https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 05 Jun 2026 11:11:42 +0000 https://vulnerability.circl.lu/sighting/cfb57925-d33b-4e7e-aea7-17ccf5181215/export {"uuid": "cfb57925-d33b-4e7e-aea7-17ccf5181215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40056", "type": "seen", "source": "https://t.me/ctinow/156790", "content": "https://ift.tt/Yoqle4d\nCVE-2023-40056 | SolarWinds Platform up to 2023.4.1 sql injection", "creation_timestamp": "2023-12-20T08:01:57.000000Z"} {"uuid": "cfb57925-d33b-4e7e-aea7-17ccf5181215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40056", "type": "seen", "source": "https://t.me/ctinow/156790", "content": "https://ift.tt/Yoqle4d\nCVE-2023-40056 | SolarWinds Platform up to 2023.4.1 sql injection", "creation_timestamp": "2023-12-20T08:01:57.000000Z"} https://vulnerability.circl.lu/sighting/cfb57925-d33b-4e7e-aea7-17ccf5181215/export Wed, 20 Dec 2023 08:01:57 +0000 https://vulnerability.circl.lu/sighting/ed7bfa84-07b3-4837-801f-9fb3585f8e7d/export {"uuid": "ed7bfa84-07b3-4837-801f-9fb3585f8e7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40058", "type": "seen", "source": "https://t.me/ctinow/157869", "content": "https://ift.tt/bIqjpsY\nCVE-2023-40058", "creation_timestamp": "2023-12-21T18:31:57.000000Z"} {"uuid": "ed7bfa84-07b3-4837-801f-9fb3585f8e7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40058", "type": "seen", "source": "https://t.me/ctinow/157869", "content": "https://ift.tt/bIqjpsY\nCVE-2023-40058", "creation_timestamp": "2023-12-21T18:31:57.000000Z"} https://vulnerability.circl.lu/sighting/ed7bfa84-07b3-4837-801f-9fb3585f8e7d/export Thu, 21 Dec 2023 18:31:57 +0000 https://vulnerability.circl.lu/sighting/cb40f583-002d-4982-9e84-931cbdac1bd6/export {"uuid": "cb40f583-002d-4982-9e84-931cbdac1bd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40053", "type": "seen", "source": "https://t.me/ctinow/159061", "content": "https://ift.tt/ZDUqtFQ\nCVE-2023-40053 | SolarWinds Serv-U up to 15.4 File Share input validation", "creation_timestamp": "2023-12-24T17:21:13.000000Z"} {"uuid": "cb40f583-002d-4982-9e84-931cbdac1bd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40053", "type": "seen", "source": "https://t.me/ctinow/159061", "content": "https://ift.tt/ZDUqtFQ\nCVE-2023-40053 | SolarWinds Serv-U up to 15.4 File Share input validation", "creation_timestamp": "2023-12-24T17:21:13.000000Z"} https://vulnerability.circl.lu/sighting/cb40f583-002d-4982-9e84-931cbdac1bd6/export Sun, 24 Dec 2023 17:21:13 +0000 https://vulnerability.circl.lu/sighting/89519fc2-0cf3-42d3-8b28-67597e28ee4b/export {"uuid": "89519fc2-0cf3-42d3-8b28-67597e28ee4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40051", "type": "seen", "source": "https://t.me/ctinow/169801", "content": "https://ift.tt/XIbh76y\nCVE-2023-40051", "creation_timestamp": "2024-01-18T16:21:41.000000Z"} {"uuid": "89519fc2-0cf3-42d3-8b28-67597e28ee4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40051", "type": "seen", "source": "https://t.me/ctinow/169801", "content": "https://ift.tt/XIbh76y\nCVE-2023-40051", "creation_timestamp": "2024-01-18T16:21:41.000000Z"} https://vulnerability.circl.lu/sighting/89519fc2-0cf3-42d3-8b28-67597e28ee4b/export Thu, 18 Jan 2024 16:21:41 +0000 https://vulnerability.circl.lu/sighting/b58cc8d2-93ab-4277-9a6e-05fd9ee95a32/export {"uuid": "b58cc8d2-93ab-4277-9a6e-05fd9ee95a32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40052", "type": "seen", "source": "https://t.me/ctinow/169802", "content": "https://ift.tt/hvCnW7R\nCVE-2023-40052", "creation_timestamp": "2024-01-18T16:21:44.000000Z"} {"uuid": "b58cc8d2-93ab-4277-9a6e-05fd9ee95a32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40052", "type": "seen", "source": "https://t.me/ctinow/169802", "content": "https://ift.tt/hvCnW7R\nCVE-2023-40052", "creation_timestamp": "2024-01-18T16:21:44.000000Z"} https://vulnerability.circl.lu/sighting/b58cc8d2-93ab-4277-9a6e-05fd9ee95a32/export Thu, 18 Jan 2024 16:21:44 +0000 https://vulnerability.circl.lu/sighting/c7a02784-ca9a-4b53-be14-3b7c12bfb8ce/export {"uuid": "c7a02784-ca9a-4b53-be14-3b7c12bfb8ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40051", "type": "seen", "source": "https://t.me/ctinow/183043", "content": "https://ift.tt/AUev63Y\nCVE-2023-40051 | Progress OpenEdge up to 11.7.17/12.2.12/12.7.x Web Transport Request unrestricted upload", "creation_timestamp": "2024-02-12T11:36:52.000000Z"} {"uuid": "c7a02784-ca9a-4b53-be14-3b7c12bfb8ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40051", "type": "seen", "source": "https://t.me/ctinow/183043", "content": "https://ift.tt/AUev63Y\nCVE-2023-40051 | Progress OpenEdge up to 11.7.17/12.2.12/12.7.x Web Transport Request unrestricted upload", "creation_timestamp": "2024-02-12T11:36:52.000000Z"} https://vulnerability.circl.lu/sighting/c7a02784-ca9a-4b53-be14-3b7c12bfb8ce/export Mon, 12 Feb 2024 11:36:52 +0000 https://vulnerability.circl.lu/sighting/4d5fd655-89df-4c2d-bc36-979d6750019a/export {"uuid": "4d5fd655-89df-4c2d-bc36-979d6750019a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/ctinow/185919", "content": "https://ift.tt/CBcEHFe\nCVE-2023-40057", "creation_timestamp": "2024-02-15T22:31:30.000000Z"} {"uuid": "4d5fd655-89df-4c2d-bc36-979d6750019a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/ctinow/185919", "content": "https://ift.tt/CBcEHFe\nCVE-2023-40057", "creation_timestamp": "2024-02-15T22:31:30.000000Z"} https://vulnerability.circl.lu/sighting/4d5fd655-89df-4c2d-bc36-979d6750019a/export Thu, 15 Feb 2024 22:31:30 +0000 https://vulnerability.circl.lu/sighting/86ef26de-3acd-4cc0-bf24-f84fc2859c28/export {"uuid": "86ef26de-3acd-4cc0-bf24-f84fc2859c28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/true_secator/5427", "content": "SolarWinds \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u043f\u044f\u0442\u044c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 RCE-\u043e\u0448\u0438\u0431\u043e\u043a \u0432 \u0440\u0435\u0448\u0435\u043d\u0438\u0438 \u043f\u043e \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044e \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0432 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0439 \u0418\u0422-\u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435 Access Rights Manager (ARM), \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0438 \u0442\u0435, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0431\u0435\u0437 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438.\n\nCVE-2024-23476 \u0438 CVE-2024-23479 \u0441\u0432\u044f\u0437\u0430\u043d\u044b \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438\u00a0\u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0443\u0442\u0435\u0439, \u0430 \u0442\u0440\u0435\u0442\u044c\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u043c\u0430\u044f \u043a\u0430\u043a CVE-2023-40057, -\u00a0\u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0435\u0439 \u043d\u0435\u043d\u0430\u0434\u0435\u0436\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0432\u0441\u0435 \u0442\u0440\u0438, \u0447\u0442\u043e\u0431\u044b \u0434\u043e\u0431\u0438\u0442\u044c\u0441\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u0432 \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445.\n\n\u0414\u0432\u0435 \u0434\u0440\u0443\u0433\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 (CVE-2024-23477 \u0438 CVE-2024-23478) \u0442\u0430\u043a\u0436\u0435 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 RCE \u0438 \u0438\u043c\u0435\u044e\u0442 \u0440\u0435\u0439\u0442\u0438\u043d\u0433 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438.\n\n\u0412\u0441\u0435 \u043f\u044f\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0433\u0440\u0443\u043f\u043f\u043e\u0439 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 Zero Day Initiative (ZDI) Trend Micro \u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b SolarWinds \u0432 Access Rights Manager 2023.2.3.