{"vulnerability": "CVE-2023-2495", "sightings": [{"uuid": "805c29c2-e923-4041-b954-61e7d1aec991", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2024-03-26T18:10:02.000000Z"}, {"uuid": "10226478-d5f3-4a95-ae7b-1b5947437f5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "623cc956-a22f-4fb9-ba71-4fb060b4ad50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:51.000000Z"}, {"uuid": "d8619d2e-d361-4b6b-82cb-b53e9fd637f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:53.000000Z"}, {"uuid": "6aeab5e5-b6c4-490a-a682-fdb6a7fe5491", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://gist.github.com/b0x-Protector/54966a6f2330dce5c2ea250f6fad054b", "content": "", "creation_timestamp": "2025-06-06T13:00:00.000000Z"}, {"uuid": "460a7b37-ebc5-4945-aa09-ff3878932c69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://gist.github.com/MNESTRASHNO/1aa8d4842cfcde05c168749239562e88", "content": "", "creation_timestamp": "2025-05-14T12:27:34.000000Z"}, {"uuid": "4dff84b5-33fd-4132-8d5d-823571e5713e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/sharepoint_dynamic_proxy_generator_auth_bypass_rce.rb", "content": "", "creation_timestamp": "2024-03-26T18:07:11.000000Z"}, {"uuid": "c69c8574-e523-4263-b172-b7f42241a9ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:00.000000Z"}, {"uuid": "6e85f42f-d0d9-4a07-a252-9a7f7562bf1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://bsky.app/profile/hivesystems.com/post/3lukllprrr32u", "content": "", "creation_timestamp": "2025-07-22T13:15:38.741159Z"}, {"uuid": "f9c584e5-2181-4d23-b38f-01dde4d89104", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://gist.github.com/TrinhNoBamBum/1f3465f4483d70013ccd886a02d21555", "content": "", "creation_timestamp": "2026-01-07T08:21:11.000000Z"}, {"uuid": "0336b40d-639e-4c0b-a4ac-9b948c5f115d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/92582bf5-d92c-47fe-b891-656d271bbfef", "content": "", "creation_timestamp": "2024-10-14T15:50:35.983245Z"}, {"uuid": "51b04d7e-09ed-4c7e-a450-802e6ee792d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/2ffa952e-c70f-47e0-896d-476004f10415", "content": "", "creation_timestamp": "2026-02-02T12:26:39.684020Z"}, {"uuid": "4358f4cc-8d9c-4a59-b6cf-da5ba0ca6636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "Telegram/cEQJEDtbIaYIFdEi6X-y8rT-X2oB-YOxTiiv80lNX485A7k", "content": "", "creation_timestamp": "2024-03-27T16:06:24.000000Z"}, {"uuid": "90c43273-fce1-4853-87dc-1a07bccd147c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24953", "type": "published-proof-of-concept", "source": "https://t.me/cKure/10992", "content": "Microsoft Excel Remote Code Execution Vulnerability.\n\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24953\n\nhttps://twitter.com/TecR0c/status/1656306296931471365", "creation_timestamp": "2023-05-12T10:24:32.000000Z"}, {"uuid": "cb0e9255-ea49-4302-a675-77684c4c50ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24953", "type": "published-proof-of-concept", "source": "https://t.me/ckuRED/285", "content": "Microsoft Excel Remote Code Execution Vulnerability.\n\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24953\n\nhttps://twitter.com/TecR0c/status/1656306296931471365", "creation_timestamp": "2023-05-12T10:24:23.000000Z"}, {"uuid": "9f50260d-c705-4272-a4fe-35b32a9ba67f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/hackingbra/62", "content": "PoC: SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 &amp; CVE-2023-24955\n\nBlog: [P2O Vancouver 2023] SharePoint Pre-Auth RCE chain (CVE-2023\u201329357 &amp; CVE-2023\u201324955)", "creation_timestamp": "2024-01-09T16:52:39.000000Z"}, {"uuid": "dd0ca624-22e4-4c17-bac3-edb3e59a7d36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/itsec_news/3973", "content": "\u200b\u26a1\ufe0fCVE-2023-29357 \u0432 SharePoint: \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044f\u043c \u0441\u0442\u0430\u043b\u043e \u0435\u0449\u0435 \u043f\u0440\u043e\u0449\u0435 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\n\n\ud83d\udcac\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e \u0441\u0435\u0440\u044c\u0451\u0437\u043d\u043e\u0439 \u0443\u0433\u0440\u043e\u0437\u0435: \u043f\u0440\u0435\u0441\u0442\u0443\u043f\u043d\u0438\u043a\u0438, \u0437\u0430\u043d\u0438\u043c\u0430\u044e\u0449\u0438\u0435\u0441\u044f \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0435\u043c \u0432\u0438\u0440\u0443\u0441\u043e\u0432-\u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439, \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u0432 \u0441\u0432\u043e\u0451 \u0440\u0430\u0441\u043f\u043e\u0440\u044f\u0436\u0435\u043d\u0438\u0435 \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 Microsoft SharePoint . \u042d\u0442\u043e\u0442 \u0431\u0430\u0433, \u0438\u043c\u0435\u044e\u0449\u0438\u0439 \u043f\u043e\u0447\u0442\u0438 \u0433\u043e\u0434\u0438\u0447\u043d\u0443\u044e \u0434\u0430\u0432\u043d\u043e\u0441\u0442\u044c, \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0431\u044b\u043b \u0432\u043a\u043b\u044e\u0447\u0435\u043d \u0432 \u0441\u043f\u0438\u0441\u043e\u043a \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c, \u0442\u0440\u0435\u0431\u0443\u044e\u0449\u0438\u0445 \u043d\u0435\u043c\u0435\u0434\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f, \u043f\u043e \u0432\u0435\u0440\u0441\u0438\u0438 \u0410\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u0430 \u043f\u043e \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0437\u0430\u0449\u0438\u0442\u0435 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b (CISA).\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u043f\u043e \u0434\u0430\u043d\u043d\u044b\u043c CISA, \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435 \u044d\u0442\u043e\u0433\u043e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0445 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0439 \u043f\u043e\u043a\u0430 \u043d\u0435 \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u043e.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0430\u044f \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2023-29357, \u0431\u044b\u043b\u0430 \u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u041d\u0433\u0443\u0435\u043d \u0422\u0438\u0435\u043d\u043e\u043c \u0413\u0438\u0430\u043d\u0433\u043e\u043c \u0438\u0437 \u0441\u0438\u043d\u0433\u0430\u043f\u0443\u0440\u0441\u043a\u043e\u0439 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 STAR Labs. \u0412 \u0445\u043e\u0434\u0435 \u043a\u043e\u043d\u043a\u0443\u0440\u0441\u0430 Pwn2Own, \u043f\u0440\u043e\u0445\u043e\u0434\u0438\u0432\u0448\u0435\u0433\u043e \u0432 \u0412\u0430\u043d\u043a\u0443\u0432\u0435\u0440\u0435 \u0432 \u043c\u0430\u0440\u0442\u0435 2023 \u0433\u043e\u0434\u0430, \u0413\u0438\u0430\u043d\u0433\u0443 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0435\u0451 \u0441\u043e\u0432\u043c\u0435\u0441\u0442\u043d\u043e \u0441 \u0434\u0440\u0443\u0433\u0438\u043c \u0431\u0430\u0433\u043e\u043c \u0434\u043b\u044f \u0434\u043e\u0441\u0442\u0438\u0436\u0435\u043d\u0438\u044f \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 SharePoint.\n\nCVE-2023-29357 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0441 \u043e\u0446\u0435\u043d\u043a\u043e\u0439 \u0441\u0435\u0440\u044c\u0451\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 9.8 \u0431\u0430\u043b\u043b\u043e\u0432. Microsoft \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0432 \u0438\u044e\u043d\u0435 2023 \u0433\u043e\u0434\u0430, \u0430 \u0413\u0438\u0430\u043d\u0433 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0441\u044f \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u044f\u043c\u0438 \u043e \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0441\u043f\u0443\u0441\u0442\u044f \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043c\u0435\u0441\u044f\u0446\u0435\u0432, \u0432 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u0435.