{"vulnerability": "CVE-2023-27997", "sightings": [{"uuid": "80721618-dbd6-4e61-bab8-e999184837c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "MISP/892e9cff-84c3-4a3b-b994-cc49be2f87ec", "content": "", "creation_timestamp": "2023-06-13T07:42:26.000000Z"}, {"uuid": "c3fb972d-f286-4d61-bce1-9ec053c043e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:04.000000Z"}, {"uuid": "492f43d0-bff5-439e-97bd-20ce15f3d29f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "MISP/8a5d9ef7-0fae-4fcc-a606-d3701ec5f0e0", "content": "", "creation_timestamp": "2024-10-15T11:38:24.000000Z"}, {"uuid": "8bfc79cd-1d06-41f9-87fc-5445e0ae2448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-279970", "type": "seen", "source": "MISP/aaf97b2c-ad16-4ce6-928a-a440112d0fd3", "content": "", "creation_timestamp": "2024-09-16T19:13:31.000000Z"}, {"uuid": "b2e7a210-3fd2-421b-9494-5815e34acfe7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/113513465135891182", "content": "", "creation_timestamp": "2024-11-20T04:47:00.739682Z"}, {"uuid": "30d79138-fd8d-4dfe-881d-b52586da5b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971830", "content": "", "creation_timestamp": "2024-12-24T20:34:35.150112Z"}, {"uuid": "9a89d8c5-bf1b-41af-afc6-c1e1ecc66d79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://thehackernews.com/2025/04/fortinet-warns-attackers-retain.html", "content": "", "creation_timestamp": "2025-04-11T15:55:00.000000Z"}, {"uuid": "56815055-697c-4f99-a57f-3eadb08d9e86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:42.000000Z"}, {"uuid": "dbb23af5-8ff0-46cb-8c54-198098a6f6ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lmm7lumup22a", "content": "", "creation_timestamp": "2025-04-12T09:24:46.546814Z"}, {"uuid": "ba0f99b0-01c4-438a-8c1c-e317c2c7a0ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmy53uo6vs2l", "content": "", "creation_timestamp": "2025-04-17T03:11:58.017963Z"}, {"uuid": "ecb58a50-d058-4abb-9d4e-d33dad8dbfc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lmp3mxo5nc2f", "content": "", "creation_timestamp": "2025-04-13T12:51:45.958888Z"}, {"uuid": "c82c5cfb-070e-4332-ab15-ee827c1488e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmp6loq4hk2q", "content": "", "creation_timestamp": "2025-04-13T13:44:46.752257Z"}, {"uuid": "b701064d-9234-48a4-97e4-2a70e7121a42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmp6loqga22q", "content": "", "creation_timestamp": "2025-04-13T13:44:47.827488Z"}, {"uuid": "a198b305-c94a-4e2c-9cfd-400afa6b530d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmp6yz7tys2q", "content": "", "creation_timestamp": "2025-04-13T13:52:13.413929Z"}, {"uuid": "122e8b25-3e41-443c-b3c5-5a08559bdfd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmpatpxxqs2q", "content": "", "creation_timestamp": "2025-04-13T14:25:01.807410Z"}, {"uuid": "8525051f-3b0a-4c06-a39f-266d659a45f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3lmqv7qzhmb2x", "content": "", "creation_timestamp": "2025-04-14T06:02:20.261507Z"}, {"uuid": "297435ee-10a5-4679-a767-88ae8e6e9a34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2023-27997", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-672871d8-0239cb22accdcf12", "content": "", "creation_timestamp": "2025-04-15T07:59:58.264625Z"}, {"uuid": "eee9ee69-324a-4661-824f-0f4e1fafdcb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1040", "content": "", "creation_timestamp": "2023-06-13T04:00:00.000000Z"}, {"uuid": "6e35f872-c304-4596-a1e1-aecf16957371", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-11T18:47:43.000000Z"}, {"uuid": "20600f31-d62a-42a3-bf4a-36ebc584f918", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2023-27997", "type": "seen", "source": "https://www.cert.at/de/warnungen/2023/6/kritische-sicherheitslucke-in-fortinet-fortios-und-fortiproxy-ssl-vpn-produkten-updates-verfugbar", "content": "", "creation_timestamp": "2023-06-13T08:51:37.000000Z"}, {"uuid": "84cbb696-3a0a-4f3e-abf2-48a105a296a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-09T13:26:57.000000Z"}, {"uuid": "1087e51d-cd95-4e78-8fdb-24d230950a1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "MISP/8a5d9ef7-0fae-4fcc-a606-d3701ec5f0e0", "content": "", "creation_timestamp": "2026-01-09T20:17:30.000000Z"}, {"uuid": "33ffd511-8eb4-46ca-817d-a36433c24c63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/ics_cert/755", "content": "\u0647\u0634\u062f\u0627\u0631\n\u06a9\u0634\u0641 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0641\u0648\u0631\u062a\u06cc\u0646\u062a\n\n\u06cc\u06a9 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u067e\u0648\u0631\u062a\u0627\u0644 FortiOS SSL-VPN \u0648 Proxy Internet Attack FortiProxy \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0633\u0631\u0631\u06cc\u0632 \u0628\u0627\u0641\u0631 \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u067e\u0634\u062a\u0647 \u0627\u0633\u062a. \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u06a9\u062f \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0628\u0627 \u0627\u0631\u0633\u0627\u0644 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u0633\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u062e\u0627\u0635 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f.\n\nBDU: 2023-03157\nCVE-2023-27997\n\n\u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0647\u0627 \u0631\u0627 \u0627\u0632 \u0645\u0646\u0627\u0628\u0639 \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f.\n\u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc \u0634\u0648\u062f \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631 \u0631\u0627 \u062a\u0646\u0647\u0627 \u067e\u0633 \u0627\u0632 \u0627\u0631\u0632\u06cc\u0627\u0628\u06cc \u062a\u0645\u0627\u0645 \u062e\u0637\u0631\u0627\u062a \u0645\u0631\u062a\u0628\u0637 \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f.\n\n\u0627\u0642\u062f\u0627\u0645\u0627\u062a \u062c\u0628\u0631\u0627\u0646\u06cc:\n- \u063a\u06cc\u0631\u0641\u0639\u0627\u0644 \u06a9\u0631\u062f\u0646 SSL-VPN\u061b\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0633\u06cc\u0633\u062a\u0645 \u0647\u0627\u06cc \u062a\u0634\u062e\u06cc\u0635 \u0646\u0641\u0648\u0630 \u0648 \u067e\u06cc\u0634\u06af\u06cc\u0631\u06cc \u0628\u0631\u0627\u06cc \u0631\u062f\u06cc\u0627\u0628\u06cc \u062a\u0644\u0627\u0634 \u0647\u0627 \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u062f\u0633\u062a\u06af\u0627\u0647\u061b\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0647\u0627 \u0628\u0631\u0627\u06cc \u062a\u0634\u06a9\u06cc\u0644 \u06cc\u06a9 \u0644\u06cc\u0633\u062a \"\u0633\u0641\u06cc\u062f\" \u0627\u0632 \u0622\u062f\u0631\u0633 \u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0631\u0627 \u062f\u0627\u0631\u0646\u062f.\n\n\u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u062a\u0648\u0635\u06cc\u0647 \u0647\u0627\u06cc \u0633\u0627\u0632\u0646\u062f\u0647:\nhttps://www.fortiguard.com/psirt/FG-IR-23-097\n\n\u0644\u0637\u0641\u0627 \u0646\u0638\u0631\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0634\u062a\u0631\u0627\u06a9 \u0628\u06af\u0630\u0627\u0631\u06cc\u062f. \u0627\u0632 \u0628\u0627\u0632\u062e\u0648\u0631\u062f \u0634\u0645\u0627 \u0627\u0633\u062a\u0642\u0628\u0627\u0644 \u0645\u06cc\u200c\u06a9\u0646\u06cc\u0645.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2023-06-16T09:43:09.000000Z"}, {"uuid": "141cf95a-7b25-469e-9522-2a042c393a8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/cKure/12220", "content": "Building an Exploit for FortiGate Vulnerability CVE-2023-27997.