https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 15 Jun 2026 02:50:25 +0000 https://vulnerability.circl.lu/sighting/e4066138-1fff-46f7-8a92-36e2632aad76/export {"uuid": "e4066138-1fff-46f7-8a92-36e2632aad76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzenod2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:10.559086Z"} {"uuid": "e4066138-1fff-46f7-8a92-36e2632aad76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzenod2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:10.559086Z"} https://vulnerability.circl.lu/sighting/e4066138-1fff-46f7-8a92-36e2632aad76/export Mon, 08 Jun 2026 16:00:10 +0000 https://vulnerability.circl.lu/sighting/336099a4-a7e8-4ccb-b2f3-f60598792ff2/export {"uuid": "336099a4-a7e8-4ccb-b2f3-f60598792ff2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzeonl2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:11.269267Z"} {"uuid": "336099a4-a7e8-4ccb-b2f3-f60598792ff2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mns2gzeonl2y", "content": "5/ \u26a0\ufe0f Two zero-days without patches: Cisco CVE-2026-20245 (SD-WAN Manager, root RCE, ACTIVELY EXPLOITED) and Microsoft Exchange CVE-2026-42897 (XSS, auto-mitigation exists \u2014 confirm yours is on). Neither has a patch yet.", "creation_timestamp": "2026-06-08T16:00:11.269267Z"} https://vulnerability.circl.lu/sighting/336099a4-a7e8-4ccb-b2f3-f60598792ff2/export Mon, 08 Jun 2026 16:00:11 +0000 https://vulnerability.circl.lu/sighting/0e8ef8a2-ef5c-4f28-af6b-10b7ee37fd2d/export {"uuid": "0e8ef8a2-ef5c-4f28-af6b-10b7ee37fd2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/bulentgerenler.bsky.social/post/3mnuznn6myn2m", "content": "Microsoft Exchange Server G\u00fcvenlik G\u00fcncellemesi Yay\u0131nland\u0131: CVE-2026-42897 \u0130\u00e7in Kal\u0131c\u0131 D\u00fczeltme\u00a0Geldi\n\nMicrosoft Exchange Server G\u00fcvenlik G\u00fcncellemesi, \u015firket i\u00e7i Exchange altyap\u0131lar\u0131 kullanan kurumlar i\u00e7in da\u011f\u0131t\u0131ma a\u00e7\u0131ld\u0131. Microsoft, Haziran 2026 g\u00fcvenlik paketleriyle birlikte son haftalarda d\u00fcnya\u2026", "creation_timestamp": "2026-06-09T20:23:43.610262Z"} {"uuid": "0e8ef8a2-ef5c-4f28-af6b-10b7ee37fd2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/bulentgerenler.bsky.social/post/3mnuznn6myn2m", "content": "Microsoft Exchange Server G\u00fcvenlik G\u00fcncellemesi Yay\u0131nland\u0131: CVE-2026-42897 \u0130\u00e7in Kal\u0131c\u0131 D\u00fczeltme\u00a0Geldi\n\nMicrosoft Exchange Server G\u00fcvenlik G\u00fcncellemesi, \u015firket i\u00e7i Exchange altyap\u0131lar\u0131 kullanan kurumlar i\u00e7in da\u011f\u0131t\u0131ma a\u00e7\u0131ld\u0131. Microsoft, Haziran 2026 g\u00fcvenlik paketleriyle birlikte son haftalarda d\u00fcnya\u2026", "creation_timestamp": "2026-06-09T20:23:43.610262Z"} https://vulnerability.circl.lu/sighting/0e8ef8a2-ef5c-4f28-af6b-10b7ee37fd2d/export Tue, 09 Jun 2026 20:23:43 +0000 https://vulnerability.circl.lu/sighting/fee864c1-1111-446e-baa6-26d864df9252/export {"uuid": "fee864c1-1111-446e-baa6-26d864df9252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/schnoll.bsky.social/post/3mnv4dlxsl22p", "content": "The June 2026 SU for Exchange Server SE addresses vulnerabilities reported by security partners and found through Microsoft\u2019s internal processes, as well as CVE-2026-42897. Review the blog post for details.