{"vulnerability": "CVE-2021-30807", "sightings": [{"uuid": "d87a2903-73b6-4794-8c40-ec10b2a7383a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "seen", "source": "MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422", "content": "", "creation_timestamp": "2021-11-08T08:58:17.000000Z"}, {"uuid": "53978dbf-ed3b-44f0-85f8-4da04f1275af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2021-11-20T09:53:52.000000Z"}, {"uuid": "3855b909-b060-4e89-b129-0529a0065640", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971145", "content": "", "creation_timestamp": "2024-12-24T20:24:55.160645Z"}, {"uuid": "d72c6649-bed1-4669-b1f7-9a982a040e6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/069289e3-1bee-430f-ade5-f010a9c4b57f", "content": "", "creation_timestamp": "2026-02-02T12:28:36.413804Z"}, {"uuid": "2c8bcbde-3b54-4197-af9e-2805820337a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:09:55.000000Z"}, {"uuid": "b182bd9e-606b-4240-9f02-f1648f8a3cf2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://t.me/cyberbannews_ir/3680", "content": "\u200d \ud83d\uded1\u0622\u067e\u062f\u06cc\u062a \u0627\u0645\u0646\u06cc\u062a\u06cc \u062d\u06cc\u0627\u062a\u06cc \u0627\u067e\u0644\n\n\u0634\u0631\u06a9\u062a \u0627\u067e\u0644 \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u0646\u062a\u0634\u0627\u0631 \u0646\u0633\u062e\u0647 iOS 14.7.1 \u0648 iPad iOS 14.7.1\u060c \u0627\u0632 \u0627\u0635\u0644\u0627\u062d \u06cc\u06a9 \u0646\u0642\u0635 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0646\u0627\u0634\u0646\u0627\u062e\u062a\u0647 \u0646\u06cc\u0632 \u067e\u0631\u062f\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u06a9\u0631\u062f. \u0637\u0628\u0642 \u06af\u0641\u062a\u0647 \u0627\u067e\u0644\u060c \u0627\u06cc\u0646 \u0646\u0642\u0636 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0638\u0627\u0647\u0631\u0627 \u0628\u0647 \u0635\u0648\u0631\u062a \u0641\u0639\u0627\u0644\u06cc \u0645\u0648\u0631\u062f \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0642\u0631\u0627\u0631 \u062f\u0627\u0634\u062a\u0647 \u0627\u0633\u062a.\n\n\u0627\u067e\u0644 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0628\u0627 \u0627\u0646\u062a\u0634\u0627\u0631 macOS Big Sur 11.5.1\u060c \u0627\u06cc\u0631\u0627\u062f \u0645\u0634\u0627\u0628\u0647\u06cc \u0631\u0627 \u062f\u0631 \u0627\u0641\u0632\u0648\u0646\u0647 kernel \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0631\u0627 \u0627\u0635\u0644\u0627\u062d \u06a9\u0631\u062f. \n\n\u0627\u067e\u0644 \u0647\u0634\u062f\u0627\u0631 \u062f\u0627\u062f\u060c \u06cc\u06a9 \u0627\u067e\u0644\u06cc\u06a9\u06cc\u0634\u0646 \u0645\u062e\u0631\u0628 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0636\u0639\u0641 \u0647\u0627\u06cc Kernel \u06a9\u062f \u062f\u0644\u062e\u0648\u0627\u0647 \u062e\u0648\u062f \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u0627\u06cc\u0646 \u0645\u0634\u06a9\u0644 \u062e\u0631\u0627\u0628\u06cc \u062d\u0627\u0641\u0638\u0647 ( CVE-2021-30807) \u062a\u0648\u0633\u0637 \u06cc\u06a9 \u0645\u062d\u0642\u0642 \u0646\u0627\u0634\u0646\u0627\u0633 \u06af\u0632\u0627\u0631\u0634 \u0634\u062f. \n\n \u0645\u062d\u0642\u0642 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0631\u06a9\u0632 \u067e\u0627\u0633\u062e \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0645\u062f\u0639\u06cc \u0634\u062f \u06a9\u0647 \u0648\u06cc \u062a\u0648\u0627\u0646\u0633\u062a\u0647 \u0628\u0648\u062f 4 \u0645\u0627\u0647 \u067e\u06cc\u0634 \u0627\u06cc\u0646 \u0628\u0627\u06af \u0631\u0627 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0646\u062f. \u0627\u0648 \u06af\u0641\u062a \u0628\u0647 \u0627\u06cc\u0646 \u062f\u0644\u06cc\u0644 \u0645\u0634\u06a9\u0644 \u0646\u0627\u0645 \u0628\u0631\u062f\u0647 \u0631\u0627 \u06af\u0632\u0627\u0631\u0634 \u0646\u06a9\u0631\u062f \u06a9\u0647 \u0648\u06cc \u0645\u0634\u063a\u0648\u0644 \u062a\u0647\u06cc\u0647 \u06af\u0632\u0627\u0631\u0634\u06cc \u0628\u0627\u06a9\u06cc\u0641\u06cc\u062a \u062f\u0631 \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u0627 \u0637\u0631\u062d \u0628\u0627\u06af \u0628\u0627\u0646\u062a\u06cc( \u0627\u0647\u062f\u0627\u06cc \u062c\u0627\u06cc\u0632\u0647 \u0628\u0647 \u06a9\u0633\u0627\u0646\u06cc \u06a9\u0647 \u0628\u0627\u06af \u0633\u06cc\u0633\u062a\u0645 \u0647\u0627 \u0631\u0627 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0646\u0646\u062f. \u067e\u0633 \u0627\u0632 \u0622\u0646 \u06a9\u0647 \u0627\u067e\u0644 \u0627\u06cc\u0646 \u0628\u0627\u06af \u0631\u0627 \u062f\u0631 IOMobileFrameBuffer \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0631\u062f\u060c Amar \u0627\u0642\u062f\u0627\u0645 \u0628\u0647 \u0627\u0646\u062a\u0634\u0627\u0631 \u062c\u0632\u0626\u06cc\u0627\u062a\u06cc \u062f\u0631 \u0645\u0648\u0631\u062f \u0622\u0646 \u06a9\u0631\u062f. \n\n  \u0645\u062d\u0642\u0642 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0631\u06a9\u0632 \u067e\u0627\u0633\u062e \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0645\u062f\u0639\u06cc \u0634\u062fAmar \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u0628\u0627\u0644\u0627 \u0631\u0641\u062a\u0646 \u0633\u0637\u062d \u062f\u0633\u062a\u0631\u0633\u06cc \u0645\u062d\u0644\u06cc \u062a\u0648\u0635\u06cc\u0641 \u06a9\u0631\u062f \u06a9\u0647 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0645\u0648\u062a\u0648\u0631 \u0645\u0631\u06a9\u0632\u06cc \u0648\u0628 \u06a9\u06cc\u062a \u0627\u0633\u062a\u0627\u0631\u062a \u0628\u062e\u0648\u0631\u062f. ( WebContent)\n\n#\u0627\u067e\u0644\n\n @cyberbannews_ir", "creation_timestamp": "2021-07-28T05:01:11.000000Z"}, {"uuid": "1a46baf4-ec6f-46f0-94d2-a62d961a6f5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2021-30807", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=621", "content": "", "creation_timestamp": "2021-07-27T04:00:00.000000Z"}, {"uuid": "219cc35a-e2ea-48d0-8ef7-b6e912574afe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1253", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aGex is an iOS 14.7 jailbreak using CVE-2021-30807 IOMFB exploit\nURL\uff1ahttps://github.com/30440r/gex", "creation_timestamp": "2021-12-30T20:39:02.000000Z"}, {"uuid": "97c314d8-ad69-4d95-bdfc-094250f330ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://t.me/alexmakus/4195", "content": "\u041f\u043e\u0445\u043e\u0436\u0435, \u0447\u0442\u043e Apple \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u043e\u0434\u043d\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u0437 \u0446\u0435\u043f\u043e\u0447\u043a\u0438, \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u043c\u043e\u0439 NSO \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 iOS. \u041f\u043e \u043a\u0440\u0430\u0439\u043d\u0435\u0439 \u043c\u0435\u0440\u0435, \u0432\u044b\u0448\u0435\u043b \u0441\u0440\u043e\u0447\u043d\u044b\u0439 \u0430\u043f\u0434\u0435\u0439\u0442 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f iOS/iPadOS 14.7.1 \u0438 macOS Big Sur 11.5.1. \n\n\u0418\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0438 CVE-2021-30807 \u2014\u00a0A memory corruption issue was addressed with improved memory handling.\n\n\u043d\u0443 \u0438 \u0434\u0430 \u2014\u00a0Apple is aware of a report that this issue may have been actively exploited.\n\n\u0432\u044b \u0437\u043d\u0430\u0435\u0442\u0435, \u0447\u0442\u043e \u0434\u0435\u043b\u0430\u0442\u044c. (\u0435\u0441\u043b\u0438 \u0432\u044b \u043f\u043e\u0434\u0443\u043c\u0430\u043b\u0438 \u00ab\u043a\u0443\u043f\u0438\u0442\u044c \u0430\u043d\u0434\u0440\u043e\u0438\u0434\u00bb, \u0442\u043e \u044f \u0441\u0440\u0430\u0437\u0443 \u0441\u043a\u0430\u0436\u0443, \u0447\u0442\u043e NSO \u043b\u043e\u043c\u0430\u0435\u0442 \u0430\u043d\u0434\u0440\u043e\u0435\u0434\u044b \u0442\u043e\u0447\u043d\u043e \u0442\u0430\u043a \u0436\u0435)", "creation_timestamp": "2021-07-26T17:53:35.000000Z"}, {"uuid": "8bf46892-16d7-4281-a0b4-be51347fce23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://t.me/IOSAppSec/107", "content": "\u200b\u200bIOMobileFrameBufferLPEPOC \ud83d\udd0c\ud83d\udd27\ud83e\udde8 \n\nWebContent->EL1 LPE: OOBR in AppleCLCD / IOMobileFrameBuffer \ud83d\udc69\ud83c\udffb\u200d\ud83c\udf73\ud83e\uddee\ud83d\udc46\n\nWhile reversing some of the accessible IOServices from the app sandbox, I went into a very straightforward vulnerability in AppleCLCD / IOMobileFrameBuffer (the respected userclients share the same external methods table). I kept this bug and intended to find some extra time to work on it in August. But then, iOS 14.7.1 came along, and I was surprised to see it was fixed as \u201cin-the-wild\u201d as CVE-2021-30807. Just to be clear, I intended to submit this bug to Apple right after I\u2019ll finish the exploit. I wanted to get a high-quality submission, but I did not have the time to invest in tfp0 in March. I wanted to share the knowledge and the details involved here, hoping it would help more folks in our community with their research. While building the POC is an immediate step that worked at the first shot (the vulnerability is as trivial and straightforward as it can get), the exploitation process is quite interesting here. \ud83d\udc4c\ud83c\udffb\ud83e\udda7\n\nURL - https://saaramar.github.io/IOMobileFrameBuffer_LPE_POC/\n\n#IOSAppSec #IOS #Learning #Hacking #Proof", "creation_timestamp": "2021-09-13T16:30:00.000000Z"}, {"uuid": "fac6bee9-4c37-4792-8b18-78a7684cdf34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://t.me/true_secator/1942", "content": "\u0412\u0447\u0435\u0440\u0430\u0448\u043d\u0435\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 iOS, iPadOS \u0438 MacOS, \u043a\u0430\u043a \u043e\u043a\u0430\u0437\u0430\u043b\u043e\u0441\u044c, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u0442 \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u0443\u044e 0-day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2021-30807 \u0432 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0438 \u044f\u0434\u0440\u0430 IOMobileFramebuffer.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442, \u043a\u0430\u043a \u0432 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0437\u0430\u0432\u0435\u0434\u0435\u043d\u043e, \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430 (RCE), \u0434\u0430 \u0435\u0449\u0435 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u044f\u0434\u0440\u0430. \u041d\u043e \u0441\u0430\u043c\u043e\u0435 \u043e\u043f\u0430\u0441\u043d\u043e\u0435 \u0432 \u0442\u043e\u043c, \u0447\u0442\u043e, \u043f\u043e \u0437\u0430\u044f\u0432\u043b\u0435\u043d\u0438\u044e Apple, \"\u0441\u043e\u0433\u043b\u0430\u0441\u043d\u043e \u043e\u0434\u043d\u043e\u043c\u0443 \u0438\u0437 \u043e\u0442\u0447\u0435\u0442\u043e\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0436\u0435\u0442 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435\". \u041f\u0440\u0430\u0432\u0434\u0430 \u0431\u043e\u043b\u0435\u0435 \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043e\u0431 \u044d\u0442\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043d\u0435 \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442\u0441\u044f.\n\n\u041c\u0435\u0436\u0434\u0443 \u0442\u0435\u043c \u0432 \u0441\u0435\u0442\u0438 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043d\u043e\u0432\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u0438, \u0442\u0430\u043a \u0447\u0442\u043e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442, \u043d\u0430\u0432\u0435\u0440\u043d\u044f\u043a\u0430, \u0443\u0436\u0435 \u0433\u0434\u0435-\u0442\u043e \u0433\u0443\u043b\u044f\u0435\u0442. \u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0432\u044b\u0441\u043a\u0430\u0437\u0430\u043b\u0438 \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u043e\u0436\u0435\u043d\u0438\u0435, \u0447\u0442\u043e CVE-2021-30807 \u043c\u043e\u0433\u043b\u0430 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u043a\u0438\u0431\u0435\u0440\u0448\u043f\u0438\u043e\u043d\u0441\u043a\u0438\u043c \u041f\u041e Pegasus \u043e\u0442 \u0438\u0437\u0440\u0430\u0438\u043b\u044c\u0441\u043a\u043e\u0439 NSO Group, \u0447\u0442\u043e \u043d\u0435 \u043b\u0438\u0448\u0435\u043d\u043e \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u0438\u044f.