\n\nhttps://bishopfox.com/blog/building-exploit-fortigate-vulnerability-cve-2023-27997", "creation_timestamp": "2024-01-23T04:22:33.000000Z"}, {"uuid": "638b24b4-db40-4e22-837f-a16b08881141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4595", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aSafely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing\nURL\uff1ahttps://github.com/BishopFox/CVE-2023-27997-check\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-06-19T21:34:10.000000Z"}, {"uuid": "56f66634-82d8-4109-accc-3ee1fc7a5856", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4632", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aMod Python code for scanning CVE-2023-27997\nURL\uff1ahttps://github.com/blachart/CVE-2023-27997\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-06-27T07:48:09.000000Z"}, {"uuid": "4052133b-5794-4985-a962-bdea72015270", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4727", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aSearch vulnerable FortiOS devices via Shodan (CVE-2023-27997)\nURL\uff1ahttps://github.com/TechinsightsPro/ShodanFortiOS\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-07-11T20:49:52.000000Z"}, {"uuid": "548bc293-a379-4aad-9f55-d1e22b1c2bf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/ics_cert/1132", "content": "\u0641\u0648\u0631\u062a\u06cc\u0646\u062a \u0647\u0634\u062f\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f \u06a9\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 FortiGate \u0631\u0627 \u067e\u0633 \u0627\u0632 \u0648\u0635\u0644\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 SSL-VPN Symlink Exploit \u062d\u0641\u0638 \u0645\u06cc\u06a9\u0646\u0646\u062f.\n\n\u0641\u0648\u0631\u062a\u06cc\u200c\u0646\u062a \u0641\u0627\u0634 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0639\u0648\u0627\u0645\u0644 \u062a\u0647\u062f\u06cc\u062f \u0631\u0627\u0647\u06cc \u0628\u0631\u0627\u06cc \u062d\u0641\u0638 \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631 \u0641\u0648\u0631\u062a\u06cc\u200c\u06af\u06cc\u062a \u062d\u062a\u06cc \u067e\u0633 \u0627\u0632 \u0627\u0635\u0644\u0627\u062d \u0648\u0635\u0644\u0647\u200c\u0628\u0646\u062f\u06cc \u0628\u0631\u062f\u0627\u0631 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0648\u0644\u06cc\u0647 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0628\u0631\u0627\u06cc \u0646\u0641\u0648\u0630 \u0628\u0647 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627\u060c \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f.\n\n\u06af\u0645\u0627\u0646 \u0645\u06cc\u200c\u0631\u0648\u062f \u06a9\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0627\u0632 \u0646\u0642\u0635\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0648 \u0627\u0635\u0644\u0627\u062d\u200c\u0634\u062f\u0647\u060c \u0627\u0632 \u062c\u0645\u0644\u0647\u060c \u0627\u0645\u0627 \u0646\u0647 \u0645\u062d\u062f\u0648\u062f \u0628\u0647\u060c CVE-2022-42475 \u060c CVE-2023-27997 \u0648 CVE-2024-21762 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f .\n\n\u0634\u0631\u06a9\u062a \u0627\u0645\u0646\u06cc\u062a \u0634\u0628\u06a9\u0647 \u062f\u0631 \u0645\u0634\u0627\u0648\u0631\u0647 \u0627\u06cc \u06a9\u0647 \u0631\u0648\u0632 \u067e\u0646\u062c\u0634\u0646\u0628\u0647 \u0645\u0646\u062a\u0634\u0631 \u0634\u062f \u06af\u0641\u062a : \u00ab\u06cc\u06a9 \u0639\u0627\u0645\u0644 \u062a\u0647\u062f\u06cc\u062f \u0627\u0632 \u06cc\u06a9 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0631\u0627\u06cc \u067e\u06cc\u0627\u062f\u0647 \u0633\u0627\u0632\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u062f\u0633\u062a\u06af\u0627\u0647 \u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0641\u0648\u0631\u062a\u06cc \u06af\u06cc\u062a \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f. \"\u0627\u06cc\u0646 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0627\u06cc\u062c\u0627\u062f \u06cc\u06a9 \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 \u06a9\u0647 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u06a9\u0627\u0631\u0628\u0631 \u0648 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u0631\u06cc\u0634\u0647 \u0631\u0627 \u062f\u0631 \u067e\u0648\u0634\u0647 \u0627\u06cc \u06a9\u0647 \u0628\u0631\u0627\u06cc \u0627\u0631\u0627\u0626\u0647 \u0641\u0627\u06cc\u0644 \u0647\u0627\u06cc \u0632\u0628\u0627\u0646 \u0628\u0631\u0627\u06cc SSL-VPN \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f\u060c \u0628\u0647 \u0647\u0645 \u0645\u062a\u0635\u0644 \u0645\u06cc \u06a9\u0646\u062f.\"\n\n\u0627\u0645\u0646\u06cc\u062a \u0633\u0627\u06cc\u0628\u0631\u06cc\n\u0641\u0648\u0631\u062a\u06cc \u0646\u062a \u06af\u0641\u062a \u06a9\u0647 \u062a\u063a\u06cc\u06cc\u0631\u0627\u062a \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u06a9\u0627\u0631\u0628\u0631 \u0627\u0646\u062c\u0627\u0645 \u0634\u062f \u0648 \u0645\u0648\u0641\u0642 \u0634\u062f \u0627\u0632 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0641\u0631\u0627\u0631 \u06a9\u0646\u062f \u0648 \u0628\u0627\u0639\u062b \u0634\u062f \u06a9\u0647 \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 (\u0645\u0639\u0631\u0648\u0641 \u0628\u0647 symlink) \u062d\u062a\u06cc \u067e\u0633 \u0627\u0632 \u0628\u0633\u062a\u0647 \u0634\u062f\u0646 \u062d\u0641\u0631\u0647\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0633\u0626\u0648\u0644 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0648\u0644\u06cc\u0647 \u0628\u0627\u0642\u06cc \u0628\u0645\u0627\u0646\u062f.\n\n\u0627\u06cc\u0646 \u0628\u0647 \u0646\u0648\u0628\u0647 \u062e\u0648\u062f\u060c \u0639\u0627\u0645\u0644\u0627\u0646 \u062a\u0647\u062f\u06cc\u062f \u0631\u0627 \u0642\u0627\u062f\u0631 \u0645\u06cc\u200c\u0633\u0627\u0632\u062f \u062a\u0627 \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u0645\u0648\u062c\u0648\u062f \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u062f\u0633\u062a\u06af\u0627\u0647\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a\u060c \u0631\u0627 \u062d\u0641\u0638 \u06a9\u0646\u0646\u062f. \u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644\u060c \u0645\u0634\u062a\u0631\u06cc\u0627\u0646\u06cc \u06a9\u0647 \u0647\u0631\u06af\u0632 SSL-VPN \u0631\u0627 \u0641\u0639\u0627\u0644 \u0646\u06a9\u0631\u062f\u0647 \u0627\u0646\u062f \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0627\u06cc\u0646 \u0645\u0634\u06a9\u0644 \u0642\u0631\u0627\u0631 \u0646\u0645\u06cc \u06af\u06cc\u0631\u0646\u062f.\n\n\u0645\u0634\u062e\u0635 \u0646\u06cc\u0633\u062a \u0686\u0647 \u06a9\u0633\u06cc \u067e\u0634\u062a \u0627\u06cc\u0646 \u0641\u0639\u0627\u0644\u06cc\u062a \u0627\u0633\u062a\u060c \u0627\u0645\u0627 \u0641\u0648\u0631\u062a\u06cc \u0646\u062a \u06af\u0641\u062a \u062a\u062d\u0642\u06cc\u0642\u0627\u062a\u0634 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f \u06a9\u0647 \u0647\u062f\u0641 \u0622\u0646 \u0645\u0646\u0637\u0642\u0647 \u06cc\u0627 \u0635\u0646\u0639\u062a \u062e\u0627\u0635\u06cc \u0646\u0628\u0648\u062f\u0647 \u0627\u0633\u062a. \u0647\u0645\u0686\u0646\u06cc\u0646 \u06af\u0641\u062a \u06a9\u0647 \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0647 \u0645\u0634\u062a\u0631\u06cc\u0627\u0646\u06cc \u06a9\u0647 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0627\u06cc\u0646 \u0645\u0648\u0636\u0648\u0639 \u0642\u0631\u0627\u0631 \u06af\u0631\u0641\u062a\u0647\u200c\u0627\u0646\u062f \u0627\u0637\u0644\u0627\u0639 \u062f\u0627\u062f\u0647 \u0627\u0633\u062a.\n\n\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06a9\u0627\u0647\u0634 \u0628\u06cc\u0634\u062a\u0631 \u0628\u0631\u0627\u06cc \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062a\u06a9\u0631\u0627\u0631 \u0686\u0646\u06cc\u0646 \u0645\u0634\u06a9\u0644\u0627\u062a\u06cc\u060c \u06cc\u06a9 \u0633\u0631\u06cc \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631 \u0628\u0631\u0627\u06cc FortiOS \u0627\u0631\u0627\u0626\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a -\n\nFortiOS 7.4\u060c 7.2\u060c 7.0 \u0648 6.4 - \u0633\u06cc\u0645\u0644\u06cc\u0646\u06a9 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062e\u0631\u0628 \u0639\u0644\u0627\u0645\u062a \u06af\u0630\u0627\u0631\u06cc \u0634\u062f \u062a\u0627 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u062a\u0648\u0633\u0637 \u0645\u0648\u062a\u0648\u0631 \u0622\u0646\u062a\u06cc \u0648\u06cc\u0631\u0648\u0633 \u062d\u0630\u0641 \u0634\u0648\u062f.\nFortiOS 7.6.2\u060c 7.4.7\u060c 7.2.11\u060c 7.0.17\u060c \u0648 6.4.16 - \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 \u062d\u0630\u0641 \u0634\u062f \u0648 \u0631\u0627\u0628\u0637 \u06a9\u0627\u0631\u0628\u0631\u06cc SSL-VPN \u0628\u0631\u0627\u06cc \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0627\u0631\u0627\u0626\u0647 \u0686\u0646\u06cc\u0646 \u067e\u06cc\u0648\u0646\u062f\u0647\u0627\u06cc \u0646\u0645\u0627\u062f\u06cc\u0646 \u0645\u062e\u0631\u0628 \u0627\u0635\u0644\u0627\u062d \u0634\u062f\u0647 \u0627\u0633\u062a.