<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 05 Jul 2026 23:25:45 +0000</lastBuildDate>
    <item>
      <title>e06853d8-aa08-4432-bd3c-4b5ff9a85fa8</title>
      <link>https://vulnerability.circl.lu/sighting/e06853d8-aa08-4432-bd3c-4b5ff9a85fa8/export</link>
      <description>{"uuid": "e06853d8-aa08-4432-bd3c-4b5ff9a85fa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23326", "type": "seen", "source": "https://gist.github.com/ferasdour/504aa49686f8e64564249de44cd5eab2", "content": "", "creation_timestamp": "2025-07-25T01:12:22.000000Z"}</description>
      <content:encoded>{"uuid": "e06853d8-aa08-4432-bd3c-4b5ff9a85fa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23326", "type": "seen", "source": "https://gist.github.com/ferasdour/504aa49686f8e64564249de44cd5eab2", "content": "", "creation_timestamp": "2025-07-25T01:12:22.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e06853d8-aa08-4432-bd3c-4b5ff9a85fa8/export</guid>
      <pubDate>Fri, 25 Jul 2025 01:12:22 +0000</pubDate>
    </item>
    <item>
      <title>48468537-04cb-4546-9949-1e3e791b46d4</title>
      <link>https://vulnerability.circl.lu/sighting/48468537-04cb-4546-9949-1e3e791b46d4/export</link>
      <description>{"uuid": "48468537-04cb-4546-9949-1e3e791b46d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23327", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17748", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-23327\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protocol block. This issue has been addressed in releases 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2024-02-09T22:41:54.896Z\n\ud83d\udccf Modified: 2025-06-09T18:42:27.781Z\n\ud83d\udd17 References:\n1. https://github.com/envoyproxy/envoy/security/advisories/GHSA-4h5x-x9vh-m29j\n2. https://github.com/envoyproxy/envoy/commit/63895ea8e3cca9c5d3ab4c5c128ed1369969d54a", "creation_timestamp": "2025-06-09T19:48:10.000000Z"}</description>
      <content:encoded>{"uuid": "48468537-04cb-4546-9949-1e3e791b46d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23327", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17748", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-23327\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protocol block. This issue has been addressed in releases 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2024-02-09T22:41:54.896Z\n\ud83d\udccf Modified: 2025-06-09T18:42:27.781Z\n\ud83d\udd17 References:\n1. https://github.com/envoyproxy/envoy/security/advisories/GHSA-4h5x-x9vh-m29j\n2. https://github.com/envoyproxy/envoy/commit/63895ea8e3cca9c5d3ab4c5c128ed1369969d54a", "creation_timestamp": "2025-06-09T19:48:10.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/48468537-04cb-4546-9949-1e3e791b46d4/export</guid>
      <pubDate>Mon, 09 Jun 2025 19:48:10 +0000</pubDate>
    </item>
    <item>
      <title>20218f4a-7968-4926-9a44-f00200d46c0e</title>
      <link>https://vulnerability.circl.lu/sighting/20218f4a-7968-4926-9a44-f00200d46c0e/export</link>
      <description>{"uuid": "20218f4a-7968-4926-9a44-f00200d46c0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23323", "type": "seen", "source": "https://t.me/arpsyndicate/4895", "content": "#ExploitObserverAlert\n\nCVE-2024-23323\n\nDESCRIPTION: Exploit Observer has 7 entries in 4 file formats related to CVE-2024-23323. Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\nFIRST-EPSS: 0.000460000\nNVD-IS: 1.4\nNVD-ES: 3.9\nARPS-PRIORITY: 0.7583711", "creation_timestamp": "2024-04-26T06:13:39.000000Z"}</description>
