{"vulnerability": "CVE-2023-21036", "sightings": [{"uuid": "96fd4574-9d81-4653-8e51-2faeeb187899", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4003", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aDiscord bot which monitors for and deletes images vulnerable to the Acropalypse exploit (CVE-2023-21036)\nURL\uff1ahttps://github.com/qixils/anticropalypse\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-21T23:11:24.000000Z"}, {"uuid": "29be311b-adc1-474f-8c00-1899702624e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/CyberSachok/916", "content": "\u0412 \u0440\u0435\u0434\u0430\u043a\u0442\u043e\u0440\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f Google Pixel \u0438 \u0432\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u043e\u043c \u0432 Windows 11 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0435 \u00ab\u041d\u043e\u0436\u043d\u0438\u0446\u044b\u00bb \u043d\u0430\u0448\u043b\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043b\u044e\u0431\u043e\u043c\u0443 \u0436\u0435\u043b\u0430\u044e\u0449\u0435\u043c\u0443 \u0432\u0435\u0440\u043d\u0443\u0442\u044c \u0438\u0437\u043c\u0435\u043d\u0451\u043d\u043d\u044b\u0439 \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442(\u0437\u0430\u0431\u043b\u044e\u0440\u0435\u043d\u043d\u044b\u0439 \u0438\u043b\u0438 \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u044b\u0439) \u043a \u0438\u0441\u0445\u043e\u0434\u043d\u043e\u043c\u0443 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044e. \n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0430\u0437\u0432\u0430\u043b\u0438 \u00abaCropalypse\u00bb \u0438 \u043f\u0440\u0438\u0441\u0432\u043e\u0438\u043b\u0438 \u043d\u043e\u043c\u0435\u0440 CVE-2023-21036. Google \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0436\u0435 \u043f\u043e\u0444\u0438\u043a\u0441\u0438\u043b\u0438, \u0430 \u0432\u043e\u0442 Microsoft \u043f\u043e\u043a\u0430 \u043d\u0435 \u043e\u0442\u0432\u0435\u0447\u0430\u0435\u0442. \n\n\u041f\u043e\u044d\u0442\u043e\u043c\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u0441\u043e\u0432\u0435\u0442\u0443\u044e\u0442 \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442 \u00ab\u043d\u043e\u0436\u043d\u0438\u0446\u044b\u00bb, \u0447\u0442\u043e\u0431\u044b \u043d\u0435 \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u044c \u0441\u0432\u043e\u044e \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u043e\u0441\u0442\u044c. \n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438, \u043a \u0441\u043b\u043e\u0432\u0443, \u0443\u0436\u0435 \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u043e\u043d\u043b\u0430\u0439\u043d-\u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442 aCropalypse.app, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u0435\u0442 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. \n\n\u041f\u043e\u043c\u043d\u044e, \u043a\u0430\u043a \u0432 \u043e\u0434\u043d\u043e\u043c \u043f\u0440\u043e\u0435\u043a\u0442\u0435, \u043a\u043e\u0433\u0434\u0430 \u044f \u0435\u0449\u0451 \u0431\u044b\u043b \u0441\u0442\u0443\u0434\u0435\u043d\u0442\u043e\u043c, \u043d\u0430\u0447\u0430\u043b\u044c\u043d\u0438\u043a\u0430 \u044f\u043a\u043e\u0431\u044b \u043a\u0438\u043d\u0443\u043b \u0438\u043d\u0432\u0435\u0441\u0442\u043e\u0440, \u0438 \u043e\u043d \u043d\u0435 \u0432\u044b\u043f\u043b\u0430\u0442\u0438\u043b \u043c\u043d\u0435 \u0434\u0435\u043d\u044c\u0433\u0438. \u041e\u043d \u0441\u043a\u0438\u043d\u0443\u043b \u043c\u043d\u0435 \u0441\u043a\u0440\u0438\u043d \u043f\u0435\u0440\u0435\u043f\u0438\u0441\u043a\u0438 \u0441 \u0440\u0430\u0437\u043c\u044b\u0442\u044b\u043c \u0438\u043c\u0435\u043d\u0435\u043c \u0438\u043d\u0432\u0435\u0441\u0442\u043e\u0440\u0430 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u0441\u0432\u043e\u0435\u0439 \u0447\u0438\u0441\u0442\u043e\u0442\u044b. \u0421\u043a\u0440\u0438\u043d, \u043a\u0441\u0442\u0430\u0442\u0438, \u0441\u0434\u0435\u043b\u0430\u043b \u0441 \u0413\u0443\u0433\u043b \u041f\u0438\u043a\u0441\u0435\u043b\u044f. \u041f\u043e\u0439\u0434\u0443 \u043f\u0440\u043e\u0432\u0435\u0440\u044e, \u0438\u0437-\u0437\u0430 \u0447\u044c\u0435\u0439 \u0436\u0430\u0434\u043d\u043e\u0441\u0442\u0438 \u043c\u043d\u0435 \u043f\u0440\u0438\u0448\u043b\u043e\u0441\u044c \u043e\u0434\u0430\u043b\u0436\u0438\u0432\u0430\u0442\u044c \u0434\u0435\u043d\u044c\u0433\u0438 \u043d\u0430 \u043e\u043f\u043b\u0430\u0442\u0443 \u0443\u0447\u0435\u0431\u044b \u0443 \u0434\u0440\u0443\u0437\u0435\u0439.", "creation_timestamp": "2023-03-22T14:18:32.000000Z"}, {"uuid": "95061445-173e-49a4-9c35-50d5113aa580", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4084", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aWeb tool for detecting Acropalypse (CVE-2023-21036)\nURL\uff1ahttps://github.com/lordofpipes/acropadetect\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-04-23T05:54:39.000000Z"}, {"uuid": "e49d0330-3ec6-4c4c-ab39-de853779f88a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4026", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1adiscord bot to find and delete images affected by CVE-2023-21036\nURL\uff1ahttps://github.com/maddiethecafebabe/discord-acropolypse-bot\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-24T03:34:50.000000Z"}, {"uuid": "47f19171-77ea-4540-b56b-ef8f41db0f50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4044", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-21036 detection in Go\nURL\uff1ahttps://github.com/notaSWE/gocropalypse\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-25T21:42:04.000000Z"}, {"uuid": "b4f8e0a2-f41e-461f-82bc-56c2e02fae77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4043", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aDiscord bot for mitigating the aCropalypse vulnerability (CVE-2023-21036) by retroactively deleting vulnerable images\nURL\uff1ahttps://github.com/qixils/AntiCropalypse\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-25T19:00:55.000000Z"}, {"uuid": "4f38f1ef-c29f-4231-835a-16e64002b06a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "Telegram/bj8doEkkdNqHpfVQfl8gvA4415dyF2kRdOr9jMxstG-0IPA", "content": "", "creation_timestamp": "2026-04-17T15:00:06.000000Z"}, {"uuid": "97f8fd4d-505a-45f9-bb6a-bfe5dba9376c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "https://t.me/GithubRedTeam/3986", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aDiscord