\n\u0628\u0647 \u0645\u0634\u062a\u0631\u06cc\u0627\u0646 \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f \u0646\u0645\u0648\u0646\u0647\u200c\u0647\u0627\u06cc \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc 7.6.2\u060c 7.4.7\u060c 7.2.11\u060c 7.0.17 \u06cc\u0627 6.4.16 FortiOS \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u0646\u062f\u060c \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc\u200c\u0647\u0627\u06cc \u062f\u0633\u062a\u06af\u0627\u0647 \u0631\u0627 \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u0646\u062f\u060c \u0648 \u0647\u0645\u0647 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc\u200c\u0647\u0627 \u0631\u0627 \u0628\u0647\u200c\u0639\u0646\u0648\u0627\u0646 \u062f\u0631 \u0645\u0639\u0631\u0636 \u062e\u0637\u0631 \u0642\u0631\u0627\u0631 \u062f\u0647\u0646\u062f \u0648 \u0645\u0631\u0627\u062d\u0644 \u0628\u0627\u0632\u06cc\u0627\u0628\u06cc \u0645\u0646\u0627\u0633\u0628 \u0631\u0627 \u0627\u0646\u062c\u0627\u0645 \u062f\u0647\u0646\u062f .\n\n\u0622\u0698\u0627\u0646\u0633 \u0627\u0645\u0646\u06cc\u062a \u0633\u0627\u06cc\u0628\u0631\u06cc \u0648 \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0627\u06cc\u0627\u0644\u0627\u062a \u0645\u062a\u062d\u062f\u0647 (CISA) \u062a\u0648\u0635\u06cc\u0647\u200c\u0627\u06cc \u0627\u0632 \u062e\u0648\u062f \u0635\u0627\u062f\u0631 \u06a9\u0631\u062f\u0647 \u0648 \u0627\u0632 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0645\u06cc\u200c\u062e\u0648\u0627\u0647\u062f \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627\u06cc \u0627\u0641\u0634\u0627 \u0634\u062f\u0647 \u0631\u0627 \u0628\u0627\u0632\u0646\u0634\u0627\u0646\u06cc \u06a9\u0646\u0646\u062f \u0648 \u062a\u0627 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u0648\u0635\u0644\u0647\u200c\u0647\u0627 \u0627\u0639\u0645\u0627\u0644 \u0634\u0648\u0646\u062f\u060c \u0639\u0645\u0644\u06a9\u0631\u062f SSL-VPN \u0631\u0627 \u063a\u06cc\u0631\u0641\u0639\u0627\u0644 \u06a9\u0646\u0646\u062f. \u062a\u06cc\u0645 \u0648\u0627\u06a9\u0646\u0634 \u0627\u0636\u0637\u0631\u0627\u0631\u06cc \u0631\u0627\u06cc\u0627\u0646\u0647 \u0627\u06cc \u0641\u0631\u0627\u0646\u0633\u0647 (CERT-FR)\u060c \u062f\u0631 \u0628\u0648\u0644\u062a\u0646 \u0645\u0634\u0627\u0628\u0647\u06cc\u060c \u06af\u0641\u062a \u06a9\u0647 \u0627\u0632 \u0645\u0635\u0627\u0644\u062d\u0647 \u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0628\u0647 \u0627\u0648\u0627\u06cc\u0644 \u0633\u0627\u0644 2023 \u0628\u0627\u0632\u0645\u06cc \u06af\u0631\u062f\u062f\u060c \u0622\u06af\u0627\u0647 \u0627\u0633\u062a.\n\n\n\u0628\u0646\u062c\u0627\u0645\u06cc\u0646 \u0647\u0631\u06cc\u0633\u060c \u0645\u062f\u06cc\u0631\u0639\u0627\u0645\u0644 watchTowr \u062f\u0631 \u0628\u06cc\u0627\u0646\u06cc\u0647\u200c\u0627\u06cc  \u06af\u0641\u062a \u06a9\u0647 \u0627\u06cc\u0646 \u062d\u0627\u062f\u062b\u0647 \u0628\u0647 \u062f\u0648 \u062f\u0644\u06cc\u0644 \u0645\u0647\u0645 \u0628\u0627\u0639\u062b \u0646\u06af\u0631\u0627\u0646\u06cc \u0627\u0633\u062a.\n\n\u0647\u0631\u06cc\u0633 \u06af\u0641\u062a: \u00ab\u0627\u0648\u0644\u060c \u062f\u0631 \u0637\u0628\u06cc\u0639\u062a \u0627\u0633\u062a\u062b\u0645\u0627\u0631 \u0628\u0633\u06cc\u0627\u0631 \u0633\u0631\u06cc\u0639\u062a\u0631 \u0627\u0632 \u0622\u0646 \u0686\u06cc\u0632\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0633\u0627\u0632\u0645\u0627\u0646 \u0647\u0627 \u0645\u06cc \u062a\u0648\u0627\u0646\u0646\u062f \u0627\u0635\u0644\u0627\u062d \u06a9\u0646\u0646\u062f. \u0645\u0647\u0645\u062a\u0631 \u0627\u0632 \u0622\u0646\u060c \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0628\u0647 \u0648\u0636\u0648\u062d \u0648 \u0639\u0645\u06cc\u0642\u0627\u064b \u0627\u0632 \u0627\u06cc\u0646 \u0648\u0627\u0642\u0639\u06cc\u062a \u0622\u06af\u0627\u0647 \u0647\u0633\u062a\u0646\u062f.\u00bb\n\n\u062f\u0648\u0645 \u0648 \u0648\u062d\u0634\u062a\u0646\u0627\u06a9\u200c\u062a\u0631\u060c \u0628\u0627\u0631\u0647\u0627 \u062f\u06cc\u062f\u0647\u200c\u0627\u06cc\u0645 \u06a9\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u067e\u0633 \u0627\u0632 \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0633\u0631\u06cc\u0639\u060c \u0642\u0627\u0628\u0644\u06cc\u062a\u200c\u0647\u0627 \u0648 \u062f\u0631\u0647\u0627\u06cc \u067e\u0634\u062a\u06cc \u0631\u0627 \u0628\u0647 \u06a9\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u0646\u062f \u06a9\u0647 \u0628\u0631\u0627\u06cc \u0632\u0646\u062f\u0647 \u0645\u0627\u0646\u062f\u0646 \u0627\u0632 \u0641\u0631\u0622\u06cc\u0646\u062f\u0647\u0627\u06cc \u0648\u0635\u0644\u0647\u200c\u0633\u0627\u0632\u06cc\u060c \u0627\u0631\u062a\u0642\u0627 \u0648 \u0628\u0627\u0632\u0646\u0634\u0627\u0646\u06cc \u06a9\u0627\u0631\u062e\u0627\u0646\u0647\u200c\u0627\u06cc \u0637\u0631\u0627\u062d\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627 \u0628\u0631\u0627\u06cc \u06a9\u0627\u0647\u0634 \u0627\u06cc\u0646 \u0645\u0648\u0642\u0639\u06cc\u062a\u200c\u0647\u0627 \u0628\u0631\u0627\u06cc \u062d\u0641\u0638 \u067e\u0627\u06cc\u062f\u0627\u0631\u06cc \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627\u06cc \u062f\u0631 \u0645\u0639\u0631\u0636 \u062e\u0637\u0631 \u062a\u06a9\u06cc\u0647 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f.\u00bb\n\n\u0647\u0631\u06cc\u0633 \u0647\u0645\u0686\u0646\u06cc\u0646 \u06af\u0641\u062a \u06a9\u0647 \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u062f\u0631\u0628\u200c\u0647\u0627\u06cc \u067e\u0634\u062a\u06cc \u062f\u0631 \u0633\u0631\u0627\u0633\u0631 \u067e\u0627\u06cc\u06af\u0627\u0647 \u0645\u0634\u062a\u0631\u06cc WatchTowr \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f\u060c \u0648 \u0622\u0646\u0647\u0627 \"\u062a\u0623\u062b\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627\u06cc\u06cc \u0645\u0634\u0627\u0647\u062f\u0647 \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f \u06a9\u0647 \u0628\u0633\u06cc\u0627\u0631\u06cc \u0628\u0647 \u0648\u0636\u0648\u062d \u0622\u0646 \u0631\u0627 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u062d\u06cc\u0627\u062a\u06cc \u0645\u06cc\u200c\u0646\u0627\u0645\u0646\u062f.\"\n\n\u0628\u0646\u06cc\u0627\u062f Shadowserver \u0641\u0627\u0634 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 16620 \u062f\u0633\u062a\u06af\u0627\u0647 Fortinet \u062f\u0631 \u0645\u0639\u0631\u0636 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u0628\u0627 \u062f\u0631\u067e\u0634\u062a\u06cc \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 \u06a9\u0647 \u0628\u0647 \u0639\u0648\u0627\u0645\u0644 \u062a\u0647\u062f\u06cc\u062f \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u062f\u0631 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0642\u0628\u0644\u0627\u064b \u0646\u0642\u0636 \u0634\u062f\u0647 \u0627\u0645\u0627 \u06a9\u0627\u0645\u0644\u0627\u064b \u0648\u0635\u0644\u0647 \u0634\u062f\u0647\u200c\u0627\u0646\u062f\u060c \u0645\u06cc\u200c\u062f\u0647\u062f \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f.\n\n\u0627\u0632 15 \u0622\u0648\u0631\u06cc\u0644 2025\u060c 7886 \u0645\u0648\u0631\u062f \u0622\u0633\u06cc\u0628 \u062f\u06cc\u062f\u0647 \u062f\u0631 \u0622\u0633\u06cc\u0627 \u0648\u0627\u0642\u0639 \u0634\u062f\u0647 \u0627\u0633\u062a\u060c \u067e\u0633 \u0627\u0632 \u0622\u0646 \u0627\u0631\u0648\u067e\u0627 (3766)\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627\u06cc \u0634\u0645\u0627\u0644\u06cc (3217)\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627\u06cc \u062c\u0646\u0648\u0628\u06cc (1054)\u060c \u0622\u0641\u0631\u06cc\u0642\u0627 (399) \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 (298).