\n\ntechcommunity.microsoft.com/blog/exchang...\n\n#MSExchange #Security #EEMS #FeatureFlighting", "creation_timestamp": "2026-06-09T21:11:48.209837Z"} {"uuid": "fee864c1-1111-446e-baa6-26d864df9252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/schnoll.bsky.social/post/3mnv4dlxsl22p", "content": "The June 2026 SU for Exchange Server SE addresses vulnerabilities reported by security partners and found through Microsoft\u2019s internal processes, as well as CVE-2026-42897. Review the blog post for details.\n\ntechcommunity.microsoft.com/blog/exchang...\n\n#MSExchange #Security #EEMS #FeatureFlighting", "creation_timestamp": "2026-06-09T21:11:48.209837Z"} https://vulnerability.circl.lu/sighting/fee864c1-1111-446e-baa6-26d864df9252/export Tue, 09 Jun 2026 21:11:48 +0000 https://vulnerability.circl.lu/sighting/785cd580-3631-46f3-b05d-1a46268ccb2f/export {"uuid": "785cd580-3631-46f3-b05d-1a46268ccb2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://www.jpcert.or.jp/english/at/2026/at260017.html", "content": "", "creation_timestamp": "2026-06-09T21:50:00.000000Z"} {"uuid": "785cd580-3631-46f3-b05d-1a46268ccb2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://www.jpcert.or.jp/english/at/2026/at260017.html", "content": "", "creation_timestamp": "2026-06-09T21:50:00.000000Z"} https://vulnerability.circl.lu/sighting/785cd580-3631-46f3-b05d-1a46268ccb2f/export Tue, 09 Jun 2026 21:50:00 +0000 https://vulnerability.circl.lu/sighting/7d3e8401-ad3c-45c2-b473-b959b60de240/export {"uuid": "7d3e8401-ad3c-45c2-b473-b959b60de240", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/deafnews-auto.bsky.social/post/3mnwog57dvj2k", "content": "RoguePlanet: Zero-Day Exploit (CVE-2026-42897) Hits Fully Patched Windows 10 and 11 Systems", "creation_timestamp": "2026-06-10T12:07:59.914637Z"} {"uuid": "7d3e8401-ad3c-45c2-b473-b959b60de240", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/deafnews-auto.bsky.social/post/3mnwog57dvj2k", "content": "RoguePlanet: Zero-Day Exploit (CVE-2026-42897) Hits Fully Patched Windows 10 and 11 Systems", "creation_timestamp": "2026-06-10T12:07:59.914637Z"} https://vulnerability.circl.lu/sighting/7d3e8401-ad3c-45c2-b473-b959b60de240/export Wed, 10 Jun 2026 12:07:59 +0000 https://vulnerability.circl.lu/sighting/fe01fcc5-7bfa-4969-8e03-b2f0b9541adf/export {"uuid": "fe01fcc5-7bfa-4969-8e03-b2f0b9541adf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnx6qoiewq2n", "content": "Microsoft has patched CVE-2026-42897, an actively exploited Exchange Server XSS flaw that can run arbitrary JavaScript in Outlook Web Access. Affects Exchange 2016, 2019, and Subscription Edition. #Microsoft #ExchangeServer #CVE202642897", "creation_timestamp": "2026-06-10T17:00:15.556144Z"} {"uuid": "fe01fcc5-7bfa-4969-8e03-b2f0b9541adf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnx6qoiewq2n", "content": "Microsoft has patched CVE-2026-42897, an actively exploited Exchange Server XSS flaw that can run arbitrary JavaScript in Outlook Web Access. Affects Exchange 2016, 2019, and Subscription Edition. #Microsoft #ExchangeServer #CVE202642897", "creation_timestamp": "2026-06-10T17:00:15.556144Z"} https://vulnerability.circl.lu/sighting/fe01fcc5-7bfa-4969-8e03-b2f0b9541adf/export Wed, 10 Jun 2026 17:00:15 +0000 https://vulnerability.circl.lu/sighting/113dc411-18e8-4d9a-8fa3-781e226cb740/export {"uuid": "113dc411-18e8-4d9a-8fa3-781e226cb740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/it-administrator.de/post/3mnzavvpcs22o", "content": "Drei Wochen lang war der Exchange Emergency Mitigation Service die einzige Absicherung gegen CVE-2026-42897. Jetzt liefert Microsoft dauerhafte Patches und empfiehlt die Installation so schnell wie m\u00f6glich.