<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 01 Jul 2026 12:53:12 +0000</lastBuildDate>
    <item>
      <title>db04430a-cf97-4485-915f-84444ba2ab3f</title>
      <link>https://vulnerability.circl.lu/sighting/db04430a-cf97-4485-915f-84444ba2ab3f/export</link>
      <description>{"uuid": "db04430a-cf97-4485-915f-84444ba2ab3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/geeknik.bsky.social/post/3mpjjhnwu7h2t", "content": "Patch-and-pray doesn't work in OT. Attackers reverse-engineered a Lantronix fix and exploited CVE-2025-67038 before the research even went public. Your patch is their roadmap.", "creation_timestamp": "2026-06-30T17:25:09.132081Z"}</description>
      <content:encoded>{"uuid": "db04430a-cf97-4485-915f-84444ba2ab3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/geeknik.bsky.social/post/3mpjjhnwu7h2t", "content": "Patch-and-pray doesn't work in OT. Attackers reverse-engineered a Lantronix fix and exploited CVE-2025-67038 before the research even went public. Your patch is their roadmap.", "creation_timestamp": "2026-06-30T17:25:09.132081Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/db04430a-cf97-4485-915f-84444ba2ab3f/export</guid>
      <pubDate>Tue, 30 Jun 2026 17:25:09 +0000</pubDate>
    </item>
    <item>
      <title>efb41bf8-ecc0-44f8-b4d9-f6da9a5a6f03</title>
      <link>https://vulnerability.circl.lu/sighting/efb41bf8-ecc0-44f8-b4d9-f6da9a5a6f03/export</link>
      <description>{"uuid": "efb41bf8-ecc0-44f8-b4d9-f6da9a5a6f03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpisgrwxkd2i", "content": "\u26a0\ufe0f CISA issued a warning. Not an advisory. A warning.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/malware/mirai-2026-06/reports/2026-06-28/\n\n#InfoSec #ThreatIntel", "creation_timestamp": "2026-06-30T10:33:05.313312Z"}</description>
      <content:encoded>{"uuid": "efb41bf8-ecc0-44f8-b4d9-f6da9a5a6f03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpisgrwxkd2i", "content": "\u26a0\ufe0f CISA issued a warning. Not an advisory. A warning.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/malware/mirai-2026-06/reports/2026-06-28/\n\n#InfoSec #ThreatIntel", "creation_timestamp": "2026-06-30T10:33:05.313312Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/efb41bf8-ecc0-44f8-b4d9-f6da9a5a6f03/export</guid>
      <pubDate>Tue, 30 Jun 2026 10:33:05 +0000</pubDate>
    </item>
    <item>
      <title>854caed7-e304-4b01-ad57-f26c1ed08711</title>
      <link>https://vulnerability.circl.lu/sighting/854caed7-e304-4b01-ad57-f26c1ed08711/export</link>
      <description>{"uuid": "854caed7-e304-4b01-ad57-f26c1ed08711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mph3j5iy442j", "content": "Your OT devices just became CISA's problem. And yours.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/malware/mirai-2026-06/reports/2026-06-28/\n\n#CVE #CyberSecurity", "creation_timestamp": "2026-06-29T18:10:38.352445Z"}</description>
      <content:encoded>{"uuid": "854caed7-e304-4b01-ad57-f26c1ed08711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mph3j5iy442j", "content": "Your OT devices just became CISA's problem. And yours.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/malware/mirai-2026-06/reports/2026-06-28/\n\n#CVE #CyberSecurity", "creation_timestamp": "2026-06-29T18:10:38.352445Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/854caed7-e304-4b01-ad57-f26c1ed08711/export</guid>
      <pubDate>Mon, 29 Jun 2026 18:10:38 +0000</pubDate>
    </item>
    <item>
      <title>52c48fdf-ceea-457d-a034-297ad5211e17</title>
      <link>https://vulnerability.circl.lu/sighting/52c48fdf-ceea-457d-a034-297ad5211e17/export</link>
      <description>{"uuid": "52c48fdf-ceea-457d-a034-297ad5211e17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mpgskviyfd2q", "content": "CISA warns of active CVE-2025-67038 (CVSS 9.8) flaw in Lantronix EDS5000 Series. FCEB agencies must fix by June 26, 2026, to prevent possible code injection and harm.", "creation_timestamp": "2026-06-29T15:30:01.588662Z"}</description>
      <content:encoded>{"uuid": "52c48fdf-ceea-457d-a034-297ad5211e17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mpgskviyfd2q", "content": "CISA warns of active CVE-2025-67038 (CVSS 9.8) flaw in Lantronix EDS5000 Series. FCEB agencies must fix by June 26, 2026, to prevent possible code injection and harm.", "creation_timestamp": "2026-06-29T15:30:01.588662Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/52c48fdf-ceea-457d-a034-297ad5211e17/export</guid>