\n\n\ud83c\udfed \u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\ud83d\udc6e\ud83c\udffd\u200d\u2640\ufe0f\u0647\u0631\u06af\u0648\u0646\u0647 \u0627\u0646\u062a\u0634\u0627\u0631 \u0648 \u0630\u06a9\u0631 \u0645\u0637\u0627\u0644\u0628 \u0628\u062f\u0648\u0646 \u0630\u06a9\u0631 \u062f\u0642\u06cc\u0642 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u0644\u06cc\u0646\u06a9 \u0622\u0646 \u0645\u0645\u0646\u0648\u0639 \u0627\u0633\u062a. \n\u0627\u062f\u0645\u06cc\u0646:\n\u200fhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u0648\u0627\u062a\u0633 \u0622\u067e :\nhttps://chat.whatsapp.com/FpB620AWEeSKvd8U6cFh33\n\u06af\u0631\u0648\u0647 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ICSCERT_IR", "creation_timestamp": "2025-04-25T20:20:37.000000Z"}, {"uuid": "289a12a6-90a9-4084-9e5a-2b4a611d35c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/346deb33-3493-4fb2-8ad7-b283e06e5fb1", "content": "", "creation_timestamp": "2026-02-02T12:26:57.658283Z"}, {"uuid": "388f2b09-2bf3-4c33-b0ac-9f3c47b3131b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/f61b42b7-e6ee-412f-9e02-0aae72d1e58f", "content": "", "creation_timestamp": "2026-02-02T12:25:27.342742Z"}, {"uuid": "dce71929-59e0-452c-8cb3-cdccdfd7dd2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/ap_security/126", "content": "\u2604\ufe0fCVE-2023-27997 Fortigate\n\n\u0423\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0435 \u0438\u0441\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 \u043d\u0430 Fortigate VPN\ud83d\udcbb\n\n\ud83d\udcdd\u0421\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 \u0440\u0430\u0437\u0431\u043e\u0440: \nhttps://blog.lexfo.fr/xortigate-cve-2023-27997.html\n\n\ud83d\udce3\u0421\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 PoC:\nhttps://github.com/lexfo/xortigate-cve-2023-27997\n\n#cve #poc #exploit", "creation_timestamp": "2023-10-13T08:09:05.000000Z"}, {"uuid": "1f03df4d-ab46-4d2e-a9fb-44a732b95cff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/cKure/11216", "content": "\u25a0\u25a1\u25a1\u25a1\u25a1 Zero-Day | CVE-2023-27997\n\n300,000+ Fortinet firewalls vulnerable to critical FortiOS RCE bug.\n\nhttps://www.bleepingcomputer.com/news/security/300-000-plus-fortinet-firewalls-vulnerable-to-critical-fortios-rce-bug/", "creation_timestamp": "2023-07-03T15:44:17.000000Z"}, {"uuid": "a3837cde-d1fb-4d64-bfab-175475ce4fd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/cKure/11101", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 Fortinet has released patches to address a critical security flaw in its FortiGate firewalls that could be abused by a threat actor to achieve remote code execution.\n\nCVE-2023-27997, is reachable pre-authentication, on every SSL VPN appliance.\n\nhttps://thehackernews.com/2023/06/critical-rce-flaw-discovered-in.html\n\nhttps://olympecyberdefense.fr/1193-2/", "creation_timestamp": "2023-06-12T10:30:24.000000Z"}, {"uuid": "985cbf37-86ab-4f9e-ae8b-732adb1b8121", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/LutVR4Z7EGAjWAB4CWEiLZBFP0L7iZFjWdga91fjhJ_umlw", "content": "", "creation_timestamp": "2023-07-13T12:39:30.000000Z"}, {"uuid": "cfd38f8e-c28f-4f63-af6b-de4b3eae61a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5386", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aExploit for xortigate (CVE-2023-27997)\nURL\uff1ahttps://github.com/lexfo/xortigate-cve-2023-27997\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-10-12T16:00:09.000000Z"}, {"uuid": "d90d8923-a691-413c-875a-bd8ea54814fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5448", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aFortinet unauthenticated RCE POC and writeup...\nURL\uff1ahttps://github.com/m474r5/CVE-2023-27997-RCE\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2023-10-16T13:53:22.000000Z"}, {"uuid": "c5df5655-c77b-4fe9-8760-f95ae979dec1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/kasraone_com/378", "content": "\ud83d\udd34 CVE \n\n      CVE-2023-27997\n\n\nhttps://github.com/hheeyywweellccoommee/CVE-2023-27997-POC-FortiOS-SSL-VPN-buffer-overflow-vulnerability-ssijz\n\n\nCVE-2023-20887\n\nhttps://github.com/sinsinology/CVE-2023-20887\n\nhttps://summoning.team/blog/vmware-vrealize-network-insight-rce-cve-2023-20887", "creation_timestamp": "2023-07-15T21:14:59.000000Z"}, {"uuid": "8d23a509-3297-402a-8045-80e7a468a112", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/Master_X_Cha/6173", "content": "CVE-2023-27997 \u2705\n\n\u2714\ufe0f \u0646\u0648\u0639\u0647\u0627: \u0627\u0644\u062b\u063a\u0631\u0629 \u062f\u064a \u0645\u0646 \u0646\u0648\u0639 \u062a\u062c\u0627\u0648\u0632 \u0633\u0639\u0629 \u0627\u0644\u0645\u062e\u0632\u0646 \u0627\u0644\u0645\u0624\u0642\u062a \u0641\u064a \u0627\u0644\u0643\u0648\u0645\u0629 (Heap Buffer Overflow) \u0648\u0628\u062a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u062a\u0646\u0641\u064a\u0630 \u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0628\u0631\u0645\u062c\u064a\u0629 \u0639\u0646 \u0628\u0639\u062f \u0639\u0644\u0649 \u062c\u0647\u0627\u0632 FortiGate \u0627\u0644\u0645\u062a\u0627\u062b\u0631\n\n\u2714\ufe0f \u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0644\u0649 \u0645\u062a\u0627\u062b\u0631:\n\u0627\u0644\u062b\u063a\u0631\u0629 \u0628\u062a\u0627\u062b\u0631 \u0639\u0644\u0649 \u0627\u062c\u0647\u0632\u0629 Fortinet FortiGate \u0627\u0644\u0644\u064a \u0628\u062a\u0634\u063a\u0644 \u0627\u0635\u062f\u0627\u0631\u0627\u062a \u0645\u0639\u064a\u0646\u0629 \u0645\u0646 \u0646\u0638\u0627\u0645 FortiOS \u0645\u0639 \u062a\u0645\u0643\u064a\u0646 \u0645\u064a\u0632\u0629 SSL-VPN\n\n\u2714\ufe0f \u062a\u0635\u0646\u064a\u0641 \u0627\u0644\u062e\u0637\u0648\u0631\u0629:\n\u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u062a\u0635\u0646\u0641\u062a \u0639\u0644\u0649 \u0627\u0646\u0647\u0627 \"\u062d\u0631\u062c\u0629\" \u0628\u0633\u0628\u0628 \u0627\u0645\u0643\u0627\u0646\u064a\u0629 \u0627\u0633\u062a\u063a\u0644\u0627\u0644\u0647\u0627 \u0644\u062a\u0646\u0641\u064a\u0630 \u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0628\u0631\u0645\u062c\u064a\u0629 \u0639\u0646 \u0628\u0639\u062f \u0645\u0646 \u063a\u064a\u0631 \u0645\u0635\u0627\u062f\u0642\u0629\n\n\u2714\ufe0f \u0645\u062e\u0627\u0637\u0631\u0647\u0627:\n\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0627\u0644\u062b\u063a\u0631\u0629 \u0645\u0645\u0643\u0646 \u064a\u062f\u064a \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u062a\u062d\u0643\u0645 \u0643\u0627\u0645\u0644 \u0641\u064a\u0627\u0644\u062c\u0647\u0627\u0632 \u0648\u062f\u0647 \u0628\u064a\u0633\u0645\u062d\u0644\u0647 \u064a\u0646\u0641\u0630 \u0627\u0648\u0627\u0645\u0631 \u0636\u0627\u0631\u0629 \u0648\u0643\u0645\u0627\u0646 \u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u062d\u0633\u0627\u0633\u0629 \u0627\u0648 \u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u062e\u062f\u0645\u0627\u062a\n\n\u26a1\ufe0f \u0637\u064a\u0628 \u0647\u0644 \u062a\u0645 \u062d\u0644 \u0627\u0644\u0645\u0634\u0643\u0644\u0629\u061f\n\u0627\u064a\u0648\u0629 Fortinet \u0639\u0645\u0644\u062a \u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0645\u0646\u064a\u0629 \u0648\u0639\u0627\u0644\u062c\u0648 \u0627\u0644\u062b\u063a\u0631\u0629 \n\n\u26a1\ufe0f \u0633\u0639\u0631 \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u062d\u0627\u0644\u064a\u061f\n\u0633\u0639\u0631\u0647\u0627 \u062d\u0627\u0644\u064a\u0627 \u0628\u064a\u0646 0$ \u0627\u0644\u0649 1k$\n\n\u2705 \u0627\u0632\u0627\u064a \u0628\u064a\u062a\u0645 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 :\n\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0627\u0644\u062b\u063a\u0631\u0629 \u062f\u064a \u0645\u0637\u0644\u0648\u0628 \u0644\u064a\u0647 \u0641\u0647\u0645 \u0639\u0645\u064a\u0642 \u0644\u0627\u0644\u064a\u0627\u062a \u0627\u062f\u0627\u0631\u0629 \u0627\u0644\u0630\u0627\u0643\u0631\u0629 \u0641\u064a \u0646\u0638\u0627\u0645 FortiOS \u062e\u0635\u0648\u0635\u0627 \u0627\u0632\u0627\u064a \u0628\u064a\u062a\u0645 \u062a\u062e\u0635\u064a\u0635 \u0627\u0644\u0643\u0648\u0645\u0629 \u0648\u0627\u0644\u062a\u0639\u0627\u0645\u0644 \u0645\u0639 \u0627\u0644\u0628\u064a\u0627\u0646\u0627\u062a \u0641\u064a\u0647\u0627 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u064a\u062d\u062a\u0627\u062c \u064a\u0635\u0645\u0645 payload \u062e\u0627\u0635 \u0628\u064a\u0633\u062a\u063a\u0644 \u062a\u062c\u0627\u0648\u0632 \u0633\u0639\u0629 \u0627\u0644\u0645\u062e\u0632\u0646 \u0627\u0644\u0645\u0624\u0642\u062a \u0641\u064a \u0627\u0644\u0643\u0648\u0645\u0629 \u0648\u062f\u0647 \u0628\u064a\u0633\u0645\u062d\u0644\u0647 \u064a\u0646\u0641\u0630 \u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0628\u0631\u0645\u062c\u064a\u0629 \u0639\u0634\u0648\u0627\u0626\u064a\u0629 \u0639\u0644\u0649 \u0627\u0644\u062c\u0647\u0627\u0632 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641", "creation_timestamp": "2025-04-24T05:53:51.000000Z"}, {"uuid": "5acc9983-5c89-4d9c-bde0-5bf164c2f867", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/BleepingComputer/17238", "content": "Latest news and stories from BleepingComputer.com\n300,000+ Fortinet firewalls vulnerable to critical FortiOS RCE bug\n\nHundreds of thousands of FortiGate firewalls are vulnerable to a critical security issue identified as CVE-2023-27997, almost a month after Fortinet\u00a0released an update that addresses the problem. [...]", "creation_timestamp": "2023-07-03T13:28:46.000000Z"}, {"uuid": "06a662b6-3317-43cb-8e5b-64e3e837d95a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/BleepingComputer/17237", "content": "\u200a300,000+ Fortinet firewalls vulnerable to critical FortiOS RCE bug\n\nHundreds of thousands of FortiGate firewalls are vulnerable to a critical security issue identified as CVE-2023-27997, almost a month after Fortinet\u00a0released an update that addresses the problem. [...]