https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 27 Jun 2026 00:28:51 +0000 https://vulnerability.circl.lu/sighting/f22e5bac-8559-4981-9d9c-11a47c7b9c5e/export {"uuid": "f22e5bac-8559-4981-9d9c-11a47c7b9c5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "Telegram/AZQnk1q88GRrPNbtJYRdzFvYzsq1JKqTcpasHMe998GraXQ", "content": "", "creation_timestamp": "2026-04-17T09:15:54.000000Z"} {"uuid": "f22e5bac-8559-4981-9d9c-11a47c7b9c5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "Telegram/AZQnk1q88GRrPNbtJYRdzFvYzsq1JKqTcpasHMe998GraXQ", "content": "", "creation_timestamp": "2026-04-17T09:15:54.000000Z"} https://vulnerability.circl.lu/sighting/f22e5bac-8559-4981-9d9c-11a47c7b9c5e/export Fri, 17 Apr 2026 09:15:54 +0000 https://vulnerability.circl.lu/sighting/4c10e2f0-32a7-4cac-90d6-7ef3d665dfca/export {"uuid": "4c10e2f0-32a7-4cac-90d6-7ef3d665dfca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjorhb7jcn26", "content": "", "creation_timestamp": "2026-04-17T11:00:14.381105Z"} {"uuid": "4c10e2f0-32a7-4cac-90d6-7ef3d665dfca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjorhb7jcn26", "content": "", "creation_timestamp": "2026-04-17T11:00:14.381105Z"} https://vulnerability.circl.lu/sighting/4c10e2f0-32a7-4cac-90d6-7ef3d665dfca/export Fri, 17 Apr 2026 11:00:14 +0000 https://vulnerability.circl.lu/sighting/5041250a-f1aa-48d1-98c9-5cc056a1a264/export {"uuid": "5041250a-f1aa-48d1-98c9-5cc056a1a264", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjoxtl33bz26", "content": "", "creation_timestamp": "2026-04-17T12:54:29.907084Z"} {"uuid": "5041250a-f1aa-48d1-98c9-5cc056a1a264", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjoxtl33bz26", "content": "", "creation_timestamp": "2026-04-17T12:54:29.907084Z"} https://vulnerability.circl.lu/sighting/5041250a-f1aa-48d1-98c9-5cc056a1a264/export Fri, 17 Apr 2026 12:54:29 +0000 https://vulnerability.circl.lu/sighting/13d602a6-e396-4611-b4d9-0fb85fa5ce49/export {"uuid": "13d602a6-e396-4611-b4d9-0fb85fa5ce49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mjpo2le3u52h", "content": "", "creation_timestamp": "2026-04-17T19:32:07.258975Z"} {"uuid": "13d602a6-e396-4611-b4d9-0fb85fa5ce49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4659", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mjpo2le3u52h", "content": "", "creation_timestamp": "2026-04-17T19:32:07.258975Z"} https://vulnerability.circl.lu/sighting/13d602a6-e396-4611-b4d9-0fb85fa5ce49/export Fri, 17 Apr 2026 19:32:07 +0000 https://vulnerability.circl.lu/sighting/934c0938-4db2-4087-a0bb-c9b79cf8a535/export {"uuid": "934c0938-4db2-4087-a0bb-c9b79cf8a535", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46598", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgbtjxtaj2k", "content": "CVE-2026-46598 - Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent\nCVE ID : CVE-2026-46598\n \n Published : May 22, 2026, 4:16 a.m. | 1\u00a0hour, 34\u00a0minutes ago\n \n Description : For certain crafted inputs, a 'ed25519.PrivateKey' was created by ca...", "creation_timestamp": "2026-05-22T06:15:06.547470Z"} {"uuid": "934c0938-4db2-4087-a0bb-c9b79cf8a535", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46598", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgbtjxtaj2k", "content": "CVE-2026-46598 - Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent\nCVE ID : CVE-2026-46598\n \n Published : May 22, 2026, 4:16 a.m. | 1\u00a0hour, 34\u00a0minutes ago\n \n Description : For certain crafted inputs, a 'ed25519.PrivateKey' was created by ca...", "creation_timestamp": "2026-05-22T06:15:06.547470Z"} https://vulnerability.circl.lu/sighting/934c0938-4db2-4087-a0bb-c9b79cf8a535/export Fri, 22 May 2026 06:15:06 +0000 https://vulnerability.circl.lu/sighting/3a3671bb-970e-4131-bcb8-7169cd6343f5/export {"uuid": "3a3671bb-970e-4131-bcb8-7169cd6343f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46597", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgbwgulo32c", "content": "CVE-2026-46597 - Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh\nCVE ID : CVE-2026-46597\n \n Published : May 22, 2026, 4:16 a.m. | 1\u00a0hour, 34\u00a0minutes ago\n \n Description : An incorrectly placed cast from bytes to int allowed for server-side panic i...", "creation_timestamp": "2026-05-22T06:16:40.590784Z"} {"uuid": "3a3671bb-970e-4131-bcb8-7169cd6343f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46597", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgbwgulo32c", "content": "CVE-2026-46597 - Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh\nCVE ID : CVE-2026-46597\n \n Published : May 22, 2026, 4:16 a.m. | 1\u00a0hour, 34\u00a0minutes ago\n \n Description : An incorrectly placed cast from bytes to int allowed for server-side panic i...", "creation_timestamp": "2026-05-22T06:16:40.590784Z"} https://vulnerability.circl.lu/sighting/3a3671bb-970e-4131-bcb8-7169cd6343f5/export Fri, 22 May 2026 06:16:40 +0000 https://vulnerability.circl.lu/sighting/44e7fbbf-ac1c-4bf7-913b-65e15393c38e/export {"uuid": "44e7fbbf-ac1c-4bf7-913b-65e15393c38e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46595", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgc4lusjl2k", "content": "CVE-2026-46595 - Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh\nCVE ID : CVE-2026-46595\n \n Published : May 22, 2026, 4:16 a.m. | 1\u00a0hour, 34\u00a0minutes ago\n \n Description : Previously, CVE-2024-45337 fixed an authorization bypass for mis...", "creation_timestamp": "2026-05-22T06:20:07.197203Z"} {"uuid": "44e7fbbf-ac1c-4bf7-913b-65e15393c38e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46595", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgc4lusjl2k", "content": "CVE-2026-46595 - Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh\nCVE ID : CVE-2026-46595\n \n Published : May 22, 2026, 4:16 a.m. | 1\u00a0hour, 34\u00a0minutes ago\n \n Description : Previously, CVE-2024-45337 fixed an authorization bypass for mis...", "creation_timestamp": "2026-05-22T06:20:07.197203Z"} https://vulnerability.circl.lu/sighting/44e7fbbf-ac1c-4bf7-913b-65e15393c38e/export Fri, 22 May 2026 06:20:07 +0000 https://vulnerability.circl.lu/sighting/246b3c59-5b39-4d65-9bac-28ac0c16cc67/export {"uuid": "246b3c59-5b39-4d65-9bac-28ac0c16cc67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46599", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzjr6anon23", "content": "CVE-2026-46599 - Excessive resource consumption in PackBits decompression in golang.org/x/image/tiff\nCVE ID : CVE-2026-46599\n \n Published : May 29, 2026, 8:16 p.m. | 16\u00a0minutes ago\n \n Description : The TIFF decoder does not place a limit on the size of PackBits-compressed