      <pubDate>Mon, 29 Jun 2026 15:30:01 +0000</pubDate>
    </item>
    <item>
      <title>3f3551ce-f227-4053-ae0e-78e7eb467e92</title>
      <link>https://vulnerability.circl.lu/sighting/3f3551ce-f227-4053-ae0e-78e7eb467e92/export</link>
      <description>{"uuid": "3f3551ce-f227-4053-ae0e-78e7eb467e92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-67038", "type": "seen", "source": "https://bsky.app/profile/etairos-ai.bsky.social/post/3mpdy4hggqf23", "content": "Unauth command injection = ROOT on Lantronix EDS5000 serial-to-IP boxes (the OT-to-network bridge). Actively exploited, now CISA KEV, thousands exposed. Get them off the internet: https://threat-intelligence.redeyesecurity.com/blog/lantronix-serial-to-ip-cve-2025-67038-ot-exploited-2026", "creation_timestamp": "2026-06-28T12:31:20.534454Z"}</description>
      <content:encoded>{"uuid": "3f3551ce-f227-4053-ae0e-78e7eb467e92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-67038", "type": "seen", "source": "https://bsky.app/profile/etairos-ai.bsky.social/post/3mpdy4hggqf23", "content": "Unauth command injection = ROOT on Lantronix EDS5000 serial-to-IP boxes (the OT-to-network bridge). Actively exploited, now CISA KEV, thousands exposed. Get them off the internet: https://threat-intelligence.redeyesecurity.com/blog/lantronix-serial-to-ip-cve-2025-67038-ot-exploited-2026", "creation_timestamp": "2026-06-28T12:31:20.534454Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3f3551ce-f227-4053-ae0e-78e7eb467e92/export</guid>
      <pubDate>Sun, 28 Jun 2026 12:31:20 +0000</pubDate>
    </item>
    <item>
      <title>95f3209d-a787-447b-9a1f-41fe87ae0373</title>
      <link>https://vulnerability.circl.lu/sighting/95f3209d-a787-447b-9a1f-41fe87ae0373/export</link>
      <description>{"uuid": "95f3209d-a787-447b-9a1f-41fe87ae0373", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpdplau6el2h", "content": "Your industrial network gear is getting pwned in real-time.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#CyberSecurity #Security", "creation_timestamp": "2026-06-28T09:58:33.128161Z"}</description>
      <content:encoded>{"uuid": "95f3209d-a787-447b-9a1f-41fe87ae0373", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpdplau6el2h", "content": "Your industrial network gear is getting pwned in real-time.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#CyberSecurity #Security", "creation_timestamp": "2026-06-28T09:58:33.128161Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/95f3209d-a787-447b-9a1f-41fe87ae0373/export</guid>
      <pubDate>Sun, 28 Jun 2026 09:58:33 +0000</pubDate>
    </item>
    <item>
      <title>4ab40adb-1dfc-4406-b481-893d6d544619</title>
      <link>https://vulnerability.circl.lu/sighting/4ab40adb-1dfc-4406-b481-893d6d544619/export</link>
      <description>{"uuid": "4ab40adb-1dfc-4406-b481-893d6d544619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpb5j7jiya2i", "content": "CISA says this Lantronix flaw is being exploited right now. Your OT gear might be next.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#InfoSec #DataBreach", "creation_timestamp": "2026-06-27T09:29:57.908573Z"}</description>
      <content:encoded>{"uuid": "4ab40adb-1dfc-4406-b481-893d6d544619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpb5j7jiya2i", "content": "CISA says this Lantronix flaw is being exploited right now. Your OT gear might be next.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#InfoSec #DataBreach", "creation_timestamp": "2026-06-27T09:29:57.908573Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4ab40adb-1dfc-4406-b481-893d6d544619/export</guid>
      <pubDate>Sat, 27 Jun 2026 09:29:57 +0000</pubDate>
    </item>
    <item>
      <title>b09ade8e-2161-47eb-9113-5f1de6ce406f</title>
      <link>https://vulnerability.circl.lu/sighting/b09ade8e-2161-47eb-9113-5f1de6ce406f/export</link>
      <description>{"uuid": "b09ade8e-2161-47eb-9113-5f1de6ce406f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-67038", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mp6vha5xql2h", "content": "\ud83d\udce2 CVE-2025-67038 : ex\u00e9cution de commandes arbitraires dans les convertisseurs Lantronix EDS5000 ajout\u00e9e au KEV CISA\n\ud83d\udcdd #\u2026\nhttps://cyberveille.ch/posts/2026-06-26-cve-2025-67038-execution-de-commandes-arbitraires-dans-les-convertisseurs-lantronix-eds5000-ajoutee-au-kev-cisa/ #Berserk_Bear #Cyberveille", "creation_timestamp": "2026-06-26T12:00:22.125100Z"}</description>