bot which monitors for and deletes images vulnerable to the Acropalypse exploit (CVE-2023-21036)\nURL\uff1ahttps://github.com/qixils/anti-acropalypse\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-19T02:25:29.000000Z"}, {"uuid": "9ffed91e-3c12-41a2-855e-cdfe3d9f6384", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4046", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1abot to find and delete images affected by CVE-2023-21036 \nURL\uff1ahttps://github.com/schdork/acropolypse-bot\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-26T01:42:05.000000Z"}, {"uuid": "9613cfd1-08de-43f0-a6bf-fafcbe70d363", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4007", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aDetection an sanitization for Acropalypse Now - CVE-2023-21036\nURL\uff1ahttps://github.com/infobyte/CVE-2023-21036\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-22T15:11:09.000000Z"}, {"uuid": "6e83a4d5-611e-41bb-8c6b-438490172f9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "https://t.me/By3side/142", "content": "\u0412\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0437\u0430\u043c\u0430\u0437\u0430\u043d\u043d\u043e\u0439/\u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u043e\u0439 \u0447\u0430\u0441\u0442\u0438 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f\n\n\u0412\u043d\u0438\u043c\u0430\u043d\u0438\u0435, \u044d\u0442\u043e \u041d\u0415 \u0448\u0443\u0442\u043a\u0430, \u0445\u043e\u0442\u044c \u043f\u043e\u0441\u0442 \u0438 \u0432\u044b\u0445\u043e\u0434\u0438\u0442 1 \u0430\u043f\u0440\u0435\u043b\u044f.\n\n\u0415\u0441\u043b\u0438 \u0432\u044b \u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0435\u0441\u044c \u043d\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0451\u043d\u043d\u044b\u043c \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u043e\u043c Google Pixel \u0438\u043b\u0438 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u044b\u043c \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435\u043c Snipping Tool \u0432 Windows 11 \u043b\u044e\u0431\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438 \u0434\u043b\u044f \u043e\u0431\u0440\u0435\u0437\u043a\u0438 \u0438 \u0437\u0430\u043c\u0430\u0437\u044b\u0432\u0430\u043d\u0438\u044f \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f, \u0442\u043e \u0443 \u043d\u0430\u0441 \u0434\u043b\u044f \u0432\u0430\u0441 \u043f\u043b\u043e\u0445\u0438\u0435 \u043d\u043e\u0432\u043e\u0441\u0442\u0438.\n\n\u0415\u0441\u0442\u044c \u0448\u0430\u043d\u0441, \u0447\u0442\u043e \u0432\u0430\u0448\u0435 \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u043c\u043e\u0436\u043d\u043e \u00ab\u043e\u0442\u043c\u0435\u043d\u0438\u0442\u044c\u00bb. \u0412 \u0441\u043b\u0443\u0447\u0430\u0435 \u0435\u0441\u043b\u0438 \u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0430 \u0438 \u0437\u0430\u043c\u0430\u0437\u0430\u043d\u0430, \u0438 \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u0430 \u0448\u0430\u043d\u0441 \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u0432\u044b\u0441\u043e\u043a. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432 \u0442\u043e\u043c, \u0447\u0442\u043e \u0444\u043e\u0442\u043e\u0440\u0435\u0434\u0430\u043a\u0442\u043e\u0440\u044b \u043e\u0441\u043e\u0431\u044b\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0435 \u043f\u0440\u0438 \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u0438, \u0438 \u0443 \u043d\u0438\u0445 \u043e\u0441\u0442\u0430\u0435\u0442\u0441\u044f \u00ab\u043b\u0438\u0448\u043d\u0435\u0435 \u043c\u0435\u0441\u0442\u043e\u00bb \u0432 \u043a\u043e\u043d\u0446\u0435 \u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0438.\n\n\u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0435\u0441\u043b\u0438 \u043c\u044b \u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0443 \u043e\u0431\u0440\u0435\u0437\u0430\u043b\u0438, \u0442\u043e \u0443 \u043d\u0430\u0441 \u043e\u0441\u0442\u0430\u0435\u0442\u0441\u044f \u043b\u0438\u0448\u043d\u0435\u0435 \u043c\u0435\u0441\u0442\u043e \u0432 \u043a\u043e\u043d\u0446\u0435 \u0444\u0430\u0439\u043b\u0430. \u0418\u043b\u0438 \u0435\u0441\u043b\u0438 \u043c\u044b \u0437\u0430\u043c\u0430\u0437\u0430\u043b\u0438 \u043e\u0434\u043d\u0438\u043c \u0446\u0432\u0435\u0442\u043e\u043c, \u0442\u043e \u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0430 \u043b\u0443\u0447\u0448\u0435 \u0441\u043e\u0436\u043c\u0435\u0442\u0441\u044f \u0438 \u0442\u043e\u0436\u0435 \u043f\u043e\u044f\u0432\u0438\u0442\u0441\u044f \u043b\u0438\u0448\u043d\u0435\u0435 \u043c\u0435\u0441\u0442\u043e. \u0410 \u044d\u0442\u0443 \u043b\u0438\u0448\u043d\u044e\u044e \u0447\u0430\u0441\u0442\u044c \u0444\u043e\u0442\u043e\u0440\u0435\u0434\u0430\u043a\u0442\u043e\u0440 \u043d\u0435 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442, \u0433\u0434\u0435 \u043c\u043e\u0436\u0435\u0442 \u043e\u0441\u0442\u0430\u0442\u044c\u0441\u044f \u0442\u043e\u0442 \u0441\u0430\u043c\u044b\u0439 \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u044b\u0439 \u0438\u043b\u0438 \u0437\u0430\u043c\u0430\u0437\u0430\u043d\u043d\u044b\u0439 \u043a\u0443\u0441\u043e\u043a. \u041a\u043e\u0442\u043e\u0440\u044b\u0439 \u043c\u043e\u0436\u043d\u043e \u043b\u0435\u0433\u043a\u043e \u0432\u0435\u0440\u043d\u0443\u0442\u044c. \u0423\u0436\u0435 \u0434\u0430\u0436\u0435 \u0435\u0441\u0442\u044c \u0431\u0435\u0441\u043f\u043b\u0430\u0442\u043d\u044b\u0439 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u044d\u0442\u043e \u043f\u043e\u043f\u0440\u043e\u0431\u043e\u0432\u0430\u0442\u044c \u0441\u0434\u0435\u043b\u0430\u0442\u044c \u043d\u0430 \u043b\u044e\u0431\u044b\u0445 \u0444\u0430\u0439\u043b\u0430\u0445, \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0435\u0441\u043b\u0438 \u043e\u043d\u0438 \u0431\u044b\u043b\u0438 \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u043d\u0430 Pixel.\n\n\u0414\u043b\u044f Pixel \u044d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 - Acropalypse (CVE-2023-21036), \u043e\u043d\u0430 \u0443\u0436\u0435 \u0437\u0430\u043a\u0440\u044b\u0442\u0430 \u0432 \u043c\u0430\u0440\u0442\u043e\u0432\u0441\u043a\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0438.