\n\nhttps://www.bleepingcomputer.com/news/security/300-000-plus-fortinet-firewalls-vulnerable-to-critical-fortios-rce-bug/", "creation_timestamp": "2023-07-03T13:01:53.000000Z"}, {"uuid": "d76e7102-98a0-4815-a798-7a3b8889ffb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/ptswarm/176", "content": "Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was\n\n\ud83d\udc64 by Aliz Hammond \n\nWhen Lexfo Security teased a critical pre-authentication RCE bug in FortiGate devices on Saturday 10th, many people speculated on the practical impact of the bug. Would this be a true, sky-is-falling level vulnerability like the recent CVE-2022-42475? Or was it some edge-case hole, requiring some unusual and exotic requisite before any exposure? Others even went further, questioning the legitimacy of the bug itself. Details were scarce and guesswork was rife.\n\nThe watchTowr's team successfully reproduced the CVE-2023-27997 vulnerability and published detailed blogpost with a Python PoC for crashing the target device.\n\n\ud83d\udcdd Contents:\n\u25cf Patch Diffing \n\u25cf Exploitation\n\u25cf Impact\n\u25cf Rapid Response\n\nhttps://labs.watchtowr.com/xortigate-or-cve-2023-27997/", "creation_timestamp": "2023-06-13T05:39:23.000000Z"}, {"uuid": "831a8c82-3f55-455c-b800-0993961bfc26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/purple_medved/36", "content": "\u0421\u0435\u0433\u043e\u0434\u043d\u044f \u0440\u0435\u0447\u044c \u043f\u043e\u0439\u0434\u0435\u0442 \u043e\u0431 \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0439 RCE \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2023-27997 \u0432\u044b\u0441\u043e\u043a\u043e\u0433\u043e \u0443\u0440\u043e\u0432\u043d\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u043d\u043e\u0441\u0442\u0438 9.8 CRITICAL \u043f\u043e \u0440\u0435\u0439\u0442\u0438\u043d\u0433\u0443 CVSS3.1 \u0432 \u0440\u0435\u0448\u0435\u043d\u0438\u044f\u0445 SSL VPN FortiGate \u043e\u0442 Fortinet.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043f\u0440\u043e\u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0431\u0443\u0444\u0435\u0440\u0430 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0441 FortiOS (\u0432\u0435\u0440\u0441\u0438\u0438 6.0, 6.4, 7.0 \u0438 7.2) \u0438 FortiProxy (1.1, 1.2., 2.0, 7.0, 7.2) \n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 Watchtowr \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u044b\u0439 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 patch diffing'a \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043e\u0442 Fortinet \u0438 POC-\u0441\u043d\u0438\u043f\u043f\u0435\u0442 \u0434\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0431\u0443\u0444\u0435\u0440\u0430 \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0438\u0439 \u043a \u043f\u0435\u0440\u0435\u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432.\n\n\u041f\u043e\u0438\u0441\u043a\u043e\u0432\u044b\u0439 \u0437\u0430\u043f\u0440\u043e\u0441 Shodan: ssl.cert.subject.cn:FortiGate\n\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438: \u041f\u0430\u0442\u0447 \u0443\u0436\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d, \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c\u0441\u044f \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438 ASAP.\n\n#CVE-2023-27997 #RCE #FortiGate", "creation_timestamp": "2023-06-13T14:30:54.000000Z"}, {"uuid": "62269e5d-0599-43ef-bf38-9eab84ef6648", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/ap_security/184", "content": "\u2604\ufe0fCVE-2023-27997 Fortigate\n\n\u0423\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0435 \u0438\u0441\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 \u043d\u0430 Fortigate VPN\ud83d\udcbb\n\n\ud83d\udcdd\u0421\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 \u0440\u0430\u0437\u0431\u043e\u0440: \nhttps://blog.lexfo.fr/xortigate-cve-2023-27997.html\n\n\ud83d\udce3\u0421\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 PoC:\nhttps://github.com/lexfo/xortigate-cve-2023-27997\n\n#cve #poc #exploit", "creation_timestamp": "2023-10-13T08:09:05.000000Z"}, {"uuid": "f4831e6c-5a9e-49c9-b11b-5dff1e468df9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/kasperskyb2b/691", "content": "\u274c \u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c FortiOS\n\n\u041f\u043e\u043a\u0430 \u0432 \u0420\u0424 \u043f\u0440\u0430\u0437\u0434\u043d\u043e\u0432\u0430\u043b\u0438, \u0432 Fortinet \u0432\u044b\u043f\u0443\u0441\u043a\u0430\u043b\u0438 \u043f\u0430\u0442\u0447\u0438.  \u0417\u0430\u043b\u0430\u0442\u0430\u043d\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2023-27997 (CVSS 9.2) \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u043f\u0440\u043e\u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0431\u0443\u0444\u0435\u0440\u0430 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0441 FortiOS (\u0432\u0435\u0440\u0441\u0438\u0438 6.0, 6.4, 7.0 \u0438 7.2). \u0438 FortiProxy (1.1, 1.2., 2.0, 7.0, 7.2).  \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0430\u0441\u043f\u043e\u043b\u043e\u0436\u0435\u043d\u0430 \u0432 \u043c\u043e\u0434\u0443\u043b\u0435 SSL-VPN, \u0435\u0434\u0438\u043d\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0439 \u0441\u043f\u043e\u0441\u043e\u0431 \u0440\u0435\u0448\u0435\u043d\u0438\u044f, \u043f\u0440\u0435\u0434\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c \u2014 \u0441\u0440\u043e\u0447\u043d\u044b\u0439 \u043f\u0430\u0442\u0447. \u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f, \u0447\u0442\u043e \u0436\u0435\u043b\u0435\u0437\u043a\u0438 Fortinet \u043b\u044e\u0431\u044f\u0442 \u0430\u043f\u0434\u0435\u0439\u0442\u0438\u0442\u044c\u0441\u044f \u043f\u043e\u0448\u0430\u0433\u043e\u0432\u043e, \u043d\u0430 \u043a\u0430\u0436\u0434\u0443\u044e \u043d\u043e\u0432\u0443\u044e \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u0443\u044e \u0432\u0435\u0440\u0441\u0438\u044e, \u044d\u0442\u043e \u0441\u0443\u043b\u0438\u0442 \u0445\u043e\u0440\u043e\u0448\u0435\u0435 \u0440\u0430\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u0435 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430\u043c, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u0440\u043e\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u043e\u0434\u0438\u043d \u0438\u0437 \u043f\u0440\u0435\u0434\u044b\u0434\u0443\u0449\u0438\u0445 \u043f\u0430\u0442\u0447\u0435\u0439.\n\u0412 \u0441\u0432\u043e\u0451\u043c \u0431\u043b\u043e\u0433\u0435 Fortinet \u043f\u0438\u0448\u0435\u0442, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c\u0438, \u043d\u043e \u043c\u044b \u043c\u043e\u0436\u0435\u043c \u0443\u0432\u0435\u0440\u0435\u043d\u043d\u043e \u0441\u043a\u0430\u0437\u0430\u0442\u044c, \u0447\u0442\u043e \u0435\u0441\u043b\u0438 \u0435\u0449\u0451 \u043d\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0430\u0441\u044c, \u0442\u043e \u0431\u0443\u0434\u0435\u0442.