https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 12 Jun 2026 16:56:56 +0000 https://vulnerability.circl.lu/sighting/51778143-ceff-43ef-94bd-4a0e28a5a0bb/export {"uuid": "51778143-ceff-43ef-94bd-4a0e28a5a0bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27174", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7277", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27174\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T18:10:13.126Z\n\ud83d\udccf Modified: 2025-03-12T04:01:10.179Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/acrobat/apsb25-14.html", "creation_timestamp": "2025-03-12T04:43:08.000000Z"} {"uuid": "51778143-ceff-43ef-94bd-4a0e28a5a0bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27174", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7277", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27174\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T18:10:13.126Z\n\ud83d\udccf Modified: 2025-03-12T04:01:10.179Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/acrobat/apsb25-14.html", "creation_timestamp": "2025-03-12T04:43:08.000000Z"} https://vulnerability.circl.lu/sighting/51778143-ceff-43ef-94bd-4a0e28a5a0bb/export Wed, 12 Mar 2025 04:43:08 +0000 https://vulnerability.circl.lu/sighting/56fd3d57-7daa-4f79-aa9d-9f8112c022c1/export {"uuid": "56fd3d57-7daa-4f79-aa9d-9f8112c022c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27178", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7278", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27178\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T17:43:19.108Z\n\ud83d\udccf Modified: 2025-03-12T04:01:08.946Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-19.html", "creation_timestamp": "2025-03-12T04:43:09.000000Z"} {"uuid": "56fd3d57-7daa-4f79-aa9d-9f8112c022c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27178", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7278", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27178\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T17:43:19.108Z\n\ud83d\udccf Modified: 2025-03-12T04:01:08.946Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-19.html", "creation_timestamp": "2025-03-12T04:43:09.000000Z"} https://vulnerability.circl.lu/sighting/56fd3d57-7daa-4f79-aa9d-9f8112c022c1/export Wed, 12 Mar 2025 04:43:09 +0000 https://vulnerability.circl.lu/sighting/073f70ae-bec2-4a6d-b82a-da820832ba65/export {"uuid": "073f70ae-bec2-4a6d-b82a-da820832ba65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27177", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7280", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27177\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T17:43:19.882Z\n\ud83d\udccf Modified: 2025-03-12T04:01:06.382Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-19.html", "creation_timestamp": "2025-03-12T04:43:10.000000Z"} {"uuid": "073f70ae-bec2-4a6d-b82a-da820832ba65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27177", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7280", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27177\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T17:43:19.882Z\n\ud83d\udccf Modified: 2025-03-12T04:01:06.382Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-19.html", "creation_timestamp": "2025-03-12T04:43:10.000000Z"} https://vulnerability.circl.lu/sighting/073f70ae-bec2-4a6d-b82a-da820832ba65/export Wed, 12 Mar 2025 04:43:10 +0000 https://vulnerability.circl.lu/sighting/8ac6303c-c650-4727-ab4d-0ad1ff0971c9/export {"uuid": "8ac6303c-c650-4727-ab4d-0ad1ff0971c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27175", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7282", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27175\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T17:43:20.698Z\n\ud83d\udccf Modified: 2025-03-12T04:01:02.120Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-19.html", "creation_timestamp": "2025-03-12T04:43:15.000000Z"} {"uuid": "8ac6303c-c650-4727-ab4d-0ad1ff0971c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27175", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7282", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27175\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-03-11T17:43:20.698Z\n\ud83d\udccf Modified: 2025-03-12T04:01:02.120Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-19.html", "creation_timestamp": "2025-03-12T04:43:15.000000Z"} https://vulnerability.circl.lu/sighting/8ac6303c-c650-4727-ab4d-0ad1ff0971c9/export Wed, 12 Mar 2025 04:43:15 +0000 https://vulnerability.circl.lu/sighting/d3ddd80f-9192-444b-8bd5-911e190c7398/export {"uuid": "d3ddd80f-9192-444b-8bd5-911e190c7398", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27174", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lk6pmd3g2s2y", "content": "", "creation_timestamp": "2025-03-12T13:43:42.336812Z"} {"uuid": "d3ddd80f-9192-444b-8bd5-911e190c7398", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27174", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lk6pmd3g2s2y", "content": "", "creation_timestamp": "2025-03-12T13:43:42.336812Z"} https://vulnerability.circl.lu/sighting/d3ddd80f-9192-444b-8bd5-911e190c7398/export Wed, 12 Mar 2025 13:43:42 +0000 https://vulnerability.circl.lu/sighting/cd968ccd-2406-44a6-a53b-397997f1e76a/export {"uuid": "cd968ccd-2406-44a6-a53b-397997f1e76a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27174", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-133/", "content": "", "creation_timestamp": "2025-03-13T04:00:00.000000Z"} {"uuid": "cd968ccd-2406-44a6-a53b-397997f1e76a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27174", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-133/", "content": "", "creation_timestamp": "2025-03-13T04:00:00.000000Z"} https://vulnerability.circl.lu/sighting/cd968ccd-2406-44a6-a53b-397997f1e76a/export Thu, 13 Mar 2025 04:00:00 +0000 https://vulnerability.circl.lu/sighting/5ab3e276-7e37-4121-b811-e16c78abe586/export {"uuid": "5ab3e276-7e37-4121-b811-e16c78abe586", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2717", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8572", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2717\n\ud83d\udd25 CVSS Score: 5.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function sub_41710C of the file /goform/diag_nslookup of the component HTTP POST Request Handler. The manipulation of the argument target_addr leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-03-24T23:31:05.104Z\n\ud83d\udccf Modified: 2025-03-24T23:31:05.104Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300737\n2. https://vuldb.com/?ctiid.300737\n3. https://vuldb.com/?submit.517958\n4. https://github.com/mono7s/Dir-823x/blob/main/diag_nslookup/diag_nslookup.md\n5. https://www.dlink.com/", "creation_timestamp": "2025-03-25T00:25:16.000000Z"} {"uuid": "5ab3e276-7e37-4121-b811-e16c78abe586", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2717", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8572", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2717\n\ud83d\udd25 CVSS Score: 5.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function sub_41710C of the file /goform/diag_nslookup of the component HTTP POST Request Handler. The manipulation of the argument target_addr leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-03-24T23:31:05.104Z\n\ud83d\udccf Modified: 2025-03-24T23:31:05.104Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300737\n2. https://vuldb.com/?ctiid.300737\n3. https://vuldb.com/?submit.517958\n4. https://github.com/mono7s/Dir-823x/blob/main/diag_nslookup/diag_nslookup.md\n5. https://www.dlink.com/", "creation_timestamp": "2025-03-25T00:25:16.000000Z"} https://vulnerability.circl.lu/sighting/5ab3e276-7e37-4121-b811-e16c78abe586/export Tue, 25 Mar 2025 00:25:16 +0000 https://vulnerability.circl.lu/sighting/74597e32-e8ec-43e7-9f25-441c8dbed8df/export {"uuid": "74597e32-e8ec-43e7-9f25-441c8dbed8df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2717", "type": "seen", "source": "https://t.me/cvedetector/21017", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2717 - D-Link DIR-823X HTTP POST Request Handler Os Command Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2717 \nPublished : March 25, 2025, 12:15 a.m. | 1\u00a0hour, 15\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function sub_41710C of the file /goform/diag_nslookup of the component HTTP POST Request Handler. The manipulation of the argument target_addr leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 4.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"25 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-25T02:46:04.000000Z"} {"uuid": "74597e32-e8ec-43e7-9f25-441c8dbed8df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2717", "type": "seen", "source": "https://t.me/cvedetector/21017", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2717 - D-Link DIR-823X HTTP POST Request Handler Os Command Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2717 \nPublished : March 25, 2025, 12:15 a.m. | 1\u00a0hour, 15\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function sub_41710C of the file /goform/diag_nslookup of the component HTTP POST Request Handler. The manipulation of the argument target_addr leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 4.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"25 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-25T02:46:04.000000Z"} https://vulnerability.circl.lu/sighting/74597e32-e8ec-43e7-9f25-441c8dbed8df/export Tue, 25 Mar 2025 02:46:04 +0000 https://vulnerability.circl.lu/sighting/e1e117c9-4454-4ae7-9e0f-8221063c377d/export {"uuid": "e1e117c9-4454-4ae7-9e0f-8221063c377d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27179", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"} {"uuid": "e1e117c9-4454-4ae7-9e0f-8221063c377d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27179", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"} https://vulnerability.circl.lu/sighting/e1e117c9-4454-4ae7-9e0f-8221063c377d/export Wed, 13 Aug 2025 13:26:34 +0000 https://vulnerability.circl.lu/sighting/c133f393-e7a4-4faa-bb98-d5f3ea020c40/export {"uuid": "c133f393-e7a4-4faa-bb98-d5f3ea020c40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27176", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"} {"uuid": "c133f393-e7a4-4faa-bb98-d5f3ea020c40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27176", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"} https://vulnerability.circl.lu/sighting/c133f393-e7a4-4faa-bb98-d5f3ea020c40/export Wed, 13 Aug 2025 13:26:34 +0000