\n\u0414\u043b\u044f Snipping Tool \u0432 Windows 11 \u2013 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0435\u0449\u0435 \u043d\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430.\n\n\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u043c\u0443 \u0441\u043a\u0440\u044b\u0442\u0438\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043d\u0430 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f\u0445:\n- \u0415\u0441\u043b\u0438 \u0443 \u0432\u0430\u0441 Pixel \u2013 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u0435 \u0435\u0433\u043e.\n- \u041d\u0435 \u043f\u043e\u043b\u044c\u0437\u0443\u0439\u0442\u0435\u0441\u044c. \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u043e\u0439 \u0443\u0442\u0438\u043b\u0438\u0442\u043e\u0439 Snipping Tool \u0432 Windows 11. \u0415\u0441\u0442\u044c \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u0438\u043d\u044b\u0445 \u0438 \u0431\u043e\u043b\u0435\u0435 \u0443\u0434\u043e\u0431\u043d\u044b\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439.\n- \u0418\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0439\u0442\u0435 \u0442\u043e\u043b\u044c\u043a\u043e 100% \u043d\u0435\u043f\u0440\u043e\u0437\u0440\u0430\u0447\u043d\u0443\u044e \u0437\u0430\u043b\u0438\u0432\u043a\u0443 \u043f\u0440\u0438 \u0437\u0430\u043c\u0430\u0437\u044b\u0432\u0430\u043d\u0438\u0438/\u0437\u0430\u043a\u0440\u0430\u0448\u0438\u0432\u0430\u043d\u0438\u0438.\n- \u041d\u0438\u043a\u0430\u043a\u043e\u0439 \u00ab\u043f\u0438\u043a\u0441\u0435\u043b\u0438\u0437\u0430\u0446\u0438\u0438\u00bb \u0438 \u00ab\u0440\u0430\u0437\u043c\u044b\u0442\u0438\u044f\u00bb \u2014 \u044d\u0442\u043e \u043e\u0431\u0440\u0430\u0442\u0438\u043c\u043e.", "creation_timestamp": "2023-04-01T10:19:58.000000Z"}, {"uuid": "9838fe88-c92a-4e02-a27f-c2afd5251140", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "Telegram/ERi97NB1jlS5bAjPJ50BFpHL6Dp9_Hj-9S5GyICO6Z88", "content": "", "creation_timestamp": "2023-10-16T18:20:40.000000Z"}, {"uuid": "fd5acbc4-01b6-498d-a413-1f420422c31c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/281", "content": "Top Security News for 23/03/2023\n\nChatGPT said that AI could hack the world! A DFIR analyst perspective.\nhttps://www.reddit.com/r/netsec/comments/11ypcwj/chatgpt_said_that_ai_could_hack_the_world_a_dfir/ \n\nLandmark UK-Israeli agreement to boost mutual cybersecurity development, tackle shared threats\nhttps://www.csoonline.com/article/3691138/landmark-uk-israeli-agreement-to-boost-mutual-cybersecurity-development-tackle-shared-threats.html#tk.rss_all \n\nGoogle's AI Explains Google's Monopolistic Practices in Great Detail\nhttps://www.vice.com/en_us/article/z3meyj/googles-ai-explains-googles-monopolistic-practices-in-great-detail \n\nBrute Ratel Analysis\nhttps://www.reddit.com/r/netsec/comments/11yvbxg/brute_ratel_analysis/ \n\nFCC Fines 15 Year-Old Pirate Radio Station in NYC $2 Million\nhttps://www.vice.com/en_us/article/93k535/fcc-fines-15-year-old-nyc-pirate-radio-station-dollar2-million \n\nBrandPost: Why intelligent privilege controls are essential for identity security\nhttps://www.csoonline.com/article/3691014/why-intelligent-privilege-controls-are-essential-for-identity-security.html#tk.rss_all \n\nWarning for Certification Solution (VestCert) Vulnerability and Update Recommendation\nhttps://malware.news/t/warning-for-certification-solution-vestcert-vulnerability-and-update-recommendation/68068#post_1 \n\nDetecting Unlinked Windows Services with Volatility 3\nhttps://www.reddit.com/r/netsec/comments/11yvnws/detecting_unlinked_windows_services_with/ \n\nYARA rule for rapid detection of PNG images affected by Acropalypse - CVE-2023-21036\nhttps://www.reddit.com/r/netsec/comments/11ytm9k/yara_rule_for_rapid_detection_of_png_images/ \n\nMicrosoft recognized as a Leader in The Forrester Wave\u2122: Data Security Platforms, Q1 2023\nhttps://www.microsoft.com/en-us/security/blog/2023/03/22/microsoft-recognized-as-a-leader-in-the-forrester-wave-data-security-platforms-q1-2023/ \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2023-03-23T08:00:06.000000Z"}, {"uuid": "929ca2bc-7600-47a8-a43d-f6cca0581c7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "https://t.me/habr_com_news/16043", "content": "\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u043e\u0432 Google Pixel (\u043c\u043e\u0434\u0435\u043b\u0435\u0439 \u043e\u0442 3 \u0434\u043e 7 \u0432\u0435\u0440\u0441\u0438\u0438) \u0441\u0442\u043e\u043b\u043a\u043d\u0443\u043b\u0438\u0441\u044c \u0441 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c aCropalypse. \u042d\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2023-21036) \u0432 \u0448\u0442\u0430\u0442\u043d\u043e\u043c \u0440\u0435\u0434\u0430\u043a\u0442\u043e\u0440\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0439 Markup \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u043a\u0430\u0440\u0442\u0438\u043d\u043e\u043a \u0432 \u0444\u043e\u0440\u043c\u0430\u0442\u0435 PNG. \u0418\u0437-\u0437\u0430 \u044d\u0442\u043e\u0433\u043e \u0431\u0430\u0433\u0430 \u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u0441\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u0430 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u0438\u0437 \u0440\u0430\u043d\u0435\u0435 \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c. \u0422\u043e \u0435\u0441\u0442\u044c, \u043f\u043e\u0441\u043b\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u0430\u043d\u0434\u044b Crop (\u043e\u0431\u0440\u0435\u0437\u043a\u0430) \u0438\u043b\u0438 \u0440\u0435\u0442\u0443\u0448\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u0441\u043e\u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u0439, \u043c\u043e\u0436\u043d\u043e \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b\u044c\u043d\u044b\u0439 \u0444\u0430\u0439\u043b.\n\n#\u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u044b #\u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c", "creation_timestamp": "2023-03-19T17:08:07.000000Z"}, {"uuid": "6a0c7096-9bbb-4200-84c2-b6c8b83c1813", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "https://t.me/pntests/113", "content": "\ud83e\udd29 \u041a\u043e\u043d\u043a\u0443\u0440\u0441 \u0438\u043d\u0432\u0430\u0439\u0442\u043e\u0432 \u043d\u0430 Standoff Hacks \u0437\u0430 \u043b\u0443\u0447\u0448\u0438\u0435 \u043c\u0430\u0442\u0435\u0440\u0438\u0430\u043b\u044b \u043e \u043f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0437\u0430\u0432\u0435\u0440\u0448\u0435\u043d!