\n\n\u041d\u043e \u0441\u0430\u043c\u043e\u0435 \u0432\u0430\u0436\u043d\u043e\u0435 \u0432\u043e \u0432\u0441\u0435\u043c \u044d\u0442\u043e\u043c - \u043f\u043e\u0431\u044b\u0441\u0442\u0440\u0435\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u044f\u0431\u043b\u043e\u0447\u043d\u044b\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430. \u0412\u044b \u0436\u0435 \u043d\u0435 \u0445\u043e\u0442\u0438\u0442\u0435, \u0447\u0442\u043e\u0431\u044b \u0418\u0446\u0445\u0430\u043a \u041c\u043e\u0438\u0441\u0435\u0435\u0432\u0438\u0447 \u0447\u0438\u0442\u0430\u043b \u0432\u0430\u0448\u0438 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f \u0441\u0438\u0434\u044f \u0432 \u043e\u0444\u0438\u0441\u0435 \u0432 \u0413\u0435\u0440\u0446\u043b\u0438\u0438, \u043d\u0435 \u0442\u0430\u043a \u043b\u0438?", "creation_timestamp": "2021-07-27T10:58:30.000000Z"}, {"uuid": "5a7460d1-f250-40ae-93d8-44f8de80e2e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "seen", "source": "https://t.me/true_secator/2562", "content": "\u041a\u043e\u0440\u043f\u043e\u0440\u0430\u0446\u0438\u044f \u0438\u0437 \u041a\u0443\u043f\u0435\u0440\u0442\u0438\u043d\u043e \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0441\u0440\u043e\u0447\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u0441\u0432\u043e\u0438\u0445 \u0444\u043b\u0430\u0433\u043c\u0430\u043d\u0441\u043a\u0438\u0445 \u0434\u0435\u0432\u0430\u0439\u0441\u043e\u0432 \u0441 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c 11 \u0437\u0430\u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043e\u0448\u0438\u0431\u043e\u043a \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043f\u0440\u0438\u0447\u0435\u043c \u043e\u0434\u043d\u0430 \u0438\u0437 \u043d\u0438\u0445 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435 \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0435\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432.\n\n\u0412 Apple \u043f\u0440\u0438\u0437\u043d\u0430\u043b\u0438, \u0447\u0442\u043e 0-day CVE-2022-22587, \u0441\u0432\u044f\u0437\u0430\u043d \u0441 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 IOMobileFrameBuffer \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u043c\u0443 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u044f\u0434\u0440\u0430. \n\n\u041f\u043e \u0437\u0430\u043a\u0440\u0435\u043f\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u0442\u0440\u0430\u0434\u0438\u0446\u0438\u0438 IT-\u0433\u0438\u0433\u0430\u043d\u0442 \u0440\u0435\u0448\u0438\u043b \u043d\u0435 \u0434\u0435\u043b\u0438\u0442\u044c\u0441\u044f \u0441 \u043e\u0431\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0441\u0442\u044c\u044e \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u044f\u043c\u0438 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0438\u043b\u0438 \u043a\u0430\u043a\u0438\u043c\u0438-\u043b\u0438\u0431\u043e \u043f\u0440\u0438\u0437\u043d\u0430\u043a\u0430\u043c\u0438 \u0432\u0437\u043b\u043e\u043c\u0430, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043d\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440 \u0430\u0442\u0430\u043a, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043d\u043e\u0441\u0442\u044c \u0438 \u043b\u0438\u0447\u043d\u043e\u0441\u0442\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0445 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u043b\u0438. \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u043e, \u0447\u0442\u043e Apple \u043f\u043e\u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u0438\u043b\u0430 \u0442\u0440\u0435\u0445 \u0440\u0430\u0437\u043d\u044b\u0445 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0437\u0430 \u0442\u043e, \u0447\u0442\u043e \u043e\u043d\u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u043e\u0431 \u043e\u0448\u0438\u0431\u043a\u0435 \u0438 \u043f\u043e\u043c\u043e\u0433\u043b\u0438 \u0441 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c. \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0435 \u043e \u043d\u0435\u0439 \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442 \u043e\u0434\u043d\u043e\u043c\u0443 \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u043e\u043c\u0443 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044e \u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u0430\u043c \u041c\u0435\u0439\u0441\u0430\u043c\u0443 \u0424\u0438\u0440\u0443\u0437\u0438 \u0441 \u0421\u0438\u0434\u0434\u0445\u0430\u0440\u0442\u043e\u043c \u0410\u044d\u0440\u0438. \n\nCVE-2022-22587 \u2014 \u044d\u0442\u043e \u0442\u0440\u0435\u0442\u044c\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u0430\u044f \u0432 IOMobileFrameBuffer \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u043f\u043e\u043b\u0433\u043e\u0434\u0430 \u043f\u043e\u0441\u043b\u0435 CVE-2021-30807 \u0438 CVE-2021-30883.