      <content:encoded>{"uuid": "20218f4a-7968-4926-9a44-f00200d46c0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23323", "type": "seen", "source": "https://t.me/arpsyndicate/4895", "content": "#ExploitObserverAlert\n\nCVE-2024-23323\n\nDESCRIPTION: Exploit Observer has 7 entries in 4 file formats related to CVE-2024-23323. Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\nFIRST-EPSS: 0.000460000\nNVD-IS: 1.4\nNVD-ES: 3.9\nARPS-PRIORITY: 0.7583711", "creation_timestamp": "2024-04-26T06:13:39.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/20218f4a-7968-4926-9a44-f00200d46c0e/export</guid>
      <pubDate>Fri, 26 Apr 2024 06:13:39 +0000</pubDate>
    </item>
    <item>
      <title>aa60c144-f125-47e8-8efe-38bb271f5038</title>
      <link>https://vulnerability.circl.lu/sighting/aa60c144-f125-47e8-8efe-38bb271f5038/export</link>
      <description>{"uuid": "aa60c144-f125-47e8-8efe-38bb271f5038", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2332", "type": "seen", "source": "https://t.me/ctinow/203973", "content": "https://ift.tt/lLepm4h\nCVE-2024-2332", "creation_timestamp": "2024-03-09T15:26:12.000000Z"}</description>
      <content:encoded>{"uuid": "aa60c144-f125-47e8-8efe-38bb271f5038", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2332", "type": "seen", "source": "https://t.me/ctinow/203973", "content": "https://ift.tt/lLepm4h\nCVE-2024-2332", "creation_timestamp": "2024-03-09T15:26:12.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/aa60c144-f125-47e8-8efe-38bb271f5038/export</guid>
      <pubDate>Sat, 09 Mar 2024 15:26:12 +0000</pubDate>
    </item>
    <item>
      <title>e074d297-ffea-4605-ba3d-13eb4cc01a9d</title>
      <link>https://vulnerability.circl.lu/sighting/e074d297-ffea-4605-ba3d-13eb4cc01a9d/export</link>
      <description>{"uuid": "e074d297-ffea-4605-ba3d-13eb4cc01a9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2332", "type": "seen", "source": "https://t.me/ctinow/203972", "content": "https://ift.tt/lLepm4h\nCVE-2024-2332", "creation_timestamp": "2024-03-09T15:26:11.000000Z"}</description>
      <content:encoded>{"uuid": "e074d297-ffea-4605-ba3d-13eb4cc01a9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2332", "type": "seen", "source": "https://t.me/ctinow/203972", "content": "https://ift.tt/lLepm4h\nCVE-2024-2332", "creation_timestamp": "2024-03-09T15:26:11.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e074d297-ffea-4605-ba3d-13eb4cc01a9d/export</guid>
      <pubDate>Sat, 09 Mar 2024 15:26:11 +0000</pubDate>
    </item>
    <item>
      <title>6c894d5d-2e28-4e9d-9c92-11cf70ebafb0</title>
      <link>https://vulnerability.circl.lu/sighting/6c894d5d-2e28-4e9d-9c92-11cf70ebafb0/export</link>
      <description>{"uuid": "6c894d5d-2e28-4e9d-9c92-11cf70ebafb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23323", "type": "seen", "source": "https://t.me/ctinow/198667", "content": "https://ift.tt/IAE4Sb6\nCVE-2024-23323 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 resource consumption (GHSA-x278-4w4x-r7ch)", "creation_timestamp": "2024-03-03T10:46:24.000000Z"}</description>
      <content:encoded>{"uuid": "6c894d5d-2e28-4e9d-9c92-11cf70ebafb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23323", "type": "seen", "source": "https://t.me/ctinow/198667", "content": "https://ift.tt/IAE4Sb6\nCVE-2024-23323 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 resource consumption (GHSA-x278-4w4x-r7ch)", "creation_timestamp": "2024-03-03T10:46:24.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6c894d5d-2e28-4e9d-9c92-11cf70ebafb0/export</guid>
      <pubDate>Sun, 03 Mar 2024 10:46:24 +0000</pubDate>
    </item>
    <item>
      <title>819b2851-75b5-4c9e-ba58-37b74b3a967c</title>
