Anonymous Researcher Publishes Zero-Day Exploits for Major Software Projects

Anonymous Researcher Publishes Zero-Day Exploits for Major Software Projects

First seen 1 Jul 2026, 12:58 UTC ScworldNews.Risky.Biz 78% similarity 74.0
Share:

Article Content

Browse articles
ThreatCluster

An anonymous researcher known as Bikini has released exploit code for over a dozen zero-day vulnerabilities affecting 15 popular open-source projects, including the Linux kernel and Libssh2. The exploits were disclosed without prior notification to the vendors, raising concerns about potential widespread attacks. Notably, two vulnerabilities, CVE-2026-55200 in Libssh2 and CVE-2026-20896 in Gitea, are already being actively exploited. The researcher claims to have utilized OpenAI's GPT-5.5 Codex AI model for vulnerability discovery. As of now, several projects have begun patching the vulnerabilities, with nine confirmed and assigned CVE identifiers. The release of these exploits marks a growing trend in the infosec community, where researchers are increasingly opting to publish findings without vendor notification. The situation remains fluid as more vulnerabilities may be disclosed in the coming days.

Key Points: • Anonymous researcher Bikini released zero-day exploits for 15 software projects. • Two critical vulnerabilities are actively exploited, including CVE-2026-55200 in Libssh2. • The trend of publishing zero-day exploits without vendor notification is increasing.

ThreatCluster AI

Timeline

2026-06-04
CVE-2026-8037 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-17
CVE-2026-55200 published
A critical pre-authentication remote code execution vulnerability in Libssh2 was disclosed.
Scworld
2026-06-24
First public PoC for CVE-2026-55200
Public proof-of-concept for the Libssh2 vulnerability was released, increasing risk of exploitation.
Scworld
2026-06-29
CVE-2026-48558 added to CISA KEV
This vulnerability was confirmed to be actively exploited and added to the CISA Known Exploited Vulnerabilities list.
News.Risky.Biz
2026-06-30
Bikini publishes zero-day exploits
The researcher released a cache of zero-day exploits for multiple software products, impacting 15 projects.
Scworld
2026-07-01
Ongoing patching efforts by affected projects
Several software projects have started working on patches for the disclosed vulnerabilities.
News.Risky.Biz

Community

Browse all →