News
LLMs + Vulnerability-Lookup: What We're Testing and Where We're Headed
Everyone’s talking about AI, NLP and LLMs these days, and, to be honest, so are we! Recently, we’ve been exploring how LLMs can help us make sense of the massive amount of vulnerability data we collect and improve vulnerability management—while always remembering that AI is just a tool, not a solution on its own! The picture below gives a glimpse of what we’ve tested so far.
February 26, 2025
Vulnerability-Lookup 2.6.0 released
Vulnerability-Lookup 2.6.0 Released — Advanced monitoring tools for administrators of Vulnerability-Lookup instances. This release includes new features, better monitoring, improvements and fixes. What’s New Centralized monitoring service This feature adds log and process heartbeat reporting to a Valkey datastore, enabling centralized monitoring of Vulnerability-Lookup’s system health and its various components. (#106) This new feature is essential for monitoring our expanding suite of tools used to collect vulnerability-related information.
February 14, 2025
Vulnerability-Lookup 2.5.0 released
Vulnerability-Lookup 2.5.0 Released — Track vulnerabilities effortlessly with product watch lists & email notifications! We’re excited to share the latest features designed to make vulnerability tracking even more efficient. 🚀 What’s New 🆕 Email Notifications (Product Watch List) Stay ahead with hourly, daily, or weekly alerts for new or updated vulnerabilities affecting the vendors and products you care about. Notifications come in both HTML and plain text, with CSV attachments detailing vulnerabilities, sightings, and comments. (#101)
February 7, 2025
Vulnerability Report – January 2025
All vulnerability reports Introduction This vulnerability report has been generated using data aggregated on Vulnerability-Lookup, with contributions from the platform’s community.
February 1, 2025
The Shadowserver Foundation Honeypot Feed is now integrated as a source of sightings in Vulnerability-Lookup
We are glad to announce the immediate availability of vulnerability-related observations from The Shadowserver Foundation within Vulnerability-Lookup. This milestone wouldn’t have been possible without Piotr Kijewski. We developed a new sighting client, ShadowSight. This new client gathers vulnerability-related data directly from The Shadowserver Foundation, then reports the collected data to the Vulnerability-Lookup API as sightings. ShadowSight leverages insights on common vulnerabilities and exploited vulnerabilities from Shadowserver’s honeypot source. The source code of ShadowSight is available:
January 22, 2025
Expanding Sources of Security Advisories and Sightings in Vulnerability-Lookup
Security Advisories We’ve recently added new correlating sources for Security Advisories: Microsoft CSAF Security Advisories: https://vulnerability.circl.lu/recent#csaf_microsoft We’ve also added a new source from Fraunhofer FKIE, which provides a community reconstruction of the legacy JSON NVD Data Feeds (at the end it’s more information). This is accessible at: https://vulnerability.circl.lu/recent#fkie_nvd One of the core strengths of Vulnerability-Lookup is its ability to correlate these new sources with existing ones. For example, you can view how vulnerabilities like CVE-2025-21385 appear across multiple sources:
January 16, 2025
Vulnerability-Lookup 2.4.0 released
We’re really thrilled to unveil Vulnerability-Lookup 2.4.0! 🚀 There should have been a video here but your browser does not seem to support it. This version includes new features, new importers, improvements and fixes. The key updates are highlighted below. 🔍 New Dashboard: Quickly access the top sighted vulnerabilities from the past month with a real-time, filterable interface. 📊 New Correlations Graph: Visualize relationships between sightings for deeper insights.
January 10, 2025
Monitoring Gists
We’re expanding our coverage to include GitHub Gists as a valuable source of vulnerability sightings! Why Gists? Gists frequently contain sensitive leaked information, such as email address lists, passwords, API keys, SSH private keys, logs, zero-day exploits, or proof-of-concept (PoC) scripts for vulnerabilities. As part of the Vulnerability-Lookup project, we are now actively monitoring their creation in order to generate sightings related to vulnerabilities in our database.
January 7, 2025
Vulnerability report for the year 2024
All vulnerability reports This report is based on only three months of data, with appropriate coverage of sightings (October to December). Most sighted vulnerabilities Vulnerability Count Severity Vendor / Product CVE-2024-3393 40 8.7 (High) Palo Alto Networks / Cloud NGFW CVE-2024-9474 37 6.9 (Medium) Palo Alto Networks / Cloud NGFW CVE-2024-0012 36 9.3 (Critical) Palo Alto Networks / Cloud NGFW CVE-2024-52046 28 10.0 (Critical) Apache Software Foundation / Apache MINA CVE-2024-50623 27 9.8 (Critical) Cleo Harmony CVE-2023-34990 25 9.8 (Critical) Fortinet / FortiWLM CVE-2024-12727 19 9.8 (Critical) Sophos / Sophos Firewall CVE-2024-47575 16 9.8 (Critical) Fortinet / FortiManager CVE-2024-43451 15 6.5 (Medium) Microsoft / Windows Server 2025 CVE-2024-49039 15 8.8 (High) Microsoft / Windows Server 2025 CVE-2024-11053 15 3.4 (Low) curl / curl CVE-2024-5910 14 9.3 (Critical) Palo Alto Networks / Expedition CVE-2024-47962 13 8.4 (High) Delta Electronics / CNCSoft-G2 See our sources of sightings.
December 31, 2024
Subscribe to recent sightings via RSS for any CPE
Are you looking for an efficient way to stay on top of security-related updates for the products your organization uses? With Vulnerability-Lookup, you can easily track discussions and reports across the web about security issues for any product using a simple CPE identifier. Receive real-time information directly in your news reader from various trusted sources, security websites, Exploit-DB, GitHub repositories, security blogs, social networks, and MISP, all tailored to your products.
December 20, 2024