\n\n\u0422\u0430\u043b\u0430\u043d\u0442\u043b\u0438\u0432\u044b\u0435 \u0430\u0432\u0442\u043e\u0440\u044b \u043f\u0440\u0438\u0441\u043e\u0435\u0434\u0438\u043d\u044f\u0442\u0441\u044f \u043a \u043d\u0430\u0448\u0435\u043c\u0443 priv8-\u0438\u0432\u0435\u043d\u0442\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u0440\u043e\u0439\u0434\u0435\u0442 26 \u043d\u043e\u044f\u0431\u0440\u044f \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 Moscow Hacking Week. \n\n\u041f\u044f\u0442\u044c \u0438\u043d\u0432\u0430\u0439\u0442\u043e\u0432 \u043c\u044b \u0440\u0430\u0437\u044b\u0433\u0440\u0430\u043b\u0438 \u0437\u0430 \u0441\u0430\u043c\u044b\u0435 \u043a\u0440\u0443\u0442\u044b\u0435 \u0441\u0442\u0430\u0442\u044c\u0438. \u0412\u043e\u0442 \u043d\u0438\u043a\u0438 \u043f\u043e\u0431\u0435\u0434\u0438\u0442\u0435\u043b\u0435\u0439 \u0438 \u0438\u0445 \u0442\u0435\u043c\u044b:\n\n1. whoamins. \u00ab\u041e\u0431\u044b\u0447\u043d\u044b\u0439 Client Side \u0441 \u043d\u0435\u043e\u0431\u044b\u0447\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0435\u0439\u00bb\n\n2. qwqoro. \u00abE-mail Injection\u00bb\n\n3. iSavAnna. \u00ab\u041d\u0435 \u0432\u0441\u0435 \"\u043e\u0448\u0438\u0431\u043a\u0438\" \u043e\u0434\u0438\u043d\u0430\u043a\u043e\u0432\u043e \u043f\u043e\u043b\u0435\u0437\u043d\u044b \u2014 \u0441 \u0442\u043e\u0447\u043a\u0438 \u0437\u0440\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438\u00bb\n\n4. Ivan. \u00ab\u041a\u0430\u043a \u043d\u0435 \u0441\u0442\u043e\u0438\u0442 \u043e\u0431\u0440\u0435\u0437\u0430\u0442\u044c \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f. aCropalypse (CVE-2023-21036)\u00bb\n\n5. Firewall. \u00ab\u041a\u0430\u043a \u043b\u043e\u043c\u0430\u0442\u044c \u0441\u0430\u0439\u0442\u044b \u043d\u0430 1\u0421-\u0411\u0438\u0442\u0440\u0438\u043a\u0441\u00bb\n\n\u041e\u0434\u0438\u043d \u0431\u043e\u043d\u0443\u0441\u043d\u044b\u0439, \u0448\u0435\u0441\u0442\u043e\u0439, \u0438\u043d\u0432\u0430\u0439\u0442 \u2014 \u0437\u0430 \u0432\u0438\u0434\u0435\u043e \u00ab\u0413\u0430\u0439\u0434 \u043f\u043e \u0440\u0435\u043a\u043e\u043d\u0443 \u0432 \u0431\u0430\u0433\u0431\u0430\u0443\u043d\u0442\u0438 \u0434\u043b\u044f \u043d\u043e\u0432\u0438\u0447\u043a\u043e\u0432\u00bb, \u0435\u0433\u043e \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u0442 lifei8hitt.\n\n\u0410 \u0435\u0449\u0435 \u0441\u0432\u043e\u044e \u0441\u0442\u0430\u0442\u044c\u044e \u00ab\u0410\u043d\u0430\u043b\u0438\u0437 \u043f\u0440\u043e\u0448\u0438\u0432\u043a\u0438\u00bb \u043f\u0440\u0438\u0441\u043b\u0430\u043b superhacker123 \u2014 \u043e\u043d\u0430 \u0432\u044b\u0448\u043b\u0430 \u0434\u043e\u0441\u0442\u043e\u0439\u043d\u043e\u0439, \u043d\u043e \u0435\u0435 \u0430\u0432\u0442\u043e\u0440 \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u0438\u043d\u0432\u0430\u0439\u0442 \u0435\u0449\u0435 \u0434\u043e \u043a\u043e\u043d\u043a\u0443\u0440\u0441\u0430 \ud83d\ude09\n\n\u0412\u0441\u0435 \u0440\u0430\u0431\u043e\u0442\u044b \u0441\u043a\u043e\u0440\u043e \u0431\u0443\u0434\u0443\u0442 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u044b \u043d\u0430 \u0425\u0430\u0431\u0440\u0435 (\u0441\u043b\u0435\u0434\u0438\u0442\u044c \u0437\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f\u043c\u0438 \u043c\u043e\u0436\u043d\u043e \u0437\u0434\u0435\u0441\u044c) \u2014 \u043e\u043d\u0438 \u043f\u043e\u043c\u043e\u0433\u0443\u0442 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u0430\u043c \u043f\u043e \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0441\u0442\u0430\u0442\u044c \u0435\u0449\u0435 \u0441\u0438\u043b\u044c\u043d\u0435\u0435 (\u0438, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e, \u043f\u0440\u0438\u043d\u044f\u0442\u044c \u0443\u0447\u0430\u0441\u0442\u0438\u0435 \u0432 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u043c Hacks). \u0421 \u0437\u0430\u0441\u043b\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u043f\u043e\u0431\u0435\u0434\u043e\u0439! \ud83d\udc4f", "creation_timestamp": "2023-10-16T18:44:49.000000Z"}, {"uuid": "8914da48-bbbb-400a-8d24-7a57c3568c99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "Telegram/TEShDMltdDmggMNtiTJCH3MkwvIcppfNrYaNZgehg-xQKwU", "content": "", "creation_timestamp": "2023-03-23T21:36:39.000000Z"}, {"uuid": "98bd8acc-e00d-45bf-924b-ee00715b8b8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "https://t.me/svtvnews/25755", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u0430\u0445 Google \u0438 Windows 11 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u044b\u0435 \u0438 \u0440\u0430\u0437\u043c\u044b\u0442\u044b\u0435 \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u044b\n\n\u041f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0438\u0441\u0442\u044b \u0421\u0430\u0439\u043c\u043e\u043d \u0410\u0430\u0440\u043e\u043d\u0441\u043e\u043d \u0438 \u0414\u044d\u0432\u0438\u0434 \u0411\u044c\u044e\u043a\u0435\u043d\u0435\u043d\u043e\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c aCropalypse (CVE-2023-21036) \u0432 \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u0430\u0445 Google Pixel \u0441 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439 Android 9 Pie \u0438 \u0435\u0451 \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0437\u0434\u043d\u0438\u043c\u0438 \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u0438 \u043f\u043e\u043c\u043e\u0449\u0438 \u0440\u0435\u0434\u0430\u043a\u0442\u043e\u0440\u0430 Markup \u00ab\u043e\u0442\u043c\u0435\u043d\u0438\u0442\u044c\u00bb \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f, \u0441\u0434\u0435\u043b\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u0430\u0445 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f\u0445, \u0438 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b\u044c\u043d\u0443\u044e \u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0443.