\n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2023-06-13T09:41:03.000000Z"}, {"uuid": "de1d2cd9-4355-47fc-922f-5af5da318ee4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/kasperskyb2b/730", "content": "\u0415\u0441\u043b\u0438 \u0432\u044b \u0435\u0449\u0451 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0435 Fortigate \u0438\u043b\u0438 \u0447\u0442\u043e-\u0442\u043e \u0435\u0449\u0451 \u043d\u0430 \u0431\u0430\u0437\u0435 FortiOS, \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u0442\u0435 \u044d\u0442\u0438 \u043f\u0430\u0442\u0447\u0438 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e \u0431\u044b\u0441\u0442\u0440\u043e. CVE-2023-27997 (CVSS 9.8) \u0443\u0436\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c\u0438. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c, \u043f\u043e \u043e\u0446\u0435\u043d\u043a\u0435 Bishopfox, \u043f\u043e\u0447\u0442\u0438 70% \u0432\u0438\u0434\u0438\u043c\u044b\u0445 \u0438\u0437 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430 \u0438\u043d\u0441\u0442\u0430\u043b\u043b\u044f\u0446\u0438\u0439 \u0432\u0441\u0451 \u0435\u0449\u0451 \u0443\u044f\u0437\u0432\u0438\u043c\u044b.\n \n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2023-07-04T09:48:22.000000Z"}, {"uuid": "81a65881-ee1e-471e-8076-4de5e3aa18b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/kasperskyb2b/704", "content": "\u23e9 \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u0418\u0411-\u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e\n\n\ud83d\ude33 Microsoft \u043f\u0440\u0438\u0437\u043d\u0430\u043b\u0430, \u0447\u0442\u043e \u043f\u0440\u0438\u043b\u0435\u0433\u043b\u0438 \u043f\u043e\u0434 DDoS. \u042d\u0442\u043e \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u0448\u043e\u043a\u0438\u0440\u0443\u044e\u0449\u0435\u0435 \u043f\u0440\u0438\u0437\u043d\u0430\u043d\u0438\u0435 \u043e\u0442 \u043e\u0434\u043d\u043e\u0433\u043e \u0438\u0437 \u0442\u043e\u043f-3 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0445 \u043f\u0440\u043e\u0432\u0430\u0439\u0434\u0435\u0440\u043e\u0432 \u0432 \u043c\u0438\u0440\u0435, \u0442\u0435\u043c \u0431\u043e\u043b\u0435\u0435 \u0447\u0442\u043e \u043e\u0442\u043a\u0430\u0437 \u043d\u0430\u043a\u0440\u044b\u043b \u043d\u0435 \u043a\u0430\u043a\u0443\u044e-\u0442\u043e \u043c\u0435\u043b\u043e\u0447\u044c, \u0430 Outlook, OneDrive \u0438 SharePoint. \u0412 \u0430\u0442\u0430\u043a\u0435 \u043e\u0431\u0432\u0438\u043d\u044f\u044e\u0442 Anonymous Sudan, \u043d\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u0435\u0435 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0430\u0441\u043f\u0435\u043a\u0442 \u2014 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u043f\u0440\u043e\u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u0438 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 \u0438 API (L7) \u0432\u043c\u0435\u0441\u0442\u043e \u0442\u0438\u043f\u0438\u0447\u043d\u044b\u0445 \u0442\u0440\u044e\u043a\u043e\u0432 \u0434\u0438\u0434\u043e\u0441\u0435\u0440\u043e\u0432 \u043d\u0430 \u0442\u0440\u0430\u043d\u0441\u043f\u043e\u0440\u0442\u043d\u043e\u043c \u0443\u0440\u043e\u0432\u043d\u0435 (OSI L3/L4). \u0412 \u043f\u0440\u0438\u043c\u0435\u043d\u0451\u043d\u043d\u044b\u0445 \u0442\u0435\u0445\u043d\u0438\u043a\u0430\u0445 \u043d\u0435 \u043f\u0440\u043e\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043e\u0441\u043e\u0431\u043e\u0439 \u043d\u043e\u0432\u0438\u0437\u043d\u044b (https flood, cache bypass, slowloris), \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u043d\u0435\u0443\u0434\u0438\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u043e, \u0447\u0442\u043e Microsoft \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u0434\u0435\u0442\u0430\u043b\u0438 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430 \u0432\u0435\u0447\u0435\u0440\u043e\u043c \u0432 \u043f\u044f\u0442\u043d\u0438\u0446\u0443 \u0438 \u043d\u0438 \u0440\u0430\u0437\u0443 \u043d\u0435 \u043f\u0435\u0440\u0435\u0447\u0438\u0441\u043b\u0438\u043b\u0430 \u043f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u0432\u0448\u0438\u0435 \u0441\u0435\u0440\u0432\u0438\u0441\u044b \ud83d\ude08.\n\n\ud83d\udccc \u041a\u043e\u043c\u0430\u043d\u0434\u0430 Kaspersky Digital Footprint Intelligence \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0430\u0441\u044c \u0441\u0442\u0430\u0442\u0438\u0441\u0442\u0438\u043a\u043e\u0439 \u043f\u043e \u043f\u043e\u0434\u043f\u043e\u043b\u044c\u043d\u043e\u043c\u0443 \u0440\u044b\u043d\u043a\u0443 Malware-as-as-Service. 58% \u043f\u0440\u0435\u0434\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u2014 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u044b \u0434\u043b\u044f \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 (\u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043b\u044c\u0449\u0438\u043a\u0438 \u0438 \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0449\u0438\u043a\u0438), 24% \u2014 \u0438\u043d\u0444\u043e\u0441\u0442\u0438\u043b\u0435\u0440\u044b, 18% \u2014 \u0431\u043e\u0442\u043d\u0435\u0442\u044b, \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a\u0438 \u0438 \u0431\u044d\u043a\u0434\u043e\u0440\u044b. \u0412 \u043f\u043e\u0441\u0442\u0435 \u0434\u0435\u0442\u0430\u043b\u044c\u043d\u043e \u0440\u0430\u0441\u0441\u043c\u043e\u0442\u0440\u0435\u043d\u0430 \u0434\u0438\u043d\u0430\u043c\u0438\u043a\u0430 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 \u0448\u0442\u0430\u043c\u043c\u043e\u0432 ransomware \u0438 \u0434\u0430\u043d\u0430 \u043e\u0431\u0449\u0430\u044f \u0441\u0445\u0435\u043c\u0430 \u0440\u0430\u0431\u043e\u0442\u044b \u043f\u0440\u0435\u0441\u0442\u0443\u043f\u043d\u0438\u043a\u043e\u0432.\n\n\u041d\u043e\u0432\u044b\u0439 Linux-\u0438\u043c\u043f\u043b\u0430\u043d\u0442 \u0433\u0440\u0443\u043f\u043f\u044b Chamelgang \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 DNS over HTTPS \u0434\u043b\u044f \u044d\u043a\u0441\u0444\u0438\u043b\u044c\u0442\u0440\u0430\u0446\u0438\u0438 \u0434\u0430\u043d\u043d\u044b\u0445. \u0424\u0443\u043d\u043a\u0446\u0438\u0438 \u0438\u043c\u043f\u043b\u0430\u043d\u0442\u0430 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u043f\u0440\u043e\u0441\u0442\u044b: \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0430 \u0438 \u0432\u044b\u0433\u0440\u0443\u0437\u043a\u0430 \u0444\u0430\u0439\u043b\u043e\u0432, \u0437\u0430\u043f\u0443\u0441\u043a \u0448\u0435\u043b\u043b-\u043a\u043e\u043c\u0430\u043d\u0434.  \u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f \u0438\u043d\u0442\u0435\u0440\u0435\u0441 \u044d\u0442\u043e\u0439 \u0433\u0440\u0443\u043f\u043f\u044b \u043a \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u043c \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u043c, \u0437\u0430\u0449\u0438\u0449\u0430\u0442\u044c \u043e\u0442 \u043d\u0438\u0445 \u0442\u0435\u043f\u0435\u0440\u044c \u043d\u0430\u0434\u043e \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e Windows-\u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443. \n\n\ud83e\udd14 \u0426\u0435\u043b\u0435\u0432\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u0418\u0411-\u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u043e\u0432 \u2014 \u043d\u0430 GitHub \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u0444\u0430\u043b\u044c\u0448\u0438\u0432\u044b\u0435 PoC \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439. \u0410\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u0438\u043c\u0438\u0442\u0438\u0440\u0443\u044e\u0442 \u043f\u0440\u043e\u0444\u0438\u043b\u0438 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0438 \u0440\u0430\u0437\u043c\u0435\u0449\u0430\u044e\u0442 \u043f\u043e\u0434 \u0432\u0438\u0434\u043e\u043c \u043a\u043e\u0434\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 Python-\u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043e\u0432 \u0434\u043b\u044f Windows \u0438 Linux. \u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f \u043f\u0440\u043e\u0444\u0438\u043b\u044c \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u0436\u0435\u0440\u0442\u0432, \u043d\u0435 \u043f\u043e\u043d\u044f\u0442\u043d\u043e, \u043d\u0430 \u0447\u0442\u043e \u0440\u0430\u0441\u0447\u0451\u0442, \u043d\u043e \u043e\u0431\u043e\u0440\u043e\u0442 \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0439.