\n\n\u041d\u0430 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0439 \u0434\u0435\u043d\u044c \u043f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0413\u0438\u0430\u043d\u0433\u0430 \u043d\u0430 GitHub \u0431\u044b\u043b \u0432\u044b\u043b\u043e\u0436\u0435\u043d \u043f\u0440\u043e\u0442\u043e\u0442\u0438\u043f \u043a\u043e\u0434\u0430 CVE-2023-29357. \u041e\u0434\u043d\u0430\u043a\u043e \u044d\u0442\u043e\u0442 \u043a\u043e\u0434 \u043d\u0435 \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u043b \u0438\u043d\u0441\u0442\u0440\u0443\u043a\u0446\u0438\u0439 \u043f\u043e \u0435\u0433\u043e \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u0438 \u0441 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f CVE-2023-24955, \u0447\u0442\u043e \u0431\u044b\u043b\u043e \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u043a\u043e\u043c\u043f\u043b\u0435\u043a\u0441\u043d\u043e\u0433\u043e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430. \u0418\u043c\u0435\u043d\u043d\u043e \u0442\u0430\u043a\u043e\u0439 \u043f\u043e\u0434\u0445\u043e\u0434 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b \u0413\u0438\u0430\u043d\u0433\u0443 \u0432\u044b\u0438\u0433\u0440\u0430\u0442\u044c \u043f\u0440\u0438\u0437 \u0432 \u0440\u0430\u0437\u043c\u0435\u0440\u0435 $100,000 \u043d\u0430 Pwn2Own.\n\n\u041e\u0434\u0438\u043d \u0438\u0437 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u2013 \u041a\u0435\u0432\u0438\u043d \u0411\u043e\u043c\u043e\u043d\u0442 , \u0432\u044b\u0440\u0430\u0437\u0438\u043b \u043c\u043d\u0435\u043d\u0438\u0435, \u0447\u0442\u043e \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u044d\u0442\u0438\u0445 \u0434\u0435\u0444\u0435\u043a\u0442\u043e\u0432 \u043c\u043e\u0433\u0443\u0442 \u043d\u0430\u0447\u0430\u0442\u044c\u0441\u044f \u0443\u0436\u0435 \u0432 \u0431\u043b\u0438\u0436\u0430\u0439\u0448\u0438\u0435 \u043d\u0435\u0434\u0435\u043b\u0438.\n\n\u041a\u0430\u043a \u043f\u0440\u0430\u0432\u0438\u043b\u043e, \u043f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u043a\u043e\u043d\u0446\u0435\u043f\u0446\u0438\u0438 \u0434\u043b\u044f \u043b\u044e\u0431\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u043e \u0430\u0442\u0430\u043a \u0440\u0435\u0437\u043a\u043e \u0432\u043e\u0437\u0440\u0430\u0441\u0442\u0430\u0435\u0442. \u0421\u0435\u0439\u0447\u0430\u0441 \u0437\u0430\u0434\u0435\u0440\u0436\u043a\u0430 \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0442\u0435\u043c, \u0447\u0442\u043e CVE-2023-29357 \u0438 CVE-2023-24955 \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u0441\u043b\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u043c\u0431\u0438\u043d\u0438\u0440\u043e\u0432\u0430\u0442\u044c. \u041f\u043e \u0441\u043b\u043e\u0432\u0430\u043c \u0413\u0438\u0430\u043d\u0433\u0430, \u0435\u0433\u043e \u043a\u043e\u043c\u0430\u043d\u0434\u0435 \u043f\u043e\u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043b\u0441\u044f \u043f\u043e\u0447\u0442\u0438 \u0433\u043e\u0434 \u0443\u0441\u0438\u043b\u0438\u0439 \u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0439.\n\nMicrosoft \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f CVE-2023-29357 \u0432 \u0438\u044e\u043d\u0435 \u0438 \u0434\u043b\u044f CVE-2023-24955 \u0432 \u043c\u0430\u0435 2023 \u0433\u043e\u0434\u0430. \u041e\u0434\u043d\u0430\u043a\u043e \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430\u043c \u043d\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u044e\u0442, \u0447\u0442\u043e \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435 \u0438\u044e\u043d\u044c\u0441\u043a\u0438\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u043d\u0435 \u0433\u0430\u0440\u0430\u043d\u0442\u0438\u0440\u0443\u0435\u0442 \u043f\u043e\u043b\u043d\u0443\u044e \u0437\u0430\u0449\u0438\u0442\u0443. \u0422\u0440\u0435\u0431\u0443\u044e\u0442\u0441\u044f \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u043f\u0430\u0442\u0447\u0438 \u0434\u043b\u044f SharePoint, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0435 \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0447\u0435\u0440\u0435\u0437 Windows Update.\n\nCVE-2023-24955 \u0442\u0430\u043a\u0436\u0435 \u043e\u0446\u0435\u043d\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043b\u0435\u0433\u043a\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u0430\u044f, \u0441 \u043c\u0435\u043d\u0435\u0435 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u043c \u0440\u0435\u0439\u0442\u0438\u043d\u0433\u043e\u043c - 7.2, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0434\u043b\u044f \u0435\u0451 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u0442\u0440\u0435\u0431\u0443\u044e\u0442\u0441\u044f \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438.\n\n\u0421\u043e\u0433\u043b\u0430\u0441\u043d\u043e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e\u0442 NHS Digital, \u0432 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0432 \u0441\u0435\u0442\u0438 \u043d\u0435\u0442 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u043f\u0440\u043e\u0442\u043e\u0442\u0438\u043f\u043e\u0432 \u043a\u043e\u0434\u0430 \u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 RCE. \u0410 \u0437\u043d\u0430\u0447\u0438\u0442, \u0442\u0435, \u043a\u0442\u043e \u0435\u0451 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442, \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043b\u0438 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0441\u0430\u043c\u043e\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0438 \u0434\u0435\u0440\u0436\u0430\u0442 \u0435\u0433\u043e \u0432 \u0441\u0435\u043a\u0440\u0435\u0442\u0435. \u042d\u0442\u043e \u043f\u043e\u0434\u0447\u0435\u0440\u043a\u0438\u0432\u0430\u0435\u0442 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u043d\u043e\u0439 \u0431\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u0432\u043e\u0435\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0433\u043e \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0441\u043e \u0441\u0442\u043e\u0440\u043e\u043d\u044b IT-\u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u043e\u0432.\n\n\u0421\u0438\u0442\u0443\u0430\u0446\u0438\u044f \u043d\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u0435\u0442 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u043c\u0438\u0440 \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e \u044d\u0432\u043e\u043b\u044e\u0446\u0438\u043e\u043d\u0438\u0440\u0443\u0435\u0442, \u0438 \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0435 \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u0430 \u043d\u043e\u0432\u044b\u0435 \u0443\u0433\u0440\u043e\u0437\u044b, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0440\u0435\u0433\u0443\u043b\u044f\u0440\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0441\u0438\u0441\u0442\u0435\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u044b \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439. \u041e\u043d\u0430 \u0442\u0430\u043a\u0436\u0435 \u0441\u043b\u0443\u0436\u0438\u0442 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0435\u043c \u0434\u043b\u044f \u0432\u0441\u0435\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 SharePoint \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u043d\u0435\u0434\u043e\u043e\u0446\u0435\u043d\u043a\u0430 \u043a\u0438\u0431\u0435\u0440\u0443\u0433\u0440\u043e\u0437 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u043c \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f\u043c \u0438 \u043f\u043e\u0442\u0435\u0440\u044f\u043c.