\n\n\u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0433\u0438\u0433\u0430\u043d\u0442 \u0442\u0430\u043a\u0436\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Safari,  \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0432\u043e\u0437\u043d\u0438\u043a\u0430\u043b\u0430 \u0438\u0437-\u0437\u0430 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0439 \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 IndexedDB API (CVE-2022-22594) \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0441\u0441\u044b\u043b\u043a\u0438 \u0434\u043b\u044f \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u043e\u043d\u043b\u0430\u0439\u043d-\u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0432 \u0432\u0435\u0431-\u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0435 \u0438 \u0434\u0430\u0436\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u0441\u0432\u043e\u044e \u043b\u0438\u0447\u043d\u043e\u0441\u0442\u044c.\n\n\u0422\u0430\u043a\u0436\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0435 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0441\u043b\u0435\u0434\u0443\u0435\u0442 \u043e\u0442\u043c\u0435\u0442\u0438\u0442\u044c:\n\n- CVE-2022-22584 \u2014 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0435\u043c \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 ColorSync, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0433\u043e \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430.\n- CVE-2022-22578 \u2014 \u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u043e\u0448\u0438\u0431\u043a\u0430 \u0432 Crash Reporter, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u043c\u0443 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 root. \n- CVE-2022-22585 \u2014 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u043f\u0443\u0442\u0438 \u0432 iCloud, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u043c \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435\u043c \u0434\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0444\u0430\u0439\u043b\u0430\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f.\n- CVE-2022-22591 \u2014 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0435\u043c \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u043c \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0435 Intel, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u043c \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435\u043c \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u044f\u0434\u0440\u0430.\n- CVE-2022-22593 \u2014 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u044f\u0434\u0440\u0435, \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043c\u043e\u0436\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u044f\u0434\u0440\u0430.\n- CVE-2022-22590 \u2014 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u0441\u043b\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f \u0432 WebKit, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u0432\u0435\u0431-\u043a\u043e\u043d\u0442\u0435\u043d\u0442\u0430.\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0434\u043b\u044f iPhone 6s \u0438 \u043d\u043e\u0432\u0435\u0435, iPad Pro (\u0432\u0441\u0435 \u043c\u043e\u0434\u0435\u043b\u0438), iPad Air 2 \u0438 \u043d\u043e\u0432\u0435\u0435, iPad 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f \u0438 \u043d\u043e\u0432\u0435\u0435, iPad mini 4 \u0438 \u043d\u043e\u0432\u0435\u0435, iPod touch (7-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f) \u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 macOS \u043f\u043e\u0434 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c Big Sur, Catalina \u0438 Monterey.", "creation_timestamp": "2022-01-27T12:09:16.000000Z"}, {"uuid": "6b2e5251-e68f-4555-8b9c-dd84fcd4e001", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "seen", "source": "https://t.me/ctinow/37557", "content": "Apple fixes CVE-2021-30807 flaw, the 13th zero-day this year\n\nhttps://ift.tt/2Wpo4Dt", "creation_timestamp": "2021-07-27T00:21:42.000000Z"}, {"uuid": "12d94936-3146-4820-a5d4-a73adf866192", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://t.me/arpsyndicate/1177", "content": "#ExploitObserverAlert\n\nCVE-2021-30807\n\nDESCRIPTION: Exploit Observer has 17 entries related to CVE-2021-30807. A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.5.1, iOS 14.7.1 and iPadOS 14.7.1, watchOS 7.6.