      <content:encoded>{"uuid": "b09ade8e-2161-47eb-9113-5f1de6ce406f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-67038", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mp6vha5xql2h", "content": "\ud83d\udce2 CVE-2025-67038 : ex\u00e9cution de commandes arbitraires dans les convertisseurs Lantronix EDS5000 ajout\u00e9e au KEV CISA\n\ud83d\udcdd #\u2026\nhttps://cyberveille.ch/posts/2026-06-26-cve-2025-67038-execution-de-commandes-arbitraires-dans-les-convertisseurs-lantronix-eds5000-ajoutee-au-kev-cisa/ #Berserk_Bear #Cyberveille", "creation_timestamp": "2026-06-26T12:00:22.125100Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b09ade8e-2161-47eb-9113-5f1de6ce406f/export</guid>
      <pubDate>Fri, 26 Jun 2026 12:00:22 +0000</pubDate>
    </item>
    <item>
      <title>20044d6c-db08-4bc8-b152-f4f97de0c501</title>
      <link>https://vulnerability.circl.lu/sighting/20044d6c-db08-4bc8-b152-f4f97de0c501/export</link>
      <description>{"uuid": "20044d6c-db08-4bc8-b152-f4f97de0c501", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mp6q3zd5oa2k", "content": "CISA just added CVE-2025-67038 to its known exploited list.\n\nLantronix EDS5000 Series.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#CyberSecurity #PatchNow", "creation_timestamp": "2026-06-26T10:24:37.442876Z"}</description>
      <content:encoded>{"uuid": "20044d6c-db08-4bc8-b152-f4f97de0c501", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mp6q3zd5oa2k", "content": "CISA just added CVE-2025-67038 to its known exploited list.\n\nLantronix EDS5000 Series.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#CyberSecurity #PatchNow", "creation_timestamp": "2026-06-26T10:24:37.442876Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/20044d6c-db08-4bc8-b152-f4f97de0c501/export</guid>
      <pubDate>Fri, 26 Jun 2026 10:24:37 +0000</pubDate>
    </item>
    <item>
      <title>3996b192-2c06-43d3-9552-6954ed254b7a</title>
      <link>https://vulnerability.circl.lu/sighting/3996b192-2c06-43d3-9552-6954ed254b7a/export</link>
      <description>{"uuid": "3996b192-2c06-43d3-9552-6954ed254b7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://threatintel.cc/2026/06/25/cisa-warns-of-maxseverity-ubiquiti.html", "content": "Source URL: www.bleepingcomputer.com/news/secu&amp;hellip;\u2028CISA added actively exploited vulnerabilities affecting Ubiquiti UniFi OS and Lantronix EDS5000 serial-to-Ethernet servers to its Known Exploited Vulnerabilities catalogue and, under BOD 26-04, directed U.S. federal agencies to apply available updates or vendor-recommended mitigations within three days. The Ubiquiti flaws include an access-control bypass, directory/path traversal and improper input validation that could enable command execution, with researchers showing the issues can be chained for full remote code execution on vulnerable UniFi OS devices. The Lantronix issue, CVE-2025-67038, is a critical root-level command-injection flaw in the HTTP RPC module, making urgent patching, exposure review and compensating controls appropriate for organizations running these products.", "creation_timestamp": "2026-06-26T01:00:42.237651Z"}</description>
      <content:encoded>{"uuid": "3996b192-2c06-43d3-9552-6954ed254b7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://threatintel.cc/2026/06/25/cisa-warns-of-maxseverity-ubiquiti.html", "content": "Source URL: www.bleepingcomputer.com/news/secu&amp;hellip;\u2028CISA added actively exploited vulnerabilities affecting Ubiquiti UniFi OS and Lantronix EDS5000 serial-to-Ethernet servers to its Known Exploited Vulnerabilities catalogue and, under BOD 26-04, directed U.S. federal agencies to apply available updates or vendor-recommended mitigations within three days. The Ubiquiti flaws include an access-control bypass, directory/path traversal and improper input validation that could enable command execution, with researchers showing the issues can be chained for full remote code execution on vulnerable UniFi OS devices. The Lantronix issue, CVE-2025-67038, is a critical root-level command-injection flaw in the HTTP RPC module, making urgent patching, exposure review and compensating controls appropriate for organizations running these products.", "creation_timestamp": "2026-06-26T01:00:42.237651Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3996b192-2c06-43d3-9552-6954ed254b7a/export</guid>
      <pubDate>Fri, 26 Jun 2026 01:00:42 +0000</pubDate>
    </item>
  </channel>
</rss>