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2024-01-13T15:22:44.000000Z"}, {"uuid": "6cdb4d7b-e6bc-43b5-902e-a9ecb9bfd98c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6887", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aRCE exploit for Microsoft SharePoint 2019\nURL\uff1ahttps://github.com/AndreOve/CVE-2023-24955-real-RCE\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-03-30T18:01:08.000000Z"}, {"uuid": "a62f6328-dcf1-423a-8f59-ecf569dcb0b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/orderofsixangles/2045", "content": "SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 &amp; CVE-2023-24955 PoC \n\nhttps://gist.github.com/testanull/dac6029d306147e6cc8dce9424d09868", "creation_timestamp": "2023-12-15T08:55:17.000000Z"}, {"uuid": "9f3de6cb-6160-43c2-b23c-7b3e0a0bc489", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "Telegram/SZk8NRCZ7FXh7k4BhOJ3mfWRz_CzOmuvpeX9037YyTknKg", "content": "", "creation_timestamp": "2024-03-27T15:22:23.000000Z"}, {"uuid": "f02c7b3f-8f67-4c71-bd9d-cfc6087d5e22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/l_Q5Q/16550", "content": "PoC: SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 &amp; CVE-2023-24955\n\nhttps://gist.github.com/testanull/dac6029d306147e6cc8dce9424d09868\n\nBlog: [P2O Vancouver 2023] SharePoint Pre-Auth RCE chain (CVE-2023\u201329357 &amp; CVE-2023\u201324955)\n\nhttps://starlabs.sg/blog/2023/09-sharepoint-pre-auth-rce-chain/", "creation_timestamp": "2024-02-14T18:51:29.000000Z"}, {"uuid": "f3344df8-cffd-407d-a429-4001381c54c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "Telegram/zMTaW3HdITjj7P0tZ3hNUmEbRjGMuiOXAf6UIbOFuxgC_Q", "content": "", "creation_timestamp": "2024-03-28T19:27:05.000000Z"}, {"uuid": "e6895ec2-1c9f-4fae-823f-cc6f87e980ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/tengkorakcybercrewz/4450", "content": "The Hacker News\nCISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has&nbsp;added&nbsp;a security flaw impacting the Microsoft Sharepoint Server to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation in the wild.\nThe vulnerability, tracked as CVE-2023-24955 (CVSS score: 7.2), is a critical remote code execution flaw that allows an authenticated attacker with", "creation_timestamp": "2024-03-27T15:22:25.000000Z"}, {"uuid": "a6229758-8922-4a0e-a54e-f8c36aceeacb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/darkcommunityofficial/204", "content": "PoC: SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 &amp; CVE-2023-24955\n\nBlog: [P2O Vancouver 2023] SharePoint Pre-Auth RCE chain (CVE-2023\u201329357 &amp; CVE-2023\u201324955)", "creation_timestamp": "2023-12-19T17:28:22.000000Z"}, {"uuid": "356814c9-e29c-4e0a-94ad-c094554e0bcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/arpsyndicate/2210", "content": "#ExploitObserverAlert\n\nCVE-2023-24955\n\nDESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-24955. Microsoft SharePoint Server Remote Code Execution Vulnerability\n\nFIRST-EPSS: 0.359560000\nNVD-IS: 5.9\nNVD-ES: 1.2", "creation_timestamp": "2023-12-29T08:03:16.000000Z"}, {"uuid": "c6ec3289-493a-45ba-9806-c908cf18f8d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "Telegram/kZvSmPXfFK7qvGXGSjgAtayK34hj6ZXisxjseOa9aYCK0w", "content": "", "creation_timestamp": "2024-03-27T17:27:51.000000Z"}, {"uuid": "84434375-8b4a-4b05-8fcf-e43351633cf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/tengkorakcybercrewz/834", "content": "The Hacker News\nCISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has&nbsp;added&nbsp;a security flaw impacting the Microsoft Sharepoint Server to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation in the wild.\nThe vulnerability, tracked as CVE-2023-24955 (CVSS score: 7.2), is a critical remote code execution flaw that allows an authenticated attacker with", "creation_timestamp": "2024-03-27T15:22:25.000000Z"}, {"uuid": "e2352adb-862d-4227-9954-b035f7810a2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/KomunitiSiber/1698", "content": "CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability\nhttps://thehackernews.com/2024/03/cisa-warns-hackers-actively-attacking.html\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has\u00a0added\u00a0a security flaw impacting the Microsoft Sharepoint Server to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation in the wild.\nThe vulnerability, tracked as CVE-2023-24955 (CVSS score: 7.2), is a critical remote code execution flaw that allows an authenticated attacker with", "creation_timestamp": "2024-03-27T16:22:59.000000Z"}, {"uuid": "3a01d4d0-1ad0-4bc2-9fa1-079fea830535", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/true_secator/4360", "content": "\u041c\u0430\u0439\u0441\u043a\u0438\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Microsoft PatchTuesday \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f 40 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0438 \u0434\u0432\u0435 0-day, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0443\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432 \u0430\u0442\u0430\u043a\u0430\u0445.\n\n\u041e\u0434\u043d\u0430 \u0438\u0437 0-day,\u00a0CVE-2023-29336, \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u0443 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0435 Win32k, \u0443\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438.\n\n\u042d\u0442\u043e\u0442 \u0442\u0438\u043f \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u043e\u0431\u044b\u0447\u043d\u043e \u0441\u043e\u0447\u0435\u0442\u0430\u0435\u0442\u0441\u044f \u0441 RCE-\u043e\u0448\u0438\u0431\u043a\u043e\u0439 \u0434\u043b\u044f \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e.\n\n\u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f, \u0447\u0442\u043e \u043e\u0431 \u044d\u0442\u043e\u043c \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 Avast, \u044d\u0442\u043e \u043a\u0430\u0436\u0435\u0442\u0441\u044f \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u044b\u043c \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0435\u043c. \u041d\u043e Microsoft \u0442\u0440\u0430\u0434\u0438\u0446\u0438\u043e\u043d\u043d\u043e \u0441\u043e\u0445\u0440\u0430\u043d\u044f\u0435\u0442 \u0432 \u0442\u0430\u0439\u043d\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043e\u0431 \u0430\u0442\u0430\u043a\u0430\u0445 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u044d\u0442\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u0421\u043e\u0433\u043b\u0430\u0441\u043d\u043e ESET \u0438 SentinelOne, \u0434\u0440\u0443\u0433\u0430\u044f CVE-2023-24932 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0441 \u0444\u0438\u0437\u0438\u0447\u0435\u0441\u043a\u0438\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c \u0438\u043b\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u043c\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u0441\u0430\u043c\u043e\u0437\u0430\u0432\u0435\u0440\u044f\u044e\u0449\u0438\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 UEFI.