item>
      <title>8a974d30-0e6d-42cf-b040-101b32962ef5</title>
      <link>https://vulnerability.circl.lu/sighting/8a974d30-0e6d-42cf-b040-101b32962ef5/export</link>
      <description>{"uuid": "8a974d30-0e6d-42cf-b040-101b32962ef5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpz5ozzmpd2v", "content": "\ud83d\udccc CVE-2023-33466 - Orthanc before 1.12.0 allows authenticated users with access to the Orthanc API to overwrite arbitrary files on the file system, and in specific deplo... https://www.cyberhub.blog/cves/CVE-2023-33466", "creation_timestamp": "2026-07-06T22:37:07.266278Z"}</description>
      <content:encoded>{"uuid": "8a974d30-0e6d-42cf-b040-101b32962ef5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpz5ozzmpd2v", "content": "\ud83d\udccc CVE-2023-33466 - Orthanc before 1.12.0 allows authenticated users with access to the Orthanc API to overwrite arbitrary files on the file system, and in specific deplo... https://www.cyberhub.blog/cves/CVE-2023-33466", "creation_timestamp": "2026-07-06T22:37:07.266278Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8a974d30-0e6d-42cf-b040-101b32962ef5/export</guid>
      <pubDate>Mon, 06 Jul 2026 22:37:07 +0000</pubDate>
    </item>
    <item>
      <title>28b68790-fe16-46e5-940a-b36f71642521</title>
      <link>https://vulnerability.circl.lu/sighting/28b68790-fe16-46e5-940a-b36f71642521/export</link>
      <description>{"uuid": "28b68790-fe16-46e5-940a-b36f71642521", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33461", "type": "seen", "source": "https://t.me/arpsyndicate/2939", "content": "#ExploitObserverAlert\n\nCVE-2023-33461\n\nDESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2023-33461. iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparser_getlongint which misses check NULL for function iniparser_getstring's return.\n\nFIRST-EPSS: 0.000440000\nNVD-IS: 3.6\nNVD-ES: 1.8", "creation_timestamp": "2024-01-19T16:35:26.000000Z"}</description>
      <content:encoded>{"uuid": "28b68790-fe16-46e5-940a-b36f71642521", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33461", "type": "seen", "source": "https://t.me/arpsyndicate/2939", "content": "#ExploitObserverAlert\n\nCVE-2023-33461\n\nDESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2023-33461. iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparser_getlongint which misses check NULL for function iniparser_getstring's return.\n\nFIRST-EPSS: 0.000440000\nNVD-IS: 3.6\nNVD-ES: 1.8", "creation_timestamp": "2024-01-19T16:35:26.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/28b68790-fe16-46e5-940a-b36f71642521/export</guid>
      <pubDate>Fri, 19 Jan 2024 16:35:26 +0000</pubDate>
    </item>
    <item>
      <title>4d14f9f5-ae46-41af-9d7a-92bd74e7b82f</title>
      <link>https://vulnerability.circl.lu/sighting/4d14f9f5-ae46-41af-9d7a-92bd74e7b82f/export</link>
      <description>{"uuid": "4d14f9f5-ae46-41af-9d7a-92bd74e7b82f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "seen", "source": "https://t.me/arpsyndicate/876", "content": "#ExploitObserverAlert\n\nCVE-2023-33466\n\nDESCRIPTION: Exploit Observer has 5 entries related to CVE-2023-33466. Orthanc before 1.12.0 allows authenticated users with access to the Orthanc API to overwrite arbitrary files on the file system, and in specific deployment scenarios allows the attacker to overwrite the configuration, which can be exploited to trigger Remote Code Execution (RCE).\n\nFIRST-EPSS: 0.001290000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2023-12-02T01:49:47.000000Z"}</description>
      <content:encoded>{"uuid": "4d14f9f5-ae46-41af-9d7a-92bd74e7b82f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "seen", "source": "https://t.me/arpsyndicate/876", "content": "#ExploitObserverAlert\n\nCVE-2023-33466\n\nDESCRIPTION: Exploit Observer has 5 entries related to CVE-2023-33466. Orthanc before 1.12.0 allows authenticated users with access to the Orthanc API to overwrite arbitrary files on the file system, and in specific deployment scenarios allows the attacker to overwrite the configuration, which can be exploited to trigger Remote Code Execution (RCE).\n\nFIRST-EPSS: 0.001290000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2023-12-02T01:49:47.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4d14f9f5-ae46-41af-9d7a-92bd74e7b82f/export</guid>
      <pubDate>Sat, 02 Dec 2023 01:49:47 +0000</pubDate>
    </item>
    <item>