\n\n\u041f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u043d\u0435 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0435\u0439 \u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u044d\u0442\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u041d\u043e, \u043a\u0430\u043a \u043f\u043e\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u043f\u0440\u0430\u043a\u0442\u0438\u043a\u0430 \u0438 \u043f\u0440\u043e\u0448\u043b\u044b\u0439 \u043e\u043f\u044b\u0442 SolarWinds \u0432 \u0434\u0435\u043b\u0435 \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0435\u0435 \u0437\u0430\u044f\u0432\u043b\u0435\u043d\u0438\u044f, \u043c\u044f\u0433\u043a\u043e \u0441\u043a\u0430\u0437\u0430\u0442\u044c, \u043c\u043e\u0433\u0443\u0442 \u043d\u0435 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u043e\u0432\u0430\u0442\u044c \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438.\n\n\u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2024-02-19T11:22:18.000000Z"} {"uuid": "86ef26de-3acd-4cc0-bf24-f84fc2859c28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/true_secator/5427", "content": "SolarWinds \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u043f\u044f\u0442\u044c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 RCE-\u043e\u0448\u0438\u0431\u043e\u043a \u0432 \u0440\u0435\u0448\u0435\u043d\u0438\u0438 \u043f\u043e \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044e \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0432 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0439 \u0418\u0422-\u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435 Access Rights Manager (ARM), \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0438 \u0442\u0435, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0431\u0435\u0437 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438.\n\nCVE-2024-23476 \u0438 CVE-2024-23479 \u0441\u0432\u044f\u0437\u0430\u043d\u044b \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438\u00a0\u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0443\u0442\u0435\u0439, \u0430 \u0442\u0440\u0435\u0442\u044c\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u043c\u0430\u044f \u043a\u0430\u043a CVE-2023-40057, -\u00a0\u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0435\u0439 \u043d\u0435\u043d\u0430\u0434\u0435\u0436\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0432\u0441\u0435 \u0442\u0440\u0438, \u0447\u0442\u043e\u0431\u044b \u0434\u043e\u0431\u0438\u0442\u044c\u0441\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u0432 \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445.\n\n\u0414\u0432\u0435 \u0434\u0440\u0443\u0433\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 (CVE-2024-23477 \u0438 CVE-2024-23478) \u0442\u0430\u043a\u0436\u0435 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 RCE \u0438 \u0438\u043c\u0435\u044e\u0442 \u0440\u0435\u0439\u0442\u0438\u043d\u0433 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438.\n\n\u0412\u0441\u0435 \u043f\u044f\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0433\u0440\u0443\u043f\u043f\u043e\u0439 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 Zero Day Initiative (ZDI) Trend Micro \u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b SolarWinds \u0432 Access Rights Manager 2023.2.3.\n\n\u041f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u043d\u0435 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0435\u0439 \u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u044d\u0442\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u041d\u043e, \u043a\u0430\u043a \u043f\u043e\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u043f\u0440\u0430\u043a\u0442\u0438\u043a\u0430 \u0438 \u043f\u0440\u043e\u0448\u043b\u044b\u0439 \u043e\u043f\u044b\u0442 SolarWinds \u0432 \u0434\u0435\u043b\u0435 \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0435\u0435 \u0437\u0430\u044f\u0432\u043b\u0435\u043d\u0438\u044f, \u043c\u044f\u0433\u043a\u043e \u0441\u043a\u0430\u0437\u0430\u0442\u044c, \u043c\u043e\u0433\u0443\u0442 \u043d\u0435 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u043e\u0432\u0430\u0442\u044c \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438.