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0431\u0443\u0442\u043a\u0438\u0442\u043e\u043c BlackLotus UEFI, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0441\u044f \u0432 \u043e\u043a\u0442\u044f\u0431\u0440\u0435 2022 \u0433\u043e\u0434\u0430 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u0435\u043d \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u044b \u0437\u0430\u0449\u0438\u0442\u044b \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u043c\u0430\u0448\u0438\u043d\u0430\u0445.\n\n\u041d\u043e \u0441\u0442\u043e\u0438\u0442 \u0443\u0447\u0438\u0442\u044b\u0432\u0430\u0442\u044c, \u0447\u0442\u043e \u043c\u0430\u0439\u0441\u043a\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 Microsoft \u043d\u0435 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u0442 \u043f\u043e\u043b\u043d\u043e\u0433\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f, \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u044f \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u044b \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u0434\u043b\u044f \u0440\u0443\u0447\u043d\u043e\u0433\u043e \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438. \n\n\u0410\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0435 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0435 \u0444\u0430\u0439\u043b\u043e\u0432 \u043e\u0442\u0437\u044b\u0432\u0430 \u0431\u0443\u0434\u0435\u0442 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u043e \u0432 \u0438\u044e\u043b\u044c\u0441\u043a\u0438\u0439 PatchTuesday, \u0430 \u043f\u0440\u0438\u043d\u0443\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0442\u044c\u0441\u044f - \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 \u043f\u0435\u0440\u0432\u043e\u0433\u043e \u043a\u0432\u0430\u0440\u0442\u0430\u043b\u0430 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0433\u043e \u0433\u043e\u0434\u0430.\n\n\u041f\u043e \u0441\u043b\u043e\u0432\u0430\u043c Microsoft, \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f CVE-2023-24932 \u0442\u0440\u0435\u0431\u0443\u0435\u0442\u0441\u044f \u043e\u0442\u043e\u0437\u0432\u0430\u0442\u044c \u0434\u0438\u0441\u043f\u0435\u0442\u0447\u0435\u0440\u044b \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438, \u0447\u0442\u043e \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043d\u0435\u043e\u0431\u0440\u0430\u0442\u0438\u043c\u044b\u043c \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435\u043c, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u043c\u043e\u0436\u0435\u0442 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0434\u043b\u044f \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438.\n\n\u041d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 Microsoft \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439, \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u0432 \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0444\u0430\u0439\u043b\u043e\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 Windows (CVE-2023-24941), Windows Pragmatic General Multicast (CVE-2023-24943) \u0438 Windows OLE (CVE-2023-29325).\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b, RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2023-24955) \u0432 SharePoint Server, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 \u043d\u0430\u00a0Pwn2Own Vancouver 2023.\n\n\u041f\u043e\u043b\u043d\u044b\u0439 \u043f\u0435\u0440\u0435\u0447\u0435\u043d\u044c \u0441 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435\u043c \u043a\u0430\u0436\u0434\u043e\u0439 \u0438\u0437 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d \u0437\u0434\u0435\u0441\u044c.", "creation_timestamp": "2023-05-10T13:00:06.000000Z"}, {"uuid": "4ec5c345-d0a1-4aea-b736-5c0cb5d07670", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ctinow/213187", "content": "https://ift.tt/fwdaL1s\nCVE-2023-24955 Exploitation", "creation_timestamp": "2024-03-28T11:16:50.000000Z"}, {"uuid": "5439f7dc-207e-4d6c-9f51-af383916a0e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ctinow/213278", "content": "https://ift.tt/4nVPic8\nCISA Urges Patching Microsoft SharePoint Vulnerability (CVE-2023-24955)", "creation_timestamp": "2024-03-28T18:31:19.000000Z"}, {"uuid": "408b085f-b731-4372-b2aa-5b20568ac625", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/ctinow/213193", "content": "https://ift.tt/xHWC4m1\nPatch actively exploited Microsoft SharePoint bug, CISA orders federal agencies (CVE-2023-24955)", "creation_timestamp": "2024-03-28T11:46:12.000000Z"}, {"uuid": "dedd0c4f-d09f-4ff5-b1cf-04e1097c8cf8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24959", "type": "seen", "source": "https://t.me/cibsecurity/69259", "content": "\u203c CVE-2023-24959 \u203c\n\nIBM InfoSphere Information Systems 11.7 could expose information about the host system and environment configuration. IBM X-Force ID: 246332.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-28T07:21:24.000000Z"}, {"uuid": "57233638-753c-40c1-997c-2d0b0e5df14d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24950", "type": "seen", "source": "https://t.me/cibsecurity/63659", "content": "\u203c CVE-2023-24950 \u203c\n\nMicrosoft SharePoint Server Spoofing Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T22:38:53.000000Z"}, {"uuid": "fc1cd66a-9006-478c-a17e-cc00c7d0a10a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/cibsecurity/63677", "content": "\u203c CVE-2023-24955 \u203c\n\nMicrosoft SharePoint Server Remote Code Execution Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T22:44:55.000000Z"}, {"uuid": "1c62b426-268d-4329-9652-c298d1ef9769", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24954", "type": "seen", "source": "https://t.me/cibsecurity/63676", "content": "\u203c CVE-2023-24954 \u203c\n\nMicrosoft SharePoint Server Information Disclosure Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T22:44:51.000000Z"}, {"uuid": "1b125c73-3d8b-4e71-b6a4-bd7db4300802", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24953", "type": "seen", "source": "https://t.me/cibsecurity/63689", "content": "\u203c CVE-2023-24953 \u203c\n\nMicrosoft Excel Remote Code Execution Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T22:45:12.000000Z"}, {"uuid": "a79dac74-b5e4-44d8-ac4e-3c2fe1f75ac3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24958", "type": "seen", "source": "https://t.me/cibsecurity/63294", "content": "\u203c CVE-2023-24958 \u203c\n\nA vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-04T18:33:14.000000Z"}, {"uuid": "b943e4d0-f563-438c-84bb-dcc9448b2cd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/theninjaway1337/1494", "content": "CISA tags Microsoft SharePoint RCE bug as actively exploited\n\nCISA warns\u00a0that attackers are now exploiting a Microsoft SharePoint code injection vulnerability that can be chained with a critical privilege escalation flaw for pre-auth remote code execution attacks.\nTracked as\u00a0CVE-2023-24955, this SharePoint Server vulnerability enables authenticated attackers with Site Owner privileges to execute code remotely on vulnerable servers.\n\nhttps://www.bleepingcomputer.com/news/security/cisa-tags-microsoft-sharepoint-rce-bug-as-actively-exploited/", "creation_timestamp": "2024-03-28T17:09:30.000000Z"}, {"uuid": "456d2fb1-a116-452a-8089-20c13fde409b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/information_security_channel/51821", "content": "CISA: Second SharePoint Flaw Disclosed at Pwn2Own Exploited in Attacks\nhttps://www.securityweek.com/cisa-second-sharepoint-flaw-disclosed-at-pwn2own-exploited-in-attacks/\n\nCISA says a second SharePoint vulnerability demonstrated last year at Pwn2Own, CVE-2023-24955, has been exploited in the wild.