\n\n\u0425\u043e\u0442\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u043d\u043e\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0435 \u043d\u0435 \u0432\u0441\u0435\u0433\u0434\u0430 \u0432\u044b\u0433\u043b\u044f\u0434\u0438\u0442 \u0438\u0434\u0435\u0430\u043b\u044c\u043d\u043e, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043e\u043a\u043e\u043b\u043e 80% \u0438\u0441\u0445\u043e\u0434\u043d\u043e\u0439 \u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0438. \u0422\u0430\u043a \u043a\u0430\u043a \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b \u043d\u0435 \u0441\u0436\u0438\u043c\u0430\u044e\u0442 \u0437\u0430\u0433\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u043c\u0435\u0434\u0438\u0430\u0444\u0430\u0439\u043b\u044b, \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435, \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0438\u0435\u0441\u044f \u043d\u0430 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f\u0445, \u043c\u043e\u0433\u0443\u0442 \u043e\u0441\u0442\u0430\u0442\u044c\u0441\u044f \u043d\u0435\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u043c\u0438 \u0438 \u0432\u0441\u0451 \u0435\u0449\u0451 \u043d\u0430\u0445\u043e\u0434\u0438\u0442\u044c\u0441\u044f \u0432\u043d\u0443\u0442\u0440\u0438 \u0444\u0430\u0439\u043b\u0430. \u041d\u0435\u0434\u0430\u0432\u043d\u043e \u0442\u043e\u0447\u043d\u043e \u0442\u0430\u043a\u0443\u044e \u0436\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0432 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0435 \u00ab\u041d\u043e\u0436\u043d\u0438\u0446\u044b\u00bb, \u0432\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u043e\u043c \u0432 Windows 11, \u0438 Snip & Sketch \u0434\u043b\u044f Windows 10.\n\n\u0417\u0430\u0434\u043e\u043d\u0430\u0442\u0438\u0442\u044c \u0447\u0435\u0440\u0435\u0437 \u0431\u043e\u0442\u0430 | Patreon | Boosty | \u041f\u0440\u0435\u0434\u043b\u043e\u0436\u0438\u0442\u044c \u043d\u043e\u0432\u043e\u0441\u0442\u044c", "creation_timestamp": "2023-03-22T17:30:20.000000Z"}, {"uuid": "b1ccf94a-574d-4ea6-afc4-0fbc76d0a4d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "Telegram/h5DCpWHj6AimYvBTPiMPpfYfuGhlnwwzxkYB1cIEhUII9SM", "content": "", "creation_timestamp": "2023-03-20T13:19:07.000000Z"}, {"uuid": "8e0cb23b-24c4-4d4b-8401-5a45ef75cca9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "Telegram/HPLzvSun0DFXsUjqRLjXPKkwbvtGUf2wDpiTsb6BjzKe0dY", "content": "", "creation_timestamp": "2023-03-20T09:17:14.000000Z"}, {"uuid": "f8c8a953-520d-4717-863b-3de14ed733ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2669", "content": "CVE-2023-21036\n\nAcropalypse detection and sanitization tools.\n\nhttps://github.com/infobyte/CVE-2023-21036\n\n#cve #cybersecurity #infosec", "creation_timestamp": "2023-03-24T12:56:39.000000Z"}, {"uuid": "3087d27d-0529-4c88-a769-72e6e7dc41df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/4196", "content": "\u0412\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 \u0443\u0442\u0438\u043b\u0438\u0442\u0435 Pixel \u0434\u043b\u044f \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u043e\u0432 Markup, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u044b\u0435 \u0438\u043b\u0438 \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u0443\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0440\u0435\u0432\u0435\u0440\u0441-\u0438\u043d\u0436\u0435\u043d\u0435\u0440\u0430\u043c\u0438 \u0421\u0430\u0439\u043c\u043e\u043d\u043e\u043c \u0410\u0430\u0440\u043e\u043d\u0441\u043e\u043c \u0438 \u0414\u044d\u0432\u0438\u0434\u043e\u043c \u0411\u044c\u044e\u043a\u0435\u043d\u0435\u043d\u043e\u043c, \u043e \u0447\u0435\u043c Google \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u0432 \u043d\u0430\u0447\u0430\u043b\u0435 \u044f\u043d\u0432\u0430\u0440\u044f.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0431\u044b\u043b \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d \u0432 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0438 \u043e\u0442 \u043c\u0430\u0440\u0442\u0430 2023 \u0433\u043e\u0434\u0430, \u043e\u0434\u043d\u0430\u043a\u043e \u0441\u0442\u0430\u0440\u044b\u0435 \u0444\u043e\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0438 \u0432\u0441\u0435 \u0435\u0449\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0440\u0438\u0441\u043a\u0443.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 Acropalypse \u0438\u043b\u0438, \u0431\u043e\u043b\u0435\u0435 \u0444\u043e\u0440\u043c\u0430\u043b\u044c\u043d\u043e, CVE-2023-21036.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0434\u0430\u0436\u0435 \u0440\u0430\u0437\u043c\u0435\u0441\u0442\u0438\u043b\u0438 (acropalypse.app) \u043e\u043d\u043b\u0430\u0439\u043d-\u0443\u0442\u0438\u043b\u0438\u0442\u0443 \u0434\u043b\u044f \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u043e\u0432 Acropalypse, \u0447\u0442\u043e\u0431\u044b \u0432\u043b\u0430\u0434\u0435\u043b\u044c\u0446\u044b Pixel (\u0438 \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e) \u043c\u043e\u0433\u043b\u0438 \u043f\u0440\u043e\u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0441\u0432\u043e\u0438 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0435 \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c, \u043c\u043e\u0436\u043d\u043e \u043b\u0438 \u0438\u0445 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c.\n\n\u0414\u043b\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 \u0442\u043e\u0436\u0435 \u0432\u0435\u0441\u044c\u043c\u0430 \u043f\u043e\u043b\u0435\u0437\u043d\u0430\u044f \u0431\u0430\u0433\u0430, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c.\n\n\u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0432 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0438 \u043a\u043e\u0433\u0434\u0430 \u043a\u0442\u043e-\u0442\u043e \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0442 \u043a\u043e\u043c\u0443-\u0442\u043e \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442 \u0441\u0432\u043e\u0435\u0439 \u0431\u0430\u043d\u043a\u043e\u0432\u0441\u043a\u043e\u0439 \u043a\u0430\u0440\u0442\u044b \u0441 \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c\u0438 \u043d\u043e\u043c\u0435\u0440\u0430\u043c\u0438, \u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u0441\u043c\u043e\u0436\u0435\u0442 \u0441\u043d\u044f\u0442\u044c \u0446\u0435\u043d\u0437\u0443\u0440\u0443 \u0441 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0438 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u043a\u0430\u0440\u0442\u044b.