\n\n\u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2024-02-19T11:22:18.000000Z"} https://vulnerability.circl.lu/sighting/86ef26de-3acd-4cc0-bf24-f84fc2859c28/export Mon, 19 Feb 2024 11:22:18 +0000 https://vulnerability.circl.lu/sighting/d8900ebc-f135-4654-8b70-ff45d456bb09/export {"uuid": "d8900ebc-f135-4654-8b70-ff45d456bb09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/ctinow/203136", "content": "https://ift.tt/7Ryigt0\nCVE-2023-40057 | SolarWinds Access Rights Manager up to 2023.2.2 Service deserialization", "creation_timestamp": "2024-03-08T08:26:40.000000Z"} {"uuid": "d8900ebc-f135-4654-8b70-ff45d456bb09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/ctinow/203136", "content": "https://ift.tt/7Ryigt0\nCVE-2023-40057 | SolarWinds Access Rights Manager up to 2023.2.2 Service deserialization", "creation_timestamp": "2024-03-08T08:26:40.000000Z"} https://vulnerability.circl.lu/sighting/d8900ebc-f135-4654-8b70-ff45d456bb09/export Fri, 08 Mar 2024 08:26:40 +0000 https://vulnerability.circl.lu/sighting/1e4aa3a8-2ec4-4c80-be1c-97c3fa6ea954/export {"uuid": "1e4aa3a8-2ec4-4c80-be1c-97c3fa6ea954", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/MrVGunz/1211", "content": "\ud83d\udccd \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc \u062f\u0631 SolarWinds Arms\n\n\u062f\u0631 \u062a\u0627\u0631\u06cc\u062e \u06f1\u06f9 \u0641\u0648\u0631\u06cc\u0647 \u06f2\u06f0\u06f2\u06f4\u060c Eskil S\u00f8rensen \u06af\u0632\u0627\u0631\u0634 \u062f\u0627\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0634\u0631\u06a9\u062a SolarWinds \u067e\u0646\u062c \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0628\u0631\u0627\u06cc \u0645\u062d\u0635\u0648\u0644 Access Rights Manager (ARM) \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0633\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc \u0634\u0627\u0645\u0644 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE)\u060c \u0639\u0628\u0648\u0631 \u0645\u0633\u06cc\u0631 (Path Traversal) \u0648 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0631\u0627 \u067e\u0648\u0634\u0634 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f.\n\n\u0634\u0646\u0627\u0633\u0647\u200c\u0647\u0627\u06cc CVE-2024-23476 \u0648 CVE-2024-23479 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062e\u0627\u0631\u062c \u0627\u0632 \u0641\u0636\u0627\u06cc \u062a\u0639\u0631\u06cc\u0641 \u0634\u062f\u0647 \u0631\u0627 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f. CVE-2023-40057 \u0646\u06cc\u0632 \u0627\u0632 \u0646\u0648\u0639 \u0633\u0631\u06cc\u0627\u0644\u200c\u0633\u0627\u0632\u06cc \u062f\u0627\u062f\u0647\u200c\u0647\u0627\u06cc \u063a\u06cc\u0631\u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f \u0627\u0633\u062a.\n\n\u062f\u0648 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0627 \u0634\u0646\u0627\u0633\u0647\u200c\u0647\u0627\u06cc CVE-2024-23477 \u0648 CVE-2024-23478 \u0646\u06cc\u0632 \u0628\u0631\u0627\u06cc \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f\u0647\u0627\u06cc \u0645\u062e\u0631\u0628 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u0646\u062f. \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0634\u0627\u0645\u0644 ARM 2023.2.2 \u0648 \u067e\u0627\u06cc\u06cc\u0646\u200c\u062a\u0631 \u0647\u0633\u062a\u0646\u062f. DKCERT \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f \u06a9\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0637\u0628\u0642 \u0631\u0627\u0647\u0646\u0645\u0627\u06cc\u06cc\u200c\u0647\u0627\u06cc SolarWinds \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u06cc\u062f.\n\n\n\ud83d\udd17 \u062c\u0647\u062a \u0645\u0637\u0627\u0644\u0639\u0647 \u0627\u062f\u0627\u0645\u0647 \u0645\u0642\u0627\u0644\u0647 \u0628\u0647 \u0627\u06cc\u0646 \u0633\u0627\u06cc\u062a \u0645\u0631\u0627\u062c\u0639\u0647 \u06a9\u0646\u06cc\u062f:\n\n\n\ud83d\udd3a https://www.cert.dk/da/news/2024-02-19/Kritiske-saarbarheder-i-SolarWinds-Arms\n\n\ud83d\udccd Critical Vulnerabilities in SolarWinds Arms\n\nOn February 19, 2024, Eskil S\u00f8rensen reported that SolarWinds released five updates for the Access Rights Manager (ARM) product to address three critical vulnerabilities, including Remote Code Execution (RCE), Path Traversal, and Input Validation.\n\nCVE-2024-23476 and CVE-2024-23479 allow access to information outside the defined space. CVE-2023-40057 involves the serialization of untrusted data.\n\nTwo other vulnerabilities, CVE-2024-23477 and CVE-2024-23478, are also used to execute malicious code. Affected versions include ARM 2023.2.2 and earlier. DKCERT recommends updating your products according to SolarWinds' guidelines.