\n\nCyfirma \u0438 Zscaler \u0438\u0437\u0443\u0447\u0438\u043b\u0438 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043d\u043e\u0432\u043e\u0433\u043e \u0438\u043d\u0444\u043e\u0441\u0442\u0438\u043b\u0435\u0440\u0430 Mystic Stealer, \u0431\u044b\u0441\u0442\u0440\u043e \u043d\u0430\u0431\u0438\u0440\u0430\u044e\u0449\u0435\u0433\u043e \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u043e\u0441\u0442\u044c \u043d\u0430 \u043f\u043e\u0434\u043f\u043e\u043b\u044c\u043d\u044b\u0445 \u043f\u043b\u043e\u0449\u0430\u0434\u043a\u0430\u0445. \u041e\u043d \u0441\u043f\u043e\u0441\u043e\u0431\u0435\u043d \u0432\u043e\u0440\u043e\u0432\u0430\u0442\u044c \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437 40 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u043e\u0432, 9 \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440\u043e\u0432 \u043f\u0430\u0440\u043e\u043b\u0435\u0439 \u0438 2FA, 55 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0439 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 \u0434\u043b\u044f \u0440\u0430\u0431\u043e\u0442\u044b \u0441 \u043a\u0440\u0438\u043f\u0442\u043e\u0432\u0430\u043b\u044e\u0442\u0430\u043c\u0438, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0438\u0437 Telegram \u0438 Steam. \u0421\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u044b\u0435 \u0441\u0431\u043e\u0440\u043a\u0438 \u0441\u0442\u0438\u043b\u0435\u0440\u0430 \u043d\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0442 \u0432 \u0421\u041d\u0413.\n\nFortinet \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e \u0440\u0430\u0437\u043e\u0431\u0440\u0430\u043b\u0438 \u0434\u0432\u0430 \u0448\u0442\u0430\u043c\u043c\u0430 \u043d\u043e\u0432\u043e\u0433\u043e \u0441\u0435\u043c\u0435\u0439\u0441\u0442\u0432\u0430 ransomware, Big Head. \u041f\u043e\u043a\u0430, \u043f\u043e\u0445\u043e\u0436\u0435, \u0446\u0435\u043b\u044f\u0442\u0441\u044f \u0432 Windows \u0438 \u0432 \u0447\u0430\u0441\u0442\u043d\u044b\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439.\n\n\u041d\u043e\u0432\u0430\u044f \u043d\u0435\u0434\u0435\u043b\u044f \u2014 \u043d\u043e\u0432\u044b\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u043f\u0430\u043a\u0435\u0442\u044b \u0432 npm. 11 \u0448\u0442\u0443\u043a.\n\n\u23e9 \u0420\u041a\u041d \u0430\u043d\u043e\u043d\u0441\u0438\u0440\u043e\u0432\u0430\u043b \u0440\u0443\u0441\u0441\u043a\u0438\u0439 Shodan, \u0430 \u0442\u043e\u0447\u043d\u0435\u0435 \u00ab\u043e\u0442\u0435\u0447\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u0443\u044e \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f\u00bb. \u041e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u0430\u043d\u043e\u043d\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u043e \u00ab\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0437\u0430\u0440\u0443\u0431\u0435\u0436\u043d\u044b\u043c\u0438 \u0441\u0435\u0440\u0432\u0438\u0441\u0430\u043c\u0438 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0433\u043e \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0430 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430\u00bb.\n\n\u0422\u0435\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0435\u043c \u043f\u043e \u0434\u0440\u0443\u0433\u0443\u044e \u0441\u0442\u043e\u0440\u043e\u043d\u0443 \u0410\u0442\u043b\u0430\u043d\u0442\u0438\u043a\u0438:\nFortinet \u043f\u0440\u0438\u0437\u043d\u0430\u043b, \u0447\u0442\u043e \u043d\u0435\u0434\u0430\u0432\u043d\u0438\u0439 \u0437\u0438\u0440\u043e\u0434\u0435\u0439 (CVE-2023-27997) \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432, \u0430 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u044b \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438 \u0432 MOVEit \u0432\u0441\u0451 \u0440\u0430\u0441\u0442\u0443\u0442 \u2014 \u043d\u0430 \u043d\u0435\u0434\u0435\u043b\u0435 \u043e\u043f\u0443\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0438 PoC \u0438 \u0441\u043f\u0435\u0448\u043d\u043e \u0437\u0430\u043f\u0430\u0442\u0447\u0438\u043b\u0438 \u0443\u0436\u0435 \u0442\u0440\u0435\u0442\u0438\u0439 \u0431\u0430\u0433,  CVE-2023-35708. \n\n#\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 @\u041f2\u0422", "creation_timestamp": "2023-06-19T09:09:21.000000Z"}, {"uuid": "2df1794a-6c7a-477b-86d4-dba07134df69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/kasperskyb2b/1697", "content": "\ud83d\udc40 \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e \n\n\u041e\u0447\u0435\u0440\u0435\u0434\u043d\u0430\u044f \u0432\u043e\u043b\u043d\u0430 \u0430\u0442\u0430\u043a APT GOFFEE \u043d\u0430 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0444\u0438\u0448\u0438\u043d\u0433, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0438\u0439 \u043d\u043e\u0432\u044b\u0439 \u0438\u043c\u043f\u043b\u0430\u043d\u0442 PowerModul, \u0430 \u0437\u0430\u0442\u0435\u043c \u0431\u0438\u043d\u0430\u0440\u043d\u044b\u0439 \u0430\u0433\u0435\u043d\u0442 Mythic \u043f\u0440\u0438 \u0433\u043e\u0440\u0438\u0437\u043e\u043d\u0442\u0430\u043b\u044c\u043d\u043e\u043c \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u0438 \u043f\u043e \u0441\u0435\u0442\u0438.\n\nAPT MirrorFace \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u0442 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 Windows Sandbox. \u041e\u043d\u0438 \u0430\u043a\u0442\u0438\u0432\u0438\u0440\u0443\u044e\u0442 \u044d\u0442\u0443 \u0444\u0443\u043d\u043a\u0446\u0438\u044e \u043d\u0430 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u0435 \u0436\u0435\u0440\u0442\u0432\u044b, \u0430 \u0437\u0430\u0442\u0435\u043c \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u044e\u0442 \u0432 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0435 \u0441\u0432\u043e\u0451 \u0412\u041f\u041e (Anel). \u0412 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0435 \u043d\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 Defender, \u043f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432 \u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442 \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043a \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0444\u0430\u0439\u043b\u044b \u0445\u043e\u0441\u0442\u0430, \u0431\u0443\u0444\u0435\u0440 \u043e\u0431\u043c\u0435\u043d\u0430, \u0438 \u043c\u043d\u043e\u0433\u043e\u0435 \u0434\u0440\u0443\u0433\u043e\u0435. \u0422\u0435\u0445\u043d\u0438\u043a\u0443, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0432\u043e\u0437\u044c\u043c\u0443\u0442 \u043d\u0430 \u0432\u043e\u043e\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435.\n\n\u041d\u043e\u0432\u044b\u0435 \u0442\u0430\u043a\u0442\u0438\u043a\u0438 \u043e\u0431\u0445\u043e\u0434\u0430 \u0437\u0430\u0449\u0438\u0442\u044b \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 APT ToddyCat. \n\nFortinet \u043e\u0442\u0447\u0438\u0442\u0430\u043b\u0438\u0441\u044c, \u0447\u0442\u043e \u0440\u0430\u043d\u0435\u0435 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0435 FortiGate \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0432 \u0440\u0435\u0436\u0438\u043c\u0435 read only \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430. \u0422\u0435\u0445\u043d\u0438\u043a\u0430, \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043d\u0430 \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u0438\u0438 \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0441\u044b\u043b\u043e\u043a, \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u043c\u0430 \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u043c, \u043d\u0430 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0431\u044b\u043b \u0432\u043a\u043b\u044e\u0447\u0451\u043d SSL-VPN \u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438\u0441\u044c CVE-2022-42475, CVE-2023-27997, CVE-2024-21762 \u0438 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e \u0434\u0440\u0443\u0433\u0438\u0435 CVE.\n\nAPT Sidecopy \u0441\u043c\u0435\u043d\u0438\u043b\u0430 \u0441\u0432\u043e\u0438 \u0444\u0438\u0448\u0438\u043d\u0433\u043e\u0432\u044b\u0435 \u0442\u0430\u043a\u0442\u0438\u043a\u0438 \u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 \u0412\u041f\u041e \u0432 \u043f\u0430\u043a\u0435\u0442\u0430 MSI \u0432\u043c\u0435\u0441\u0442\u043e \u0438\u0437\u043b\u044e\u0431\u043b\u0435\u043d\u043d\u043e\u0433\u043e HTA.