\nThe post CISA: Second SharePoint Flaw Disclosed at Pwn2Own Exploited in Attacks (https://www.securityweek.com/cisa-second-sharepoint-flaw-disclosed-at-pwn2own-exploited-in-attacks/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2024-03-27T11:46:47.000000Z"}, {"uuid": "02803daf-118c-42f8-8203-2ae233505c9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/thehackernews/4741", "content": "\ud83d\udea8 CISA alerts on a security flaw in Microsoft SharePoint Server now part of the KEV catalog due to active exploitation. \n \nVulnerability CVE-2023-24955 allows remote code execution for Site Owners. \n \nRead: https://thehackernews.com/2024/03/cisa-warns-hackers-actively-attacking.html \n \nUsers urged to patch following May 2023 updates.", "creation_timestamp": "2024-03-27T14:46:28.000000Z"}, {"uuid": "1068c63b-aadf-4663-8e79-56822ba8cbe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9116", "content": "#exploit\n1. CVE-2023-42793:\nAuthentication Bypass in JetBrains TeamCity CI/CD\nhttps://github.com/H454NSec/CVE-2023-42793\n\n2. CVE-2023-29357/CVE-2023-24955:\nSharePoint Pre-Auth RCE chain\nhttps://starlabs.sg/blog/2023/09-sharepoint-pre-auth-rce-chain", "creation_timestamp": "2023-09-30T12:17:01.000000Z"}, {"uuid": "90a1a66c-19c2-457f-8c54-80b50736e2bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/1186", "content": "#exploit\n1. CVE-2023-42793:\nAuthentication Bypass in JetBrains TeamCity CI/CD\nhttps://github.com/H454NSec/CVE-2023-42793\n\n2. CVE-2023-29357/CVE-2023-24955:\nSharePoint Pre-Auth RCE chain\nhttps://starlabs.sg/blog/2023/09-sharepoint-pre-auth-rce-chain", "creation_timestamp": "2024-08-16T08:30:23.000000Z"}, {"uuid": "92a3fab6-9a8d-4141-978b-309835a19fca", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6a91f927-cb5e-49cf-b0f8-ef5b60ae0a97", "content": "", "creation_timestamp": "2026-06-19T12:46:41.272759Z"}, {"uuid": "cdcb181e-a8d8-4274-9fce-457251a217fe", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/f449c9bf-9ccb-4c28-a219-05d1439af5d4", "content": "", "creation_timestamp": "2026-06-23T14:05:52.436867Z"}, {"uuid": "f4b1bcc7-526b-43b6-a229-deb8746827c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ZerodayAlert/200", "content": "CISA \u043d\u0430\u0441\u0442\u0430\u0438\u0432\u0430\u0435\u0442 \u043d\u0430 \u0441\u0440\u043e\u0447\u043d\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0438 SharePoint \u0438\u0437-\u0437\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\n\n\ud83d\udd11 \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint (CVE-2023-24955 \u0438 CVE-2023-29357), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0435 \u0445\u0430\u043a\u0435\u0440\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439. \u0412 \u0441\u043e\u0432\u043e\u043a\u0443\u043f\u043d\u043e\u0441\u0442\u0438 \u043e\u043d\u0438 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 (RCE) \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445.\n\n\ud83d\udca3 \u041f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u0435\u0442\u0430\u043b\u0435\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043e\u0434\u043d\u043e\u0439 \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u043c\u043d\u043e\u0433\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u0435 PoC-\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u044b.  \u042d\u0442\u043e \u043e\u0431\u043b\u0435\u0433\u0447\u0430\u0435\u0442 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u0435 \u0430\u0442\u0430\u043a \u0434\u0430\u0436\u0435 \u0434\u043b\u044f \u043d\u0438\u0437\u043a\u043e\u043a\u0432\u0430\u043b\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432.\n\n\ud83d\udc6e\u200d\u2642\ufe0f CISA \u043f\u0440\u0438\u0437\u044b\u0432\u0430\u0435\u0442 \u0441\u0440\u043e\u0447\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u0442\u0447\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f SharePoint, \u0434\u043e\u0431\u0430\u0432\u0438\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u043f\u0438\u0441\u043e\u043a \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u0433\u0440\u043e\u0437. \u0410\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u043e \u043e\u0431\u044f\u0437\u0430\u043b\u043e \u0433\u043e\u0441\u0443\u0447\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f \u0421\u0428\u0410 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0432 \u0436\u0435\u0441\u0442\u043a\u0438\u0435 \u0441\u0440\u043e\u043a\u0438 \u0432\u043e \u0438\u0437\u0431\u0435\u0436\u0430\u043d\u0438\u0435 \u0430\u0442\u0430\u043a. \n\n#RCE #SharePoint #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c #CISA\n\n@ZerodayAlert", "creation_timestamp": "2026-07-06T11:00:12.283438Z"}, {"uuid": "e811f605-0955-4453-8d62-4eab9ce830df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ZerodayAlert/137", "content": "SharePoint Server \u0432 \u0446\u0435\u043d\u0442\u0440\u0435 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u044f CISA: \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\n\n\ud83d\udd12 CISA \u0432\u043d\u0435\u0441\u043b\u043e \u0432 \u0441\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 KEV \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Microsoft SharePoint Server, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u0445\u0430\u043a\u0435\u0440\u0430\u043c\u0438.\n\n\ud83d\udcbb \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2023-29357 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u043d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0432\u044b\u043f\u0443\u0441\u043a \u043f\u0430\u0442\u0447\u0430 Microsoft \u0432 \u0438\u044e\u043d\u0435 2023 \u0433\u043e\u0434\u0430.\n\n\ud83d\ude0e \u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0432 \u0441\u043e\u0447\u0435\u0442\u0430\u043d\u0438\u0438 \u0441 CVE-2023-24955, \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430, \u043e\u0431\u0445\u043e\u0434\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n#CyberSecurity #CISA #SharePointVulnerability #MicrosoftSecurity\n\n@ZerodayAlert", "creation_timestamp": "2026-07-06T11:00:14.493589Z"}, {"uuid": "2c852177-a403-4a5f-b298-7e785b32dbcd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ZerodayAlert/137", "content": "SharePoint Server \u0432 \u0446\u0435\u043d\u0442\u0440\u0435 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u044f CISA: \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\n\n\ud83d\udd12 CISA \u0432\u043d\u0435\u0441\u043b\u043e \u0432 \u0441\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 KEV \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Microsoft SharePoint Server, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u0445\u0430\u043a\u0435\u0440\u0430\u043c\u0438.\n\n\ud83d\udcbb \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2023-29357 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u043d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0432\u044b\u043f\u0443\u0441\u043a \u043f\u0430\u0442\u0447\u0430 Microsoft \u0432 \u0438\u044e\u043d\u0435 2023 \u0433\u043e\u0434\u0430.