\n\n\ud83d\udd17 For further reading, please visit: \n\n\ud83d\udd3a https://www.cert.dk/da/news/2024-02-19/Kritiske-saarbarheder-i-SolarWinds-Arms", "creation_timestamp": "2024-07-22T12:54:50.000000Z"} {"uuid": "1e4aa3a8-2ec4-4c80-be1c-97c3fa6ea954", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40057", "type": "seen", "source": "https://t.me/MrVGunz/1211", "content": "\ud83d\udccd \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc \u062f\u0631 SolarWinds Arms\n\n\u062f\u0631 \u062a\u0627\u0631\u06cc\u062e \u06f1\u06f9 \u0641\u0648\u0631\u06cc\u0647 \u06f2\u06f0\u06f2\u06f4\u060c Eskil S\u00f8rensen \u06af\u0632\u0627\u0631\u0634 \u062f\u0627\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0634\u0631\u06a9\u062a SolarWinds \u067e\u0646\u062c \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0628\u0631\u0627\u06cc \u0645\u062d\u0635\u0648\u0644 Access Rights Manager (ARM) \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0633\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc \u0634\u0627\u0645\u0644 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE)\u060c \u0639\u0628\u0648\u0631 \u0645\u0633\u06cc\u0631 (Path Traversal) \u0648 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0631\u0627 \u067e\u0648\u0634\u0634 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f.\n\n\u0634\u0646\u0627\u0633\u0647\u200c\u0647\u0627\u06cc CVE-2024-23476 \u0648 CVE-2024-23479 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062e\u0627\u0631\u062c \u0627\u0632 \u0641\u0636\u0627\u06cc \u062a\u0639\u0631\u06cc\u0641 \u0634\u062f\u0647 \u0631\u0627 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f. CVE-2023-40057 \u0646\u06cc\u0632 \u0627\u0632 \u0646\u0648\u0639 \u0633\u0631\u06cc\u0627\u0644\u200c\u0633\u0627\u0632\u06cc \u062f\u0627\u062f\u0647\u200c\u0647\u0627\u06cc \u063a\u06cc\u0631\u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f \u0627\u0633\u062a.\n\n\u062f\u0648 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0627 \u0634\u0646\u0627\u0633\u0647\u200c\u0647\u0627\u06cc CVE-2024-23477 \u0648 CVE-2024-23478 \u0646\u06cc\u0632 \u0628\u0631\u0627\u06cc \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f\u0647\u0627\u06cc \u0645\u062e\u0631\u0628 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u0646\u062f. \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0634\u0627\u0645\u0644 ARM 2023.2.2 \u0648 \u067e\u0627\u06cc\u06cc\u0646\u200c\u062a\u0631 \u0647\u0633\u062a\u0646\u062f. DKCERT \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f \u06a9\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0637\u0628\u0642 \u0631\u0627\u0647\u0646\u0645\u0627\u06cc\u06cc\u200c\u0647\u0627\u06cc SolarWinds \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u06cc\u062f.\n\n\n\ud83d\udd17 \u062c\u0647\u062a \u0645\u0637\u0627\u0644\u0639\u0647 \u0627\u062f\u0627\u0645\u0647 \u0645\u0642\u0627\u0644\u0647 \u0628\u0647 \u0627\u06cc\u0646 \u0633\u0627\u06cc\u062a \u0645\u0631\u0627\u062c\u0639\u0647 \u06a9\u0646\u06cc\u062f:\n\n\n\ud83d\udd3a https://www.cert.dk/da/news/2024-02-19/Kritiske-saarbarheder-i-SolarWinds-Arms\n\n\ud83d\udccd Critical Vulnerabilities in SolarWinds Arms\n\nOn February 19, 2024, Eskil S\u00f8rensen reported that SolarWinds released five updates for the Access Rights Manager (ARM) product to address three critical vulnerabilities, including Remote Code Execution (RCE), Path Traversal, and Input Validation.\n\nCVE-2024-23476 and CVE-2024-23479 allow access to information outside the defined space. CVE-2023-40057 involves the serialization of untrusted data.\n\nTwo other vulnerabilities, CVE-2024-23477 and CVE-2024-23478, are also used to execute malicious code. Affected versions include ARM 2023.2.2 and earlier. DKCERT recommends updating your products according to SolarWinds' guidelines.\n\n\ud83d\udd17 For further reading, please visit: \n\n\ud83d\udd3a https://www.cert.dk/da/news/2024-02-19/Kritiske-saarbarheder-i-SolarWinds-Arms", "creation_timestamp": "2024-07-22T12:54:50.000000Z"} https://vulnerability.circl.lu/sighting/1e4aa3a8-2ec4-4c80-be1c-97c3fa6ea954/export Mon, 22 Jul 2024 12:54:50 +0000