data...", "creation_timestamp": "2026-05-29T21:57:28.692785Z"} {"uuid": "246b3c59-5b39-4d65-9bac-28ac0c16cc67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46599", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzjr6anon23", "content": "CVE-2026-46599 - Excessive resource consumption in PackBits decompression in golang.org/x/image/tiff\nCVE ID : CVE-2026-46599\n \n Published : May 29, 2026, 8:16 p.m. | 16\u00a0minutes ago\n \n Description : The TIFF decoder does not place a limit on the size of PackBits-compressed data...", "creation_timestamp": "2026-05-29T21:57:28.692785Z"} https://vulnerability.circl.lu/sighting/246b3c59-5b39-4d65-9bac-28ac0c16cc67/export Fri, 29 May 2026 21:57:28 +0000 https://vulnerability.circl.lu/sighting/a898a33f-3c35-44a8-b0ed-bc2b87983b56/export {"uuid": "a898a33f-3c35-44a8-b0ed-bc2b87983b56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46597", "type": "seen", "source": "https://gist.github.com/alon710/0234a3b8537da177958a0a725a5f30b9", "content": "# CVE-2026-46597: CVE-2026-46597: Remote Denial of Service in golang.org/x/crypto/ssh via AES-GCM Padding Integer Overflow\n\n> **CVSS Score:** 7.5\n> **Published:** 2026-06-25\n> **Full Report:** https://cvereports.com/reports/CVE-2026-46597\n\n## Summary\nA high-severity Denial of Service (DoS) vulnerability (CVE-2026-46597 / GO-2026-5013) exists in the golang.org/x/crypto/ssh module before version v0.52.0. The flaw stems from an incorrect operator order during a type conversion of the GCM packet padding size, allowing a remote, unauthenticated attacker to trigger an out-of-bounds slice runtime panic and crash the Go process.\n\n## TL;DR\nUnauthenticated remote attackers can crash Go-based SSH servers or clients using AES-GCM ciphers by exploiting an integer overflow in padding length checks.\n\n## Technical Details\n\n- **CWE ID**: CWE-191 / CWE-704\n- **Attack Vector**: Network (AV:N)\n- **CVSS v3.1 Score**: 7.5 (High)\n- **EPSS Score**: 0.00359 (27.78% percentile)\n- **Impact**: Complete Denial of Service (A:H)\n- **Exploit Status**: Unproven / No Public PoC\n- **CISA KEV Status**: Not Listed\n\n## Affected Systems\n\n- golang.org/x/crypto/ssh\n- Docker\n- containerd\n- HashiCorp Vault\n- Gitea\n- Prometheus\n- AWS Systems Manager Agent (SSM)\n- cAdvisor\n- Podman\n- Trivy\n- **golang.org/x/crypto**: < v0.52.0 (Fixed in: `v0.52.0`)\n\n## Mitigation\n\n- Upgrade the golang.org/x/crypto module to version v0.52.0 or later and recompile downstream applications.\n- Disable AES-GCM cipher suites (aes128-gcm@openssh.com, aes256-gcm@openssh.com) in the SSH server and client configurations.\n\n**Remediation Steps:**\n1. Update your go.mod file: run 'go get golang.org/x/crypto@v0.52.0'\n2. Run 'go mod tidy' to update dependency trees.\n3. Rebuild and redeploy all affected services and container images.\n4. Verify dependencies across downstream microservices using SCA tools.\n\n## References\n\n- [Go Issue Tracker Tracker: Issue 79561](https://go.dev/issue/79561)\n- [Go Gerrit Change List CL 781620](https://go.dev/cl/781620)\n- [Go Gitiles Code Patch Commit abbc44d](https://go.googlesource.com/crypto/+/abbc44d451a6f9236a2bbd26cbcd4d0fec473da3^!)