\n\n\ud83d\ude0e \u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0432 \u0441\u043e\u0447\u0435\u0442\u0430\u043d\u0438\u0438 \u0441 CVE-2023-24955, \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430, \u043e\u0431\u0445\u043e\u0434\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n#CyberSecurity #CISA #SharePointVulnerability #MicrosoftSecurity\n\n@ZerodayAlert", "creation_timestamp": "2026-07-07T00:00:22.728618Z"}, {"uuid": "52742c32-d98c-4436-a5c5-f363cde3dfe9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ZerodayAlert/200", "content": "CISA \u043d\u0430\u0441\u0442\u0430\u0438\u0432\u0430\u0435\u0442 \u043d\u0430 \u0441\u0440\u043e\u0447\u043d\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0438 SharePoint \u0438\u0437-\u0437\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\n\n\ud83d\udd11 \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint (CVE-2023-24955 \u0438 CVE-2023-29357), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0435 \u0445\u0430\u043a\u0435\u0440\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439. \u0412 \u0441\u043e\u0432\u043e\u043a\u0443\u043f\u043d\u043e\u0441\u0442\u0438 \u043e\u043d\u0438 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 (RCE) \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445.\n\n\ud83d\udca3 \u041f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u0435\u0442\u0430\u043b\u0435\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043e\u0434\u043d\u043e\u0439 \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u043c\u043d\u043e\u0433\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u0435 PoC-\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u044b.  \u042d\u0442\u043e \u043e\u0431\u043b\u0435\u0433\u0447\u0430\u0435\u0442 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u0435 \u0430\u0442\u0430\u043a \u0434\u0430\u0436\u0435 \u0434\u043b\u044f \u043d\u0438\u0437\u043a\u043e\u043a\u0432\u0430\u043b\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432.\n\n\ud83d\udc6e\u200d\u2642\ufe0f CISA \u043f\u0440\u0438\u0437\u044b\u0432\u0430\u0435\u0442 \u0441\u0440\u043e\u0447\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u0442\u0447\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f SharePoint, \u0434\u043e\u0431\u0430\u0432\u0438\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u043f\u0438\u0441\u043e\u043a \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u0433\u0440\u043e\u0437. \u0410\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u043e \u043e\u0431\u044f\u0437\u0430\u043b\u043e \u0433\u043e\u0441\u0443\u0447\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f \u0421\u0428\u0410 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0432 \u0436\u0435\u0441\u0442\u043a\u0438\u0435 \u0441\u0440\u043e\u043a\u0438 \u0432\u043e \u0438\u0437\u0431\u0435\u0436\u0430\u043d\u0438\u0435 \u0430\u0442\u0430\u043a. \n\n#RCE #SharePoint #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c #CISA\n\n@ZerodayAlert", "creation_timestamp": "2026-07-07T00:00:20.366685Z"}, {"uuid": "f8a105ed-c922-46c6-8ede-f3f9d088363d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/ZerodayAlert/200", "content": "CISA \u043d\u0430\u0441\u0442\u0430\u0438\u0432\u0430\u0435\u0442 \u043d\u0430 \u0441\u0440\u043e\u0447\u043d\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0438 SharePoint \u0438\u0437-\u0437\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\n\n\ud83d\udd11 \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint (CVE-2023-24955 \u0438 CVE-2023-29357), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0435 \u0445\u0430\u043a\u0435\u0440\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439. \u0412 \u0441\u043e\u0432\u043e\u043a\u0443\u043f\u043d\u043e\u0441\u0442\u0438 \u043e\u043d\u0438 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 (RCE) \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445.\n\n\ud83d\udca3 \u041f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u0435\u0442\u0430\u043b\u0435\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043e\u0434\u043d\u043e\u0439 \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u043c\u043d\u043e\u0433\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u0435 PoC-\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u044b.  \u042d\u0442\u043e \u043e\u0431\u043b\u0435\u0433\u0447\u0430\u0435\u0442 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u0435 \u0430\u0442\u0430\u043a \u0434\u0430\u0436\u0435 \u0434\u043b\u044f \u043d\u0438\u0437\u043a\u043e\u043a\u0432\u0430\u043b\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432.\n\n\ud83d\udc6e\u200d\u2642\ufe0f CISA \u043f\u0440\u0438\u0437\u044b\u0432\u0430\u0435\u0442 \u0441\u0440\u043e\u0447\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u0442\u0447\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f SharePoint, \u0434\u043e\u0431\u0430\u0432\u0438\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u043f\u0438\u0441\u043e\u043a \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u0433\u0440\u043e\u0437. \u0410\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u043e \u043e\u0431\u044f\u0437\u0430\u043b\u043e \u0433\u043e\u0441\u0443\u0447\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f \u0421\u0428\u0410 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0432 \u0436\u0435\u0441\u0442\u043a\u0438\u0435 \u0441\u0440\u043e\u043a\u0438 \u0432\u043e \u0438\u0437\u0431\u0435\u0436\u0430\u043d\u0438\u0435 \u0430\u0442\u0430\u043a. \n\n#RCE #SharePoint #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c #CISA\n\n@ZerodayAlert", "creation_timestamp": "2026-07-12T01:00:04.206434Z"}, {"uuid": "f89b4e4f-97df-4c73-8462-7c8340d7ac32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ZerodayAlert/137", "content": "SharePoint Server \u0432 \u0446\u0435\u043d\u0442\u0440\u0435 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u044f CISA: \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\n\n\ud83d\udd12 CISA \u0432\u043d\u0435\u0441\u043b\u043e \u0432 \u0441\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 KEV \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Microsoft SharePoint Server, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u0445\u0430\u043a\u0435\u0440\u0430\u043c\u0438.\n\n\ud83d\udcbb \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2023-29357 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u043d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0432\u044b\u043f\u0443\u0441\u043a \u043f\u0430\u0442\u0447\u0430 Microsoft \u0432 \u0438\u044e\u043d\u0435 2023 \u0433\u043e\u0434\u0430.\n\n\ud83d\ude0e \u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0432 \u0441\u043e\u0447\u0435\u0442\u0430\u043d\u0438\u0438 \u0441 CVE-2023-24955, \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430, \u043e\u0431\u0445\u043e\u0434\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n#CyberSecurity #CISA #SharePointVulnerability #MicrosoftSecurity\n\n@ZerodayAlert", "creation_timestamp": "2026-07-12T03:00:04.556870Z"}, {"uuid": "4a4ee1d8-7334-46eb-8428-fa3af6a0ff4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/ZerodayAlert/137", "content": "SharePoint Server \u0432 \u0446\u0435\u043d\u0442\u0440\u0435 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u044f CISA: \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\n\n\ud83d\udd12 CISA \u0432\u043d\u0435\u0441\u043b\u043e \u0432 \u0441\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 KEV \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Microsoft SharePoint Server, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u0445\u0430\u043a\u0435\u0440\u0430\u043c\u0438.\n\n\ud83d\udcbb \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2023-29357 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u043d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0432\u044b\u043f\u0443\u0441\u043a \u043f\u0430\u0442\u0447\u0430 Microsoft \u0432 \u0438\u044e\u043d\u0435 2023 \u0433\u043e\u0434\u0430.