https://db.gcve.eu/sightings/feed 2026-05-15T21:12:35.967923+00:00 Vulnerability-Lookup info@gcve.eu python-feedgen Contains only the most 10 recent sightings. https://db.gcve.eu/sighting/4a082104-7c6c-4a46-aa7d-c6ad3b5137a4/export 2026-05-15T21:12:36.098487+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "4a082104-7c6c-4a46-aa7d-c6ad3b5137a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47290", "type": "seen", "source": "https://bsky.app/profile/bentheelder.bsky.social/post/3lpniot27bs2r", "content": "", "creation_timestamp": "2025-05-21T01:55:42.735644Z"} 2025-05-21T01:55:42.735644+00:00 https://db.gcve.eu/sighting/61e87883-eee2-487e-9eda-29d4c2a07836/export 2026-05-15T21:12:36.098418+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "61e87883-eee2-487e-9eda-29d4c2a07836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47291", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17158", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-47291\n\ud83d\udd25 CVSS Score: 4.6 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: containerd is an open-source container runtime. A bug was found in the containerd's CRI implementation where containerd, starting in version 2.0.1 and prior to version 2.0.5, doesn't put usernamespaced containers under the Kubernetes' cgroup hierarchy, therefore some Kubernetes limits are not honored. This may cause a denial of service of the Kubernetes node. This bug has been fixed in containerd 2.0.5+ and 2.1.0+. Users should update to these versions to resolve the issue. As a workaround, disable usernamespaced pods in Kubernetes temporarily.\n\ud83d\udccf Published: 2025-05-21T17:26:31.141Z\n\ud83d\udccf Modified: 2025-05-21T17:26:31.141Z\n\ud83d\udd17 References:\n1. https://github.com/containerd/containerd/security/advisories/GHSA-cxfp-7pvr-95ff", "creation_timestamp": "2025-05-21T17:43:13.000000Z"} 2025-05-21T17:43:13+00:00 https://db.gcve.eu/sighting/8e183ee8-593a-4a40-a295-459cf65da956/export 2026-05-15T21:12:36.098357+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "8e183ee8-593a-4a40-a295-459cf65da956", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47291", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lppk5ldyeq2p", "content": "", "creation_timestamp": "2025-05-21T21:27:10.699648Z"} 2025-05-21T21:27:10.699648+00:00 https://db.gcve.eu/sighting/25847eee-ebf4-473e-96ee-17e7580e63e0/export 2026-05-15T21:12:36.098298+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "25847eee-ebf4-473e-96ee-17e7580e63e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47290", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lpq2g3g3uw2u", "content": "", "creation_timestamp": "2025-05-22T02:18:16.122328Z"} 2025-05-22T02:18:16.122328+00:00 https://db.gcve.eu/sighting/4d8af45b-9dd2-420a-9f48-82d2b994ca84/export 2026-05-15T21:12:36.098237+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "4d8af45b-9dd2-420a-9f48-82d2b994ca84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47294", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq7rdf5gfvc2", "content": "", "creation_timestamp": "2025-05-28T08:19:11.036829Z"} 2025-05-28T08:19:11.036829+00:00 https://db.gcve.eu/sighting/4f98f7b4-05eb-410e-8267-6745a91253fc/export 2026-05-15T21:12:36.098174+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "4f98f7b4-05eb-410e-8267-6745a91253fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47295", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq7rdimvs2c2", "content": "", "creation_timestamp": "2025-05-28T08:19:12.131332Z"} 2025-05-28T08:19:12.131332+00:00 https://db.gcve.eu/sighting/bd2964e6-baa6-42da-ab48-7265f30dae01/export 2026-05-15T21:12:36.098108+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "bd2964e6-baa6-42da-ab48-7265f30dae01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47295", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lq7x74szie2m", "content": "", "creation_timestamp": "2025-05-28T10:03:16.753518Z"} 2025-05-28T10:03:16.753518+00:00 https://db.gcve.eu/sighting/fd6f43bc-c371-4e76-9685-8c23dd1685a3/export 2026-05-15T21:12:36.098046+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "fd6f43bc-c371-4e76-9685-8c23dd1685a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47294", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lq7xi3f7cw2q", "content": "", "creation_timestamp": "2025-05-28T10:08:17.343749Z"} 2025-05-28T10:08:17.343749+00:00 https://db.gcve.eu/sighting/4baacfaa-df45-48ef-a44c-f000a2d9589c/export 2026-05-15T21:12:36.097949+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "4baacfaa-df45-48ef-a44c-f000a2d9589c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47293", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18881", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-47293\n\ud83d\udd25 CVSS Score: 2.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: PowSyBl (Power System Blocks) is a framework to build power system oriented software. Prior to version 6.7.2, in certain places, powsybl-core XML parsing is vulnerable to an XML external entity (XXE) attack and to a server-side request forgery (SSRF) attack. This allows an attacker to elevate their privileges to read files that they do not have permissions to, including sensitive files on the system. The vulnerable class is com.powsybl.commons.xml.XmlReader which is considered to be untrusted in use cases where untrusted users can submit their XML to the vulnerable methods. This can be a multi-tenant application that hosts many different users perhaps with different privilege levels. This issue has been patched in com.powsybl:powsybl-commons: 6.7.2.\n\ud83d\udccf Published: 2025-06-19T21:35:40.992Z\n\ud83d\udccf Modified: 2025-06-19T21:35:40.992Z\n\ud83d\udd17 References:\n1. https://github.com/powsybl/powsybl-core/security/advisories/GHSA-qpj9-qcwx-8jv2\n2. https://github.com/powsybl/powsybl-core/commit/e6c7c4997ae8758b54a2f23ce1a499e25113acdc\n3. https://github.com/powsybl/powsybl-core/releases/tag/v6.7.2", "creation_timestamp": "2025-06-19T21:44:47.000000Z"} 2025-06-19T21:44:47+00:00 https://db.gcve.eu/sighting/a7a6afe1-6da7-44ad-97d2-3721faeb0b69/export 2026-05-15T21:12:36.096296+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "a7a6afe1-6da7-44ad-97d2-3721faeb0b69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-47293", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrypwr7obe2o", "content": "", "creation_timestamp": "2025-06-19T23:55:07.689740Z"} 2025-06-19T23:55:07.689740+00:00