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.\n\nFIRST-EPSS: 0.000830000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-12-04T10:15:42.000000Z"}, {"uuid": "91f9de0e-63a0-489c-b9c0-949218d629da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4016", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (July 1-31)\nCVE-2021-1675 - Windows Print Spooler EoP\nhttps://t.me/cybersecuritytechnologies/3723\nCVE-2021-34527 - Windows Print Spooler RCE\nhttps://t.me/cybersecuritytechnologies/3750\nCVE-2021-36934 - Windows SeriousSAM EoP\nhttps://t.me/cybersecuritytechnologies/3891\nCVE-2021-33909 - Sequoia - A LPE Vulnerability in Linux\u2019s Filesystem Layer\nhttps://t.me/cybersecuritytechnologies/3884\nCVE-2021-22555 - Heap out-of-bounds write vuln in Linux Netfilter\nhttps://t.me/cybersecuritytechnologies/3841\nCVE-2021-30807 - OOBR in AppleCLCD/IOMobileFrameBuffer\nhttps://t.me/cybersecuritytechnologies/3930\nCVE-2020-27020 - Vulnerability in Kaspersky Password Manager\nhttps://donjon.ledger.com/kaspersky-password-manager\nCVE-2021-35211 - SolarWinds Serv-U Managed File Transfer Vuln\nhttps://t.me/CyberSecurityTechnologies/4714\nCVE-2021-34481 - Windows Print Spooler EoP\nhttps://mobile.twitter.com/gentilkiwi/status/1416429860566847490\nCVE-2021-3438 - Printer\u2019s Drivers Vulnerability\nhttps://t.me/cybersecuritytechnologies/3969", "creation_timestamp": "2024-01-18T03:22:33.000000Z"}, {"uuid": "f2b058d6-6203-4f27-8726-8bd569b0a646", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://t.me/androidMalware/1514", "content": "A Year in Review of 0-days Used In-the-Wild in 2021 by Google\nIn 2021 there were 7 #Android in-the-wild 0-days detected and disclosed:\n - Qualcomm Adreno GPU driver (CVE-2020-11261, CVE-2021-1905, CVE-2021-1906)\n - ARM Mali GPU driver (CVE-2021-28663, CVE-2021-28664)\n - Upstream Linux kernel (CVE-2021-1048, CVE-2021-0920)\n\nFor the 5 total #iOS and macOS in-the-wild 0-days, they targeted 3 different attack surfaces:\n - IOMobileFrameBuffer (CVE-2021-30807, CVE-2021-30883)\n - XNU Kernel (CVE-2021-1782 & CVE-2021-30869)\n - CoreGraphics (CVE-2021-30860)\n - CommCenter (FORCEDENTRY sandbox escape - CVE requested, not yet assigned)\nhttps://googleprojectzero.blogspot.com/2022/04/the-more-you-know-more-you-know-you.html", "creation_timestamp": "2022-04-27T11:03:23.000000Z"}, {"uuid": "f7fe9324-ae1b-4ebd-96ee-9c4460a97b71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "exploited", "source": "https://t.me/xakep_ru/11075", "content": "Apple \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 0-day \u0431\u0430\u0433, \u043e\u043f\u0430\u0441\u043d\u044b\u0439 \u0434\u043b\u044f iOS, iPadOS \u0438 macOS\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u043f\u0430\u0442\u0447\u0438 \u0434\u043b\u044f iOS, iPadOS \u0438 macOS, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f, \u043a\u043e\u0442\u043e\u0440\u0430\u044f, \u043f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438, \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0430\u0442\u0430\u043a.\n\nhttps://xakep.ru/2021/07/27/cve-2021-30807/", "creation_timestamp": "2021-07-27T15:32:53.000000Z"}, {"uuid": "b8bc85b5-b624-4f82-b8cd-6371ae2826ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30807", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/3930", "content": "#Threat_Research\n1. WebContent -> EL1 LPE:\nOOBR in AppleCLCD/IOMobileFrameBuffer\n(PoC for CVE-2021-30807)\nhttps://saaramar.github.io/IOMobileFrameBuffer_LPE_POC\n2. Pre-Auth RCE in ManageEngine OPManager\nhttps://haxolot.com/posts/2021/manageengine_opmanager_pre_auth_rce", "creation_timestamp": "2021-07-27T17:21:34.000000Z"}]}