\n\n\ud83d\ude0e \u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0432 \u0441\u043e\u0447\u0435\u0442\u0430\u043d\u0438\u0438 \u0441 CVE-2023-24955, \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430, \u043e\u0431\u0445\u043e\u0434\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n#CyberSecurity #CISA #SharePointVulnerability #MicrosoftSecurity\n\n@ZerodayAlert", "creation_timestamp": "2026-07-13T00:00:53.488631Z"}, {"uuid": "fddf9242-aa37-4f54-a629-996a8af6ed5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/ZerodayAlert/200", "content": "CISA \u043d\u0430\u0441\u0442\u0430\u0438\u0432\u0430\u0435\u0442 \u043d\u0430 \u0441\u0440\u043e\u0447\u043d\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0438 SharePoint \u0438\u0437-\u0437\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\n\n\ud83d\udd11 \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint (CVE-2023-24955 \u0438 CVE-2023-29357), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0435 \u0445\u0430\u043a\u0435\u0440\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439. \u0412 \u0441\u043e\u0432\u043e\u043a\u0443\u043f\u043d\u043e\u0441\u0442\u0438 \u043e\u043d\u0438 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 (RCE) \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445.\n\n\ud83d\udca3 \u041f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u0435\u0442\u0430\u043b\u0435\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043e\u0434\u043d\u043e\u0439 \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u043c\u043d\u043e\u0433\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u0435 PoC-\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u044b.  \u042d\u0442\u043e \u043e\u0431\u043b\u0435\u0433\u0447\u0430\u0435\u0442 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u0435 \u0430\u0442\u0430\u043a \u0434\u0430\u0436\u0435 \u0434\u043b\u044f \u043d\u0438\u0437\u043a\u043e\u043a\u0432\u0430\u043b\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432.\n\n\ud83d\udc6e\u200d\u2642\ufe0f CISA \u043f\u0440\u0438\u0437\u044b\u0432\u0430\u0435\u0442 \u0441\u0440\u043e\u0447\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u0442\u0447\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f SharePoint, \u0434\u043e\u0431\u0430\u0432\u0438\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u043f\u0438\u0441\u043e\u043a \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u0433\u0440\u043e\u0437. \u0410\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u043e \u043e\u0431\u044f\u0437\u0430\u043b\u043e \u0433\u043e\u0441\u0443\u0447\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f \u0421\u0428\u0410 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0432 \u0436\u0435\u0441\u0442\u043a\u0438\u0435 \u0441\u0440\u043e\u043a\u0438 \u0432\u043e \u0438\u0437\u0431\u0435\u0436\u0430\u043d\u0438\u0435 \u0430\u0442\u0430\u043a. \n\n#RCE #SharePoint #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c #CISA\n\n@ZerodayAlert", "creation_timestamp": "2026-07-13T00:00:56.197334Z"}, {"uuid": "99903352-f63b-45df-bc59-1b93f14b4797", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/TomCyberDaily/23", "content": "Tom Cyber Daily #8 at your service :) \n\nIn today's episode, APT 31 is on fire! and many other stuff as well..\n\n\n\n1. Chinese company i-Soon's leaked documents reveal a global hacking operation. Finnish Police finally cracked the case of the parliament attack from back in 2021! It turns out that it was the infamous APT31, the digital ninjas from China, who were pulling the strings all along. Apparently, these cyber-spies were sneaking around the Finnish parliament's systems like they owned the place, from autumn 2020 to early 2021. Talk about overstaying your welcome! The police even managed to identify one suspect, probably the mastermind behind the whole operation. I bet they're feeling pretty proud of themselves right now. But here's the kicker: the Finnish authorities weren't alone in this investigation. They had to call in reinforcements from around the world, like some sort of international cyber-crime-fighting squad. I guess APT31's hacking skills were just too l33t for one country to handle, And it looks like APT31 has been a busy little hacker group, with the US, UK, Australia, and New Zealand all pointing fingers at them for various cyber-shenanigans. The US even slapped sanctions on a couple of alleged APT31 members and a tech company in Wuhan that was apparently just a front for the Chinese Ministry of State Security, So, there you have it: APT31, the gift that keeps on giving (headaches to cybersecurity experts around the world, that is). \n\n\n\n2. \"TheMoon\" malware has taken a break from its usual hobby of infecting random devices to focus on a new passion project: turning ASUS routers into its own personal proxy army, That's right, in just 72 hours, TheMoon managed to compromise a whopping 6,000 ASUS routers across 88 countries. Talk about a global takeover, But wait, there's more! These infected devices are now part of the \"Faceless\" proxy service, which helps cybercriminals hide their tracks while they engage in all sorts of online.\n\n\n\n3. INC Ransom gang has set its sights on the Scottish healthcare system! These cybercriminals claim to have stolen a massive 3TB of data from NHS Scotland and are now threatening to unleash it upon the world unless they get paid, The gang even shared some sneak peeks of the alleged stolen data, which included sensitive medical details about patients and doctors, Reports suggest that NHS Scotland was hit by a cybersecurity incident on March 15, which might have been the moment the INC Ransom gang struck gold (or, in this case, sensitive data).\n\n4. Well, well, well, looks like there's a new phishing service in town, and it's got a flair for the dramatic! Meet \"Darcula,\" the PhaaS (Phishing-as-a-Service) platform that's taking the cybercrime world by storm, With a whopping 20,000 domains at its disposal, Darcula is spoofing brands left and right, targeting unsuspecting victims in over 100 countries. And get this: they've got more than 200 templates to choose from, so whether you're into postal services, airlines, or even government agencies, they've got you covered. But here's the kicker: Darcula is ditching the old-school SMS approach and sliding into your DMs via RCS (for Android users) and iMessage (for you iPhone fanatics out there). It's like getting a phishing message from your cool, tech-savvy friend... except it's not your friend, and they're definitely not cool.\n\n5. Uh-oh, looks like Microsoft SharePoint is in the hot seat again! CISA has just sounded the alarm: attackers are now exploiting a nasty code injection vulnerability (CVE-2023-24955) in SharePoint Server. But wait, there's more! This vulnerability can be combined with another critical flaw (CVE-2023-29357) that allows attackers to escalate privileges and gain admin status on vulnerable servers. It's like a cybercriminal's dream come true! What's even more concerning is that unauthenticated attackers can chain these two vulnerabilities together to achieve remote code execution on unpatched servers. It's like giving a hacker the keys to the kingdom!", "creation_timestamp": "2026-07-16T03:00:04.288469Z"}, {"uuid": "6e0e93ea-0bbf-468b-b1a9-126c7ca3fbff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "exploited", "source": "https://t.me/TomCyberDaily/23", "content": "Tom Cyber Daily #8 at your service :) \n\nIn today's episode, APT 31 is on fire! and many other stuff as well..