\n\nwww.it-administrator.de/microsoft-ex...", "creation_timestamp": "2026-06-11T12:44:18.941482Z"} {"uuid": "113dc411-18e8-4d9a-8fa3-781e226cb740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/it-administrator.de/post/3mnzavvpcs22o", "content": "Drei Wochen lang war der Exchange Emergency Mitigation Service die einzige Absicherung gegen CVE-2026-42897. Jetzt liefert Microsoft dauerhafte Patches und empfiehlt die Installation so schnell wie m\u00f6glich.\n\nwww.it-administrator.de/microsoft-ex...", "creation_timestamp": "2026-06-11T12:44:18.941482Z"} https://vulnerability.circl.lu/sighting/113dc411-18e8-4d9a-8fa3-781e226cb740/export Thu, 11 Jun 2026 12:44:18 +0000 https://vulnerability.circl.lu/sighting/ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741/export {"uuid": "ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mnzzae3ds42q", "content": "Microsoft Exchange Under Fire: Actively Exploited Zero-Day CVE-2026-42897 Exposes Web-Based Email to Silent JavaScript Attacks +\u00a0Video\n\nA Quiet Patch Tuesday That Closed a Loud Security Gap Microsoft has released its latest Patch Tuesday updates addressing a serious and actively exploited\u2026", "creation_timestamp": "2026-06-11T19:59:36.444372Z"} {"uuid": "ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mnzzae3ds42q", "content": "Microsoft Exchange Under Fire: Actively Exploited Zero-Day CVE-2026-42897 Exposes Web-Based Email to Silent JavaScript Attacks +\u00a0Video\n\nA Quiet Patch Tuesday That Closed a Loud Security Gap Microsoft has released its latest Patch Tuesday updates addressing a serious and actively exploited\u2026", "creation_timestamp": "2026-06-11T19:59:36.444372Z"} https://vulnerability.circl.lu/sighting/ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741/export Thu, 11 Jun 2026 19:59:36 +0000 https://vulnerability.circl.lu/sighting/3d4d5913-2b99-49b9-8f24-8567110ca0cd/export {"uuid": "3d4d5913-2b99-49b9-8f24-8567110ca0cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/hissenit.bsky.social/post/3mo3duwog4s2f", "content": "*MS Exchange Server XSS Vulnerability*\n\nThe vulnerability CVE-2026-42897 is a cross-site scripting (XSS) flaw in Exchange Server Outlook Web Access that allows attackers to execute malicious JavaScript.....\n\n => Train your developers and TPMs! - www.hissenit.com/en/academy/s...", "creation_timestamp": "2026-06-12T08:42:48.356168Z"} {"uuid": "3d4d5913-2b99-49b9-8f24-8567110ca0cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/hissenit.bsky.social/post/3mo3duwog4s2f", "content": "*MS Exchange Server XSS Vulnerability*\n\nThe vulnerability CVE-2026-42897 is a cross-site scripting (XSS) flaw in Exchange Server Outlook Web Access that allows attackers to execute malicious JavaScript.....\n\n => Train your developers and TPMs! - www.hissenit.com/en/academy/s...", "creation_timestamp": "2026-06-12T08:42:48.356168Z"} https://vulnerability.circl.lu/sighting/3d4d5913-2b99-49b9-8f24-8567110ca0cd/export Fri, 12 Jun 2026 08:42:48 +0000