      <link>https://vulnerability.circl.lu/sighting/819b2851-75b5-4c9e-ba58-37b74b3a967c/export</link>
      <description>{"uuid": "819b2851-75b5-4c9e-ba58-37b74b3a967c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23324", "type": "seen", "source": "https://t.me/ctinow/198666", "content": "https://ift.tt/fOBYxC5\nCVE-2024-23324 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Downstream ext_authz access control (GHSA-gq3v-vvhj-96j6)", "creation_timestamp": "2024-03-03T10:46:22.000000Z"}</description>
      <content:encoded>{"uuid": "819b2851-75b5-4c9e-ba58-37b74b3a967c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23324", "type": "seen", "source": "https://t.me/ctinow/198666", "content": "https://ift.tt/fOBYxC5\nCVE-2024-23324 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Downstream ext_authz access control (GHSA-gq3v-vvhj-96j6)", "creation_timestamp": "2024-03-03T10:46:22.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/819b2851-75b5-4c9e-ba58-37b74b3a967c/export</guid>
      <pubDate>Sun, 03 Mar 2024 10:46:22 +0000</pubDate>
    </item>
    <item>
      <title>8d2faa47-e534-41fc-b7a9-1606879fcada</title>
      <link>https://vulnerability.circl.lu/sighting/8d2faa47-e534-41fc-b7a9-1606879fcada/export</link>
      <description>{"uuid": "8d2faa47-e534-41fc-b7a9-1606879fcada", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/196127", "content": "https://ift.tt/ytmBN82\nCVE-2024-23328", "creation_timestamp": "2024-02-29T03:02:55.000000Z"}</description>
      <content:encoded>{"uuid": "8d2faa47-e534-41fc-b7a9-1606879fcada", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/196127", "content": "https://ift.tt/ytmBN82\nCVE-2024-23328", "creation_timestamp": "2024-02-29T03:02:55.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8d2faa47-e534-41fc-b7a9-1606879fcada/export</guid>
      <pubDate>Thu, 29 Feb 2024 03:02:55 +0000</pubDate>
    </item>
    <item>
      <title>44d36732-cf3f-4a88-b6de-ef10469594ab</title>
      <link>https://vulnerability.circl.lu/sighting/44d36732-cf3f-4a88-b6de-ef10469594ab/export</link>
      <description>{"uuid": "44d36732-cf3f-4a88-b6de-ef10469594ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/196110", "content": "https://ift.tt/ytmBN82\nCVE-2024-23328", "creation_timestamp": "2024-02-29T02:56:23.000000Z"}</description>
      <content:encoded>{"uuid": "44d36732-cf3f-4a88-b6de-ef10469594ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/196110", "content": "https://ift.tt/ytmBN82\nCVE-2024-23328", "creation_timestamp": "2024-02-29T02:56:23.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/44d36732-cf3f-4a88-b6de-ef10469594ab/export</guid>
      <pubDate>Thu, 29 Feb 2024 02:56:23 +0000</pubDate>
    </item>
    <item>
      <title>fcdba2e2-d1c0-40a6-9da6-b65dad7f5d19</title>
      <link>https://vulnerability.circl.lu/sighting/fcdba2e2-d1c0-40a6-9da6-b65dad7f5d19/export</link>
      <description>{"uuid": "fcdba2e2-d1c0-40a6-9da6-b65dad7f5d19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/192510", "content": "https://ift.tt/0UwEocQ\nCVE-2024-23328 | Dataease up to 1.18.14/2.2.x Mysql.java deserialization", "creation_timestamp": "2024-02-24T09:41:16.000000Z"}</description>
      <content:encoded>{"uuid": "fcdba2e2-d1c0-40a6-9da6-b65dad7f5d19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/192510", "content": "https://ift.tt/0UwEocQ\nCVE-2024-23328 | Dataease up to 1.18.14/2.2.x Mysql.java deserialization", "creation_timestamp": "2024-02-24T09:41:16.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/fcdba2e2-d1c0-40a6-9da6-b65dad7f5d19/export</guid>
      <pubDate>Sat, 24 Feb 2024 09:41:16 +0000</pubDate>
    </item>
  </channel>
</rss>