\n- [Go Vulnerability Database Entry GO-2026-5013](https://pkg.go.dev/vuln/GO-2026-5013)\n- [Go Announcements Mailing List](https://groups.google.com/g/golang-announce/c/a082jnz-LvI)\n- [CVE Registry Entry CVE-2026-46597](https://www.cve.org/CVERecord?id=CVE-2026-46597)\n- [Wiz Vulnerability Advisory](https://www.wiz.io/vulnerability-database/cve/cve-2026-46597)\n- [Shodan Search Queries](https://www.shodan.io/search?query=CVE-2026-46597)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-46597) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-26T13:42:31.989216Z"} {"uuid": "a898a33f-3c35-44a8-b0ed-bc2b87983b56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46597", "type": "seen", "source": "https://gist.github.com/alon710/0234a3b8537da177958a0a725a5f30b9", "content": "# CVE-2026-46597: CVE-2026-46597: Remote Denial of Service in golang.org/x/crypto/ssh via AES-GCM Padding Integer Overflow\n\n> **CVSS Score:** 7.5\n> **Published:** 2026-06-25\n> **Full Report:** https://cvereports.com/reports/CVE-2026-46597\n\n## Summary\nA high-severity Denial of Service (DoS) vulnerability (CVE-2026-46597 / GO-2026-5013) exists in the golang.org/x/crypto/ssh module before version v0.52.0. The flaw stems from an incorrect operator order during a type conversion of the GCM packet padding size, allowing a remote, unauthenticated attacker to trigger an out-of-bounds slice runtime panic and crash the Go process.\n\n## TL;DR\nUnauthenticated remote attackers can crash Go-based SSH servers or clients using AES-GCM ciphers by exploiting an integer overflow in padding length checks.\n\n## Technical Details\n\n- **CWE ID**: CWE-191 / CWE-704\n- **Attack Vector**: Network (AV:N)\n- **CVSS v3.1 Score**: 7.5 (High)\n- **EPSS Score**: 0.00359 (27.78% percentile)\n- **Impact**: Complete Denial of Service (A:H)\n- **Exploit Status**: Unproven / No Public PoC\n- **CISA KEV Status**: Not Listed\n\n## Affected Systems\n\n- golang.org/x/crypto/ssh\n- Docker\n- containerd\n- HashiCorp Vault\n- Gitea\n- Prometheus\n- AWS Systems Manager Agent (SSM)\n- cAdvisor\n- Podman\n- Trivy\n- **golang.org/x/crypto**: < v0.52.0 (Fixed in: `v0.52.0`)\n\n## Mitigation\n\n- Upgrade the golang.org/x/crypto module to version v0.52.0 or later and recompile downstream applications.\n- Disable AES-GCM cipher suites (aes128-gcm@openssh.com, aes256-gcm@openssh.com) in the SSH server and client configurations.\n\n**Remediation Steps:**\n1. Update your go.mod file: run 'go get golang.org/x/crypto@v0.52.0'\n2. Run 'go mod tidy' to update dependency trees.\n3. Rebuild and redeploy all affected services and container images.\n4. Verify dependencies across downstream microservices using SCA tools.\n\n## References\n\n- [Go Issue Tracker Tracker: Issue 79561](https://go.dev/issue/79561)\n- [Go Gerrit Change List CL 781620](https://go.dev/cl/781620)\n- [Go Gitiles Code Patch Commit abbc44d](https://go.googlesource.com/crypto/+/abbc44d451a6f9236a2bbd26cbcd4d0fec473da3^!)\n- [Go Vulnerability Database Entry GO-2026-5013](https://pkg.go.dev/vuln/GO-2026-5013)\n- [Go Announcements Mailing List](https://groups.google.com/g/golang-announce/c/a082jnz-LvI)\n- [CVE Registry Entry CVE-2026-46597](https://www.cve.org/CVERecord?id=CVE-2026-46597)\n- [Wiz Vulnerability Advisory](https://www.wiz.io/vulnerability-database/cve/cve-2026-46597)\n- [Shodan Search Queries](https://www.shodan.io/search?query=CVE-2026-46597)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-46597) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-26T13:42:31.989216Z"} https://vulnerability.circl.lu/sighting/a898a33f-3c35-44a8-b0ed-bc2b87983b56/export Fri, 26 Jun 2026 13:42:31 +0000