\n\n\u0412 \u043f\u0440\u0438\u043c\u0435\u0440\u0435 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u043d\u043e\u043c \u0438\u043d\u0436\u0435\u043d\u0435\u0440\u0430\u043c\u0438 \u0438\u043c \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c 80 \u043f\u0440\u043e\u0446\u0435\u043d\u0442\u043e\u0432 \u0438\u0441\u0445\u043e\u0434\u043d\u043e\u0433\u043e \u043e\u0431\u0440\u0430\u0437\u0430, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438 \u0442\u043e\u043b\u044c\u043a\u043e \u0432\u0435\u0440\u0445\u043d\u0438\u0435 20 \u043f\u0440\u043e\u0446\u0435\u043d\u0442\u043e\u0432 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0431\u044b\u043b\u0438 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0435\u043d\u044b. \n\n\u041e\u043d\u0438 \u043e\u0431\u044a\u044f\u0441\u043d\u0438\u043b\u0438, \u0447\u0442\u043e \u043a\u043e\u0433\u0434\u0430 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0435 \u043e\u0431\u0440\u0435\u0437\u0430\u0435\u0442\u0441\u044f \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0440\u0430\u0437\u043c\u0435\u0442\u043a\u0438, \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u0432\u0435\u0440\u0441\u0438\u044f \u0441\u043d\u0438\u043c\u043a\u0430 \u044d\u043a\u0440\u0430\u043d\u0430 \u0441\u043e\u0445\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u0432 \u0442\u043e\u043c \u0436\u0435 \u043c\u0435\u0441\u0442\u0435, \u0447\u0442\u043e \u0438 \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b, \u043d\u043e \u043d\u0435 \u0443\u0434\u0430\u043b\u044f\u0435\u0442\u0441\u044f.\n\n\u042d\u0442\u043e \u043e\u0437\u043d\u0430\u0447\u0430\u0435\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0441\u0442\u0430\u0432\u0448\u0438\u0435\u0441\u044f \u0447\u0430\u0441\u0442\u0438 \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f. \n\n\u0411\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0441\u0430\u0439\u0442\u043e\u0432 \u0441\u043e\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439, \u0442\u0430\u043a\u0438\u0445 \u043a\u0430\u043a Twitter, \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u043e\u0431\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u044e\u0442 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u043f\u0440\u0438 \u0438\u0445 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0435, \u0442\u0435\u043c \u0441\u0430\u043c\u044b\u043c \u0443\u0434\u0430\u043b\u044f\u044f \u0441\u043b\u0435\u0434\u044b \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043e\u0441\u0442\u0430\u0432\u0448\u0438\u0435\u0441\u044f \u043d\u0430 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0438.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0432 Discord \u043b\u044e\u0431\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f, \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u043d\u044b\u0435 \u043d\u0430 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435 \u0434\u043e 17 \u044f\u043d\u0432\u0430\u0440\u044f, \u043c\u043e\u0433\u0443\u0442 \u0432\u0441\u0435 \u0435\u0449\u0435 \u0438\u043c\u0435\u0442\u044c \u044d\u0442\u043e\u0442 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a.\n\n\u0412 \u0446\u0435\u043b\u043e\u043c, \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0439 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442 \u0434\u043b\u044f OSINT\u0435\u0440\u0430, \u0442\u0430\u043a \u043a\u0430\u043a \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u043e \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u0435, \u043d\u0435\u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u043e\u0439 \u0444\u043e\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0438.", "creation_timestamp": "2023-03-21T19:25:56.000000Z"}, {"uuid": "dea1e5ca-8584-4f03-a9fd-77e492e746a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2895", "content": "kAFL\n\nA fuzzer for full VM kernel/driver targets.\n\nhttps://github.com/IntelLabs/kAFL\n\n#cybersecurity #infosec #linux\n\n\u200b\u200bfavfound (criminalip api)\n\nThis code was made to extract the fabicon hash from your desired IP address or URL. You can also see all the IP addresses that are associated with the fabicon hash value. I used an OSINT search engine similar to Shodan and Censys called CriminalIP and the API from their free service.\n\nhttps://github.com/elihypoo414/favfound\n\n#cybersecurity #infosec\n\n\u200b\u200bmssql-spider\n\nAutomated exploitation of MSSQL user impersonation and linked instances.\n\nhttps://github.com/dadevel/mssql-spider\n\n#infosec #pentesting #redteam\n\n\u200b\u200bdontgo403\n\nTool to bypass 40X response codes.\n\nhttps://github.com/devploit/dontgo403\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bWeb application pentesting checklist\n\nA OWASP Based Checklist With 500+ Test Cases.\n\nhttps://github.com/Hari-prasaanth/Web-App-Pentest-Checklist\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bsonos/amlogic haxx\n\nhere you will find some exploit & tool code that was part of my presentation about the Sonos One @ Hack in the Box amsterdam 2023. the EL3 exploit can be used to dump your OTP/eFUSE data. sonostool can be used to get decryption keys for Sonos LUKS volumes as well as fetch and decrypt OTA updates without using a sonos device as an oracle.\n\nhttps://github.com/blasty/sonos\n\n#cybersecurity #infosec #exploit\n\n\u200b\u200baCropalypse gif\n\naCropalypse CVE-2023-21036 related GIF PoC. The aCropalypse reported affects PNG, but a similar exploit exists in GIF images.\n\nhttps://github.com/heriet/acropalypse-gif\n\n#infosec #cve #poc\n\n\u200b\u200budpx\n\nFast and lightweight, UDPX is a single-packet UDP scanner written in Go that supports the discovery of over 45 services with the ability to add custom ones. It is easy to use and portable, and can be run on Linux, Mac OS, and Windows. Unlike internet-wide scanners like zgrab2 and zmap, UDPX is designed for portability and ease of use.\n\nhttps://github.com/nullt3r/udpx\n\n#pentesting #infosec #redteam\n\n\u200b\u200bSQLRecon\n\nA C# MS-SQL toolkit designed for offensive reconnaissance and post-exploitation. For detailed usage information on each technique, refer to the wiki.\n\nhttps://github.com/xforcered/SQLRecon\n\nDetails:\nhttps://github.com/skahwah/Conference-Talks/tree/main/2022-Way-West-Hackin-Fest\n\n#infosec #pentesting #redteam\n\n\u200b\u200bTeamFiltration\n\nTeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts.\n\nhttps://github.com/Flangvik/TeamFiltration\n\n#infosec #cybersec \n\nhttps://t.me/dilagrafie\nhttps://t.me/HackerFactory\n\n2/2", "creation_timestamp": "2023-04-24T14:53:17.000000Z"}, {"uuid": "86974265-306c-4df0-8083-0e30d32370a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/zero_day_uz/320", "content": "Exploiting aCropalypse: Recovering Truncated PNGs (CVE-2023-21036)\nVulnerability in the Google Pixel's inbuilt screenshot editing tool, Markup, enabling partial recovery of the original, unedited image data of a cropped and/or redacted screenshot.\nhttps://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html\nReport: https://issuetracker.google.com/issues/180526528\nVulnerability online test: https://acropalypse.app/", "creation_timestamp": "2023-04-08T01:46:05.000000Z"}, {"uuid": "c225943d-c1c6-443d-af61-f209a65c5987", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/jokerplstaeen/17285", "content": "\u200b\u200baCropalypse gif\n\naCropalypse CVE-2023-21036 related GIF PoC. The aCropalypse reported affects PNG, but a similar exploit exists in GIF images.\n\nhttps://github.com/heriet/acropalypse-gif\n\n#infosec #cve #poc", "creation_timestamp": "2023-05-23T17:56:34.000000Z"}, {"uuid": "b360809d-e984-4463-91fb-7d003c3e743f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/2795", "content": "\ud83d\udd25Exploiting aCropalypse: Recovering Truncated PNGs.\naCropalypse(CVE-2023-21036, Information disclosure in Pixel's Markup) is a serious privacy vulnerability in the Google Pixel's inbuilt screenshot editing tool, Markup, enabling partial recovery of the original, unedited image data of a cropped and/or redacted screenshot.\n\n\ud83d\udd16Demo available here.", "creation_timestamp": "2023-03-20T14:22:52.000000Z"}, {"uuid": "4117d351-97b4-4372-ae7c-ac871fee2bed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "https://t.me/xakep_ru/13778", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c aCropalypse \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f, \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u0430\u0445 Pixel\n\n\u0412 2018 \u0433\u043e\u0434\u0443, \u0441 \u0440\u0435\u043b\u0438\u0437\u043e\u043c Android 9.0 Pie \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u044b Pixel \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u0432\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0439 \u0440\u0435\u0434\u0430\u043a\u0442\u043e\u0440 \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u043e\u0432 Markup. \u0421\u043f\u0443\u0441\u0442\u044f \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u0442\u044b\u0440\u0435\u0445 \u043b\u0435\u0442 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0432 \u044d\u0442\u043e\u043c \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c aCropalypse (CVE-2023-21036), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043e\u0442\u043c\u0435\u043d\u0438\u0442\u044c \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f, \u0441\u0434\u0435\u043b\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u0430\u0445 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f\u0445 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e Markup, \u0432\u044b\u044f\u0432\u0438\u0432 \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b\u044c\u043d\u043e\u0435 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0431\u044b\u043b\u043e \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043e \u0438\u043b\u0438 \u0437\u0430\u043c\u0430\u0441\u043a\u0438\u0440\u043e\u0432\u0430\u043d\u043e.\n\nhttps://xakep.ru/2023/03/21/acropalypse/", "creation_timestamp": "2023-03-21T09:54:48.000000Z"}, {"uuid": "c1f26e94-ece1-4d45-b4f6-a1ccacbe51ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "seen", "source": "https://t.me/cibsecurity/60663", "content": "\u203c CVE-2023-21036 \u203c\n\nIn BitmapExport.java, there is a possible failure to truncate images due to a logic error in the code.Product: AndroidVersions: Android kernelAndroid ID: A-264261868References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-24T23:42:43.000000Z"}, {"uuid": "dee51d91-5d0b-4977-bce0-c3812f10398d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/androidMalware/1819", "content": "Exploiting aCropalypse: Recovering Truncated PNGs (CVE-2023-21036)\nVulnerability in the Google Pixel's inbuilt screenshot editing tool, Markup, enabling partial recovery of the original, unedited image data of a cropped and/or redacted screenshot.\nhttps://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html\nReport: https://issuetracker.google.com/issues/180526528\nVulnerability online test: https://acropalypse.app/", "creation_timestamp": "2023-03-20T08:07:29.000000Z"}, {"uuid": "d8191ea4-6996-49b3-bdd1-743675e9b2f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/Russian_OSINT/2384", "content": "\u0412\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 \u0443\u0442\u0438\u043b\u0438\u0442\u0435 Pixel \u0434\u043b\u044f \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u043e\u0432 Markup, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u044b\u0435 \u0438\u043b\u0438 \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u0443\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0440\u0435\u0432\u0435\u0440\u0441-\u0438\u043d\u0436\u0435\u043d\u0435\u0440\u0430\u043c\u0438 \u0421\u0430\u0439\u043c\u043e\u043d\u043e\u043c \u0410\u0430\u0440\u043e\u043d\u0441\u043e\u043c \u0438 \u0414\u044d\u0432\u0438\u0434\u043e\u043c \u0411\u044c\u044e\u043a\u0435\u043d\u0435\u043d\u043e\u043c, \u043e \u0447\u0435\u043c Google \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u0432 \u043d\u0430\u0447\u0430\u043b\u0435 \u044f\u043d\u0432\u0430\u0440\u044f.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0431\u044b\u043b \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d \u0432 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0438 \u043e\u0442 \u043c\u0430\u0440\u0442\u0430 2023 \u0433\u043e\u0434\u0430, \u043e\u0434\u043d\u0430\u043a\u043e \u0441\u0442\u0430\u0440\u044b\u0435 \u0444\u043e\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0438 \u0432\u0441\u0435 \u0435\u0449\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0440\u0438\u0441\u043a\u0443.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 Acropalypse \u0438\u043b\u0438, \u0431\u043e\u043b\u0435\u0435 \u0444\u043e\u0440\u043c\u0430\u043b\u044c\u043d\u043e, CVE-2023-21036.