      <title>ba7c015d-47ab-4771-aeee-bd5816929377</title>
      <link>https://vulnerability.circl.lu/sighting/ba7c015d-47ab-4771-aeee-bd5816929377/export</link>
      <description>{"uuid": "ba7c015d-47ab-4771-aeee-bd5816929377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "published-proof-of-concept", "source": "https://t.me/cKure/12040", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 CVE-2023-33466 - Exploiting Healthcare Servers with Polyglot Files.\n\nhttps://www.shielder.com/blog/2023/10/cve-2023-33466-exploiting-healthcare-servers-with-polyglot-files/", "creation_timestamp": "2023-11-29T22:26:03.000000Z"}</description>
      <content:encoded>{"uuid": "ba7c015d-47ab-4771-aeee-bd5816929377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "published-proof-of-concept", "source": "https://t.me/cKure/12040", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 CVE-2023-33466 - Exploiting Healthcare Servers with Polyglot Files.\n\nhttps://www.shielder.com/blog/2023/10/cve-2023-33466-exploiting-healthcare-servers-with-polyglot-files/", "creation_timestamp": "2023-11-29T22:26:03.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ba7c015d-47ab-4771-aeee-bd5816929377/export</guid>
      <pubDate>Wed, 29 Nov 2023 22:26:03 +0000</pubDate>
    </item>
    <item>
      <title>41cb041b-3cec-4d02-9265-d516252bd005</title>
      <link>https://vulnerability.circl.lu/sighting/41cb041b-3cec-4d02-9265-d516252bd005/export</link>
      <description>{"uuid": "41cb041b-3cec-4d02-9265-d516252bd005", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/381", "content": "Top Security News for 25/10/2023\n\nCVE-2023-33466 - Exploiting Healthcare Servers with Polyglot Files\nhttps://www.reddit.com/r/netsec/comments/17f9yci/cve202333466_exploiting_healthcare_servers_with/ \n\n[Crypto] Why authenticated encryption and MAC is so important\nhttps://www.reddit.com/r/netsec/comments/17fg28x/crypto_why_authenticated_encryption_and_mac_is_so/ \n\nEx-NSA Employee Pleads Guilty to Leaking Classified Data to Russia\nhttps://thehackernews.com/2023/10/ex-nsa-employee-pleads-guilty-to.html \n\nAI vs. human deceit: Unravelling the new age of phishing tactics\nhttps://securityintelligence.com/posts/ai-vs-human-deceit-unravelling-new-age-phishing-tactics/ \n\nISC StormCast for Wednesday, October 25th, 2023\nhttps://isc.sans.edu/podcastdetail/8716 \n\nMake API Management Less Scary for Your Organization\nhttps://thehackernews.com/2023/10/make-api-management-less-scary-for-your.html \n\nTwo new things to worry about: how long it takes to read the fine print, and bed bug disinformation.\nhttps://thecyberwire.com/podcasts/daily-podcast/1933/notes \n\nGoogle Chrome wants to hide your IP address\nhttps://www.malwarebytes.com/blog/news/2023/10/google-wants-to-introduce-ip-protection-feature-for-chrome \n\nAmazon adds passkeys so you can sign in without a pesky password\nhttps://malware.news/t/amazon-adds-passkeys-so-you-can-sign-in-without-a-pesky-password/74898#post_1 \n\nNow Android and Windows devices aren't safe from Flipper Zero either\nhttps://malware.news/t/now-android-and-windows-devices-arent-safe-from-flipper-zero-either/74897#post_1 \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2023-10-25T07:00:06.000000Z"}</description>
      <content:encoded>{"uuid": "41cb041b-3cec-4d02-9265-d516252bd005", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33466", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/381", "content": "Top Security News for 25/10/2023\n\nCVE-2023-33466 - Exploiting Healthcare Servers with Polyglot Files\nhttps://www.reddit.com/r/netsec/comments/17f9yci/cve202333466_exploiting_healthcare_servers_with/ \n\n[Crypto] Why authenticated encryption and MAC is so important\nhttps://www.reddit.com/r/netsec/comments/17fg28x/crypto_why_authenticated_encryption_and_mac_is_so/ \n\nEx-NSA Employee Pleads Guilty to Leaking Classified Data to Russia\nhttps://thehackernews.com/2023/10/ex-nsa-employee-pleads-guilty-to.html \n\nAI vs. human deceit: Unravelling the new age of phishing tactics\nhttps://securityintelligence.com/posts/ai-vs-human-deceit-unravelling-new-age-phishing-tactics/ \n\nISC StormCast for Wednesday, October 25th, 2023\nhttps://isc.sans.edu/podcastdetail/8716 \n\nMake API Management Less Scary for Your Organization\nhttps://thehackernews.com/2023/10/make-api-management-less-scary-for-your.html \n\nTwo new things to worry about: how long it takes to read the fine print, and bed bug disinformation.