\n\n\n\n1. Chinese company i-Soon's leaked documents reveal a global hacking operation. Finnish Police finally cracked the case of the parliament attack from back in 2021! It turns out that it was the infamous APT31, the digital ninjas from China, who were pulling the strings all along. Apparently, these cyber-spies were sneaking around the Finnish parliament's systems like they owned the place, from autumn 2020 to early 2021. Talk about overstaying your welcome! The police even managed to identify one suspect, probably the mastermind behind the whole operation. I bet they're feeling pretty proud of themselves right now. But here's the kicker: the Finnish authorities weren't alone in this investigation. They had to call in reinforcements from around the world, like some sort of international cyber-crime-fighting squad. I guess APT31's hacking skills were just too l33t for one country to handle, And it looks like APT31 has been a busy little hacker group, with the US, UK, Australia, and New Zealand all pointing fingers at them for various cyber-shenanigans. The US even slapped sanctions on a couple of alleged APT31 members and a tech company in Wuhan that was apparently just a front for the Chinese Ministry of State Security, So, there you have it: APT31, the gift that keeps on giving (headaches to cybersecurity experts around the world, that is). \n\n\n\n2. \"TheMoon\" malware has taken a break from its usual hobby of infecting random devices to focus on a new passion project: turning ASUS routers into its own personal proxy army, That's right, in just 72 hours, TheMoon managed to compromise a whopping 6,000 ASUS routers across 88 countries. Talk about a global takeover, But wait, there's more! These infected devices are now part of the \"Faceless\" proxy service, which helps cybercriminals hide their tracks while they engage in all sorts of online.\n\n\n\n3. INC Ransom gang has set its sights on the Scottish healthcare system! These cybercriminals claim to have stolen a massive 3TB of data from NHS Scotland and are now threatening to unleash it upon the world unless they get paid, The gang even shared some sneak peeks of the alleged stolen data, which included sensitive medical details about patients and doctors, Reports suggest that NHS Scotland was hit by a cybersecurity incident on March 15, which might have been the moment the INC Ransom gang struck gold (or, in this case, sensitive data).\n\n4. Well, well, well, looks like there's a new phishing service in town, and it's got a flair for the dramatic! Meet \"Darcula,\" the PhaaS (Phishing-as-a-Service) platform that's taking the cybercrime world by storm, With a whopping 20,000 domains at its disposal, Darcula is spoofing brands left and right, targeting unsuspecting victims in over 100 countries. And get this: they've got more than 200 templates to choose from, so whether you're into postal services, airlines, or even government agencies, they've got you covered. But here's the kicker: Darcula is ditching the old-school SMS approach and sliding into your DMs via RCS (for Android users) and iMessage (for you iPhone fanatics out there). It's like getting a phishing message from your cool, tech-savvy friend... except it's not your friend, and they're definitely not cool.\n\n5. Uh-oh, looks like Microsoft SharePoint is in the hot seat again! CISA has just sounded the alarm: attackers are now exploiting a nasty code injection vulnerability (CVE-2023-24955) in SharePoint Server. But wait, there's more! This vulnerability can be combined with another critical flaw (CVE-2023-29357) that allows attackers to escalate privileges and gain admin status on vulnerable servers. It's like a cybercriminal's dream come true! What's even more concerning is that unauthenticated attackers can chain these two vulnerabilities together to achieve remote code execution on unpatched servers. It's like giving a hacker the keys to the kingdom!", "creation_timestamp": "2026-07-17T00:00:56.757455Z"}, {"uuid": "b1954aa6-6592-477d-a601-319c7c74bd62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24955", "type": "seen", "source": "https://t.me/cyberwarehouse/366", "content": "26 \u043c\u0430\u0440\u0442\u0430 CISA \u0434\u043e\u0431\u0430\u0432\u0438\u043b\u0438 \u0432 KEV \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c Remote Code Execution - Microsoft SharePoint Server (CVE-2023-24955). \n\n\ud83d\udd39 \u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u0437 \u043c\u0430\u0439\u0441\u043a\u043e\u0433\u043e Patch Tuesday 2023 \u0433\u043e\u0434\u0430. \u042f \u0435\u0451 \u0442\u043e\u0433\u0434\u0430 \u0432\u044b\u0434\u0435\u043b\u0438\u043b \u0432 \u043e\u0431\u0437\u043e\u0440\u0435, \u0442.\u043a. \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u0438 \u043d\u0430 Pwn2Own Vancouver, \u0430 \u0437\u043d\u0430\u0447\u0438\u0442 \u0434\u043b\u044f \u043d\u0435\u0451 \u0431\u044b\u043b \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u044b\u0439 \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0440\u0430\u043d\u043e \u0438\u043b\u0438 \u043f\u043e\u0437\u0434\u043d\u043e \u043f\u043e\u044f\u0432\u0438\u043b\u0441\u044f \u0431\u044b \u0432 \u043f\u0430\u0431\u043b\u0438\u043a\u0435. \n\ud83d\udd39 \u0412 \u043f\u0430\u0431\u043b\u0438\u043a\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442 \u043f\u043e\u044f\u0432\u0438\u043b\u0441\u044f 26 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u044f 2023 \u0433\u043e\u0434\u0430. \n\ud83d\udd39 19 \u044f\u043d\u0432\u0430\u0440\u044f 2024 \u0433\u043e\u0434\u0430 \u0432\u044b\u0448\u0435\u043b \u043c\u043e\u0434\u0443\u043b\u044c \u0434\u043b\u044f \u043c\u0435\u0442\u0430\u0441\u043f\u043b\u043e\u0438\u0442\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u043c\u0435\u0441\u0442\u0435 \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 SharePoint (CVE-2023-29357), \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u0443\u044e \u0432 \u0438\u044e\u043d\u0435 2023 \u0433\u043e\u0434\u0430.\n\ud83d\udd39 \u0421\u0435\u0439\u0447\u0430\u0441 \u0432\u0438\u0434\u0438\u043c\u043e \u043f\u043e\u0448\u043b\u0438 \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u043d\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u0438\u043c\u0435\u043d\u043d\u043e \u0434\u043b\u044f CVE-2023-24955. \ud83d\udc7e\n\n\u041c\u043e\u0440\u0430\u043b\u044c? \u041e\u0431\u043d\u043e\u0432\u043b\u044f\u0439\u0442\u0435\u0441\u044c \u0437\u0430\u0440\u0430\u043d\u0435\u0435, \u043e\u0431\u0440\u0430\u0449\u0430\u0439\u0442\u0435 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u0435 \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u0440\u043e\u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 Pwn2Own \u043c\u0435\u0440\u043e\u043f\u0440\u0438\u044f\u0442\u0438\u044f\u0445.\n\n\ud83d\udfe5 Positive Technologies \u043e\u0442\u043d\u043e\u0441\u0438\u0442 \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a \u0442\u0440\u0435\u043d\u0434\u043e\u0432\u044b\u043c \u0441 27 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u044f 2023 \u0433\u043e\u0434\u0430. \u0422.\u0435. \u043c\u044b \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0438 \u0435\u0451 \u043a\u0430\u043a \u0441\u0443\u043f\u0435\u0440-\u043a\u0440\u0438\u0442\u0438\u0447\u043d\u0443\u044e \u0437\u0430 \u043f\u043e\u043b\u0433\u043e\u0434\u0430 \u0434\u043e \u043f\u043e\u044f\u0432\u043b\u0435\u043d\u0438\u044f \u0432 CISA KEV.\n\n@avleonovrus #Microsoft #SharePoint #Pwn2Own #Metasploit #TrendVulns #PositiveTechnologies #CISAKEV", "creation_timestamp": "2026-07-17T11:00:05.870352Z"}]}