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0434\u0430\u0436\u0435 \u0440\u0430\u0437\u043c\u0435\u0441\u0442\u0438\u043b\u0438 (acropalypse.app) \u043e\u043d\u043b\u0430\u0439\u043d-\u0443\u0442\u0438\u043b\u0438\u0442\u0443 \u0434\u043b\u044f \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442\u043e\u0432 Acropalypse, \u0447\u0442\u043e\u0431\u044b \u0432\u043b\u0430\u0434\u0435\u043b\u044c\u0446\u044b Pixel (\u0438 \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e) \u043c\u043e\u0433\u043b\u0438 \u043f\u0440\u043e\u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0441\u0432\u043e\u0438 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0435 \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c, \u043c\u043e\u0436\u043d\u043e \u043b\u0438 \u0438\u0445 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c.\n\n\u0414\u043b\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 \u0442\u043e\u0436\u0435 \u0432\u0435\u0441\u044c\u043c\u0430 \u043f\u043e\u043b\u0435\u0437\u043d\u0430\u044f \u0431\u0430\u0433\u0430, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c.\n\n\u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0432 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0438 \u043a\u043e\u0433\u0434\u0430 \u043a\u0442\u043e-\u0442\u043e \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0442 \u043a\u043e\u043c\u0443-\u0442\u043e \u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442 \u0441\u0432\u043e\u0435\u0439 \u0431\u0430\u043d\u043a\u043e\u0432\u0441\u043a\u043e\u0439 \u043a\u0430\u0440\u0442\u044b \u0441 \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c\u0438 \u043d\u043e\u043c\u0435\u0440\u0430\u043c\u0438, \u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u0441\u043c\u043e\u0436\u0435\u0442 \u0441\u043d\u044f\u0442\u044c \u0446\u0435\u043d\u0437\u0443\u0440\u0443 \u0441 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0438 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u043a\u0430\u0440\u0442\u044b.\n\n\u0412 \u043f\u0440\u0438\u043c\u0435\u0440\u0435 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u043d\u043e\u043c \u0438\u043d\u0436\u0435\u043d\u0435\u0440\u0430\u043c\u0438 \u0438\u043c \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c 80 \u043f\u0440\u043e\u0446\u0435\u043d\u0442\u043e\u0432 \u0438\u0441\u0445\u043e\u0434\u043d\u043e\u0433\u043e \u043e\u0431\u0440\u0430\u0437\u0430, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438 \u0442\u043e\u043b\u044c\u043a\u043e \u0432\u0435\u0440\u0445\u043d\u0438\u0435 20 \u043f\u0440\u043e\u0446\u0435\u043d\u0442\u043e\u0432 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0431\u044b\u043b\u0438 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0435\u043d\u044b. \n\n\u041e\u043d\u0438 \u043e\u0431\u044a\u044f\u0441\u043d\u0438\u043b\u0438, \u0447\u0442\u043e \u043a\u043e\u0433\u0434\u0430 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0435 \u043e\u0431\u0440\u0435\u0437\u0430\u0435\u0442\u0441\u044f \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0440\u0430\u0437\u043c\u0435\u0442\u043a\u0438, \u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u0432\u0435\u0440\u0441\u0438\u044f \u0441\u043d\u0438\u043c\u043a\u0430 \u044d\u043a\u0440\u0430\u043d\u0430 \u0441\u043e\u0445\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u0432 \u0442\u043e\u043c \u0436\u0435 \u043c\u0435\u0441\u0442\u0435, \u0447\u0442\u043e \u0438 \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b, \u043d\u043e \u043d\u0435 \u0443\u0434\u0430\u043b\u044f\u0435\u0442\u0441\u044f.\n\n\u042d\u0442\u043e \u043e\u0437\u043d\u0430\u0447\u0430\u0435\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0441\u0442\u0430\u0432\u0448\u0438\u0435\u0441\u044f \u0447\u0430\u0441\u0442\u0438 \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f. \n\n\u0411\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0441\u0430\u0439\u0442\u043e\u0432 \u0441\u043e\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439, \u0442\u0430\u043a\u0438\u0445 \u043a\u0430\u043a Twitter, \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u043e\u0431\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u044e\u0442 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u043f\u0440\u0438 \u0438\u0445 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0435, \u0442\u0435\u043c \u0441\u0430\u043c\u044b\u043c \u0443\u0434\u0430\u043b\u044f\u044f \u0441\u043b\u0435\u0434\u044b \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043e\u0441\u0442\u0430\u0432\u0448\u0438\u0435\u0441\u044f \u043d\u0430 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0438.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0432 Discord \u043b\u044e\u0431\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f, \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u043d\u044b\u0435 \u043d\u0430 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435 \u0434\u043e 17 \u044f\u043d\u0432\u0430\u0440\u044f, \u043c\u043e\u0433\u0443\u0442 \u0432\u0441\u0435 \u0435\u0449\u0435 \u0438\u043c\u0435\u0442\u044c \u044d\u0442\u043e\u0442 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a.\n\n\u0412 \u0446\u0435\u043b\u043e\u043c, \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0439 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442 \u0434\u043b\u044f OSINT\u0435\u0440\u0430, \u0442\u0430\u043a \u043a\u0430\u043a \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u043e \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u0435, \u043d\u0435\u043e\u0442\u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u043e\u0431\u0440\u0435\u0437\u0430\u043d\u043d\u043e\u0439 \u0444\u043e\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0438.", "creation_timestamp": "2023-03-22T06:33:02.000000Z"}, {"uuid": "b7671f31-9968-490b-980e-8cce0f23e250", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21036", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8162", "content": "#exploit\n1. CVE-2023-21036,\u00a0CVE-2023-28303:\naCropalypse Vulnerability and Restoration of GIF Images\nhttps://zenn.dev/heriet/articles/acropalypse-gif\n]-> https://github.com/heriet/acropalypse-gif\n\n2. CVE-2023-2017:\nShopware 6 Server-side Template Injection (SSTI) via Twig Security Extension\nhttps://starlabs.sg/advisories/23/23-2017", "creation_timestamp": "2023-04-22T12:47:01.000000Z"}]}