\nhttps://thecyberwire.com/podcasts/daily-podcast/1933/notes \n\nGoogle Chrome wants to hide your IP address\nhttps://www.malwarebytes.com/blog/news/2023/10/google-wants-to-introduce-ip-protection-feature-for-chrome \n\nAmazon adds passkeys so you can sign in without a pesky password\nhttps://malware.news/t/amazon-adds-passkeys-so-you-can-sign-in-without-a-pesky-password/74898#post_1 \n\nNow Android and Windows devices aren't safe from Flipper Zero either\nhttps://malware.news/t/now-android-and-windows-devices-arent-safe-from-flipper-zero-either/74897#post_1 \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2023-10-25T07:00:06.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/41cb041b-3cec-4d02-9265-d516252bd005/export</guid>
      <pubDate>Wed, 25 Oct 2023 07:00:06 +0000</pubDate>
    </item>
    <item>
      <title>de451139-d4c8-4f6f-a357-e7ab0c21b669</title>
      <link>https://vulnerability.circl.lu/sighting/de451139-d4c8-4f6f-a357-e7ab0c21b669/export</link>
      <description>{"uuid": "de451139-d4c8-4f6f-a357-e7ab0c21b669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33468", "type": "seen", "source": "https://t.me/cibsecurity/68142", "content": "\u203c CVE-2023-33468 \u203c\n\nKramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a vulnerability that enables remote manipulation of the device. This vulnerability involves extracting the connection confirmation code remotely, bypassing the need to obtain it directly from the physical screen.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T00:15:11.000000Z"}</description>
      <content:encoded>{"uuid": "de451139-d4c8-4f6f-a357-e7ab0c21b669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33468", "type": "seen", "source": "https://t.me/cibsecurity/68142", "content": "\u203c CVE-2023-33468 \u203c\n\nKramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a vulnerability that enables remote manipulation of the device. This vulnerability involves extracting the connection confirmation code remotely, bypassing the need to obtain it directly from the physical screen.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T00:15:11.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/de451139-d4c8-4f6f-a357-e7ab0c21b669/export</guid>
      <pubDate>Thu, 10 Aug 2023 00:15:11 +0000</pubDate>
    </item>
    <item>
      <title>a1a32e30-76a5-4da9-a350-0c713c2bb5ba</title>
      <link>https://vulnerability.circl.lu/sighting/a1a32e30-76a5-4da9-a350-0c713c2bb5ba/export</link>
      <description>{"uuid": "a1a32e30-76a5-4da9-a350-0c713c2bb5ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33469", "type": "seen", "source": "https://t.me/cibsecurity/68140", "content": "\u203c CVE-2023-33469 \u203c\n\nIn instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T00:15:09.000000Z"}</description>
      <content:encoded>{"uuid": "a1a32e30-76a5-4da9-a350-0c713c2bb5ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33469", "type": "seen", "source": "https://t.me/cibsecurity/68140", "content": "\u203c CVE-2023-33469 \u203c\n\nIn instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T00:15:09.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a1a32e30-76a5-4da9-a350-0c713c2bb5ba/export</guid>
      <pubDate>Thu, 10 Aug 2023 00:15:09 +0000</pubDate>
    </item>
    <item>
      <title>d964623c-c2c7-4480-9ee0-b0bd052c2299</title>
      <link>https://vulnerability.circl.lu/sighting/d964623c-c2c7-4480-9ee0-b0bd052c2299/export</link>
      <description>{"uuid": "d964623c-c2c7-4480-9ee0-b0bd052c2299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3346", "type": "seen", "source": "https://t.me/cibsecurity/67632", "content": "\u203c CVE-2023-3346 \u203c\n\nBuffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is required for recovery.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T12:39:58.000000Z"}</description>
      <content:encoded>{"uuid": "d964623c-c2c7-4480-9ee0-b0bd052c2299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3346", "type": "seen", "source": "https://t.me/cibsecurity/67632", "content": "\u203c CVE-2023-3346 \u203c\n\nBuffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is required for recovery.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T12:39:58.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d964623c-c2c7-4480-9ee0-b0bd052c2299/export</guid>
      <pubDate>Thu, 03 Aug 2023 12:39:58 +0000</pubDate>
    </item>
  </channel>
</rss>