\n\n\u0420\u0430\u0437\u0431\u043e\u0440 \u0430\u0442\u0430\u043a APT-Q-2/Kimsuky \u043d\u0430 \u044e\u0436\u043d\u043e\u043a\u043e\u0440\u0435\u0439\u0441\u043a\u0438\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438.\n\n\u041a\u0440\u0430\u0442\u043a\u0438\u0439 \u043e\u0431\u0437\u043e\u0440 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u043e\u0432 \u0438\u043d\u0434\u0443\u0441\u0442\u0440\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0418\u0411 \u0437\u0430 Q4/2024.\n\n\u0413\u043b\u0443\u0431\u043e\u043a\u0438\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 \u0412\u041f\u041e \u0438 \u044d\u0432\u043e\u043b\u044e\u0446\u0438\u0438 HelloKitty ransomware.\n\n\u0421\u043f\u0443\u0441\u0442\u044f \u0432\u0441\u0435\u0433\u043e 4 \u0447\u0430\u0441\u0430 \u043f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u043e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 WordPress OttoKit/Suretriggers \u0435\u0451 \u043d\u0430\u0447\u0430\u043b\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438.\n\n\u0415\u0449\u0451 \u043e\u0434\u0438\u043d \u043f\u0440\u0438\u043c\u0435\u0440 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u044f LLM \u0432 \u0441\u043f\u0430\u043c\u0435 \u0438 SEO: Akirabot \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u0442 API OpenAI \u0434\u043b\u044f \u043a\u043e\u043d\u0442\u0435\u043a\u0441\u0442\u043d\u043e\u0433\u043e \u0437\u0430\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0444\u043e\u0440\u043c \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438, \u043e\u0431\u0440\u0430\u0449\u0435\u043d\u0438\u0439 \u0432 \u0447\u0430\u0442 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0445 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441 \u043f\u043e\u0441\u0435\u0442\u0438\u0442\u0435\u043b\u044f\u043c\u0438 \u0432\u0435\u0431-\u0441\u0430\u0439\u0442\u043e\u0432. \u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0435 \u0443\u0441\u0438\u043b\u0438\u044f \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u044b \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u043a\u0430\u043f\u0447\u0438 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0437\u0430\u0449\u0438\u0442\u043d\u044b\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432.\n\n\u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043b\u044e\u0431\u0438\u0442\u0435\u043b\u0435\u0439 \u0432\u0430\u0439\u0431\u043a\u043e\u0434\u0438\u043d\u0433\u0430: 20% \u0418\u0418-\u043a\u043e\u0434\u0430 \u0441\u0441\u044b\u043b\u0430\u0435\u0442\u0441\u044f \u043d\u0430 \u043d\u0435\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043e\u0436\u0438\u0434\u0430\u044e\u0442 \u043f\u043e\u044f\u0432\u043b\u0435\u043d\u0438\u044f \u0430\u0442\u0430\u043a slopsquatting \u2014 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0431\u0443\u0434\u0443\u0442 \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0430\u043a\u0435\u0442\u044b \u0441 \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u044b\u043c\u0438 \u0438\u043c\u0435\u043d\u0430\u043c\u0438, \u043f\u043e \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0438 \u0441 typosquatting.\n\n\u041e\u0442\u043c\u0435\u0447\u0430\u0435\u0442\u0441\u044f \u0440\u043e\u0441\u0442 \u0430\u0442\u0430\u043a password spraying \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443 \u2014 \u043f\u043e\u0434 \u043f\u0440\u0438\u0446\u0435\u043b\u043e\u043c \u043b\u044e\u0431\u044b\u0435 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0435 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0435\u0437 MFA.\n\n#APT #\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 #\u043d\u043e\u0432\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2025-04-14T18:19:02.000000Z"}, {"uuid": "69fb9558-bd7a-40bf-a192-11936b142313", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/kasperskyb2b/1141", "content": "\ud83d\udd0e \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e\n\n\ud83d\ude93 \u0415\u0449\u0451 \u043e\u0434\u0438\u043d \u043e\u0442\u0447\u0451\u0442 \u043e \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438 \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u043e\u0436\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0430\u0437\u0438\u0430\u0442\u0441\u043a\u0438\u0445 APT, \u043d\u0430 \u0441\u0435\u0439 \u0440\u0430\u0437 \u0441 \u0430\u043a\u0446\u0435\u043d\u0442\u043e\u043c \u043d\u0430 \u0438\u0445 \u0438\u043d\u0442\u0435\u0440\u0435\u0441 \u043a \u044d\u043d\u0435\u0440\u0433\u0435\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435. \u0410\u0432\u0442\u043e\u0440\u044b \u043d\u0430\u0445\u043e\u0434\u044f\u0442 \u0443 \u0433\u0440\u0443\u043f\u043f\u044b, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043d\u0430\u0437\u044b\u0432\u0430\u044e\u0442 VOLTZITE, \u043f\u0435\u0440\u0435\u0441\u0435\u0447\u0435\u043d\u0438\u044f \u0441 Volt Typhoon, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0440\u0430\u0431\u043e\u0442\u0443 \u0441 \u043f\u043e\u0434\u0440\u0443\u0447\u043d\u044b\u043c\u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430\u043c\u0438 (LotL) \u0438 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0431\u044b\u0442\u043e\u0432\u044b\u0445 \u0440\u043e\u0443\u0442\u0435\u0440\u043e\u0432 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043f\u0440\u043e\u043a\u0441\u0438, \u0434\u043b\u044f \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u0441\u043a\u0440\u044b\u0442\u043d\u043e\u0441\u0442\u0438. \u0414\u043b\u044f \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u0439 \u043f\u043e \u0430\u0442\u0430\u043a\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435 \u0432\u043e\u0440\u0443\u044e\u0442 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0443\u0447\u0451\u0442\u043a\u0438.\n\n\ud83d\udfe2 \u0412 \u0442\u043e\u0442 \u0436\u0435 \u0445\u043e\u0440 \u0432\u043b\u0438\u043b\u0438\u0441\u044c \u0438 Fortinet, \u0447\u044c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0442\u0430\u043a \u043b\u044e\u0431\u044f\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435. \u0410\u0432\u0442\u043e\u0440\u044b \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0439\u0448\u0435\u0433\u043e \u043e\u0442\u0447\u0451\u0442\u0430 \u043d\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u044e\u0442, \u0447\u0442\u043e APT \u043d\u0435 \u043e\u0431\u044f\u0437\u0430\u0442\u0435\u043b\u044c\u043d\u043e \u0438\u0441\u043a\u0430\u0442\u044c \u0437\u0438\u0440\u043e\u0434\u0435\u0438, \u043f\u043e\u0442\u043e\u043c\u0443 \u0447\u0442\u043e \u043d\u0435\u0437\u0430\u043a\u0440\u044b\u0442\u044b\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 (N-day) \u0434\u043b\u044f \u043d\u0438\u0445 \u043e\u043a\u0430\u0437\u0432\u044b\u0430\u044e\u0442\u0441\u044f \u0432\u043f\u043e\u043b\u043d\u0435 \u044d\u0444\u0444\u0435\u043a\u0442\u0438\u0432\u043d\u044b\u043c\u0438. \u041f\u0440\u0438\u043c\u0435\u0440\u044b \u2014 CVE-2022-42475 \u043e\u0442 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2022 \u0433\u043e\u0434\u0430 \u0438 CVE-2023-27997 \u043e\u0442 \u0438\u044e\u043d\u044f 2023, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043d\u043e\u0433\u0438\u043c\u0438 \u0431\u044b\u043b\u0438 \u043d\u0435 \u0437\u0430\u043a\u0440\u044b\u0442\u044b \u0438 \u0432 \u043d\u043e\u044f\u0431\u0440\u0435. \ud83d\ude13\n\n\ud83c\udd94 \u041d\u043e\u0432\u043e\u0435 \u0432 \u0446\u0435\u043b\u0435\u0432\u043e\u043c \u0444\u0438\u0448\u0438\u043d\u0433\u0435 \u2014 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u0438\u0437 CharmingCypress \u0441\u043e\u0437\u0434\u0430\u043b\u0438 \u0446\u0435\u043b\u0443\u044e \u0444\u0430\u043b\u044c\u0448\u0438\u0432\u0443\u044e \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u0432\u0435\u0431\u0438\u043d\u0430\u0440\u043e\u0432, \u0447\u0442\u043e\u0431\u044b \u0431\u043e\u043b\u0435\u0435 \u0443\u0431\u0435\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0437\u0430\u043c\u0430\u043d\u0438\u0432\u0430\u0442\u044c \u0436\u0435\u0440\u0442\u0432. \u0410\u0442\u0430\u043a\u0430 \u043d\u0430\u0447\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0441 \u043f\u0440\u0438\u0433\u043b\u0430\u0448\u0435\u043d\u0438\u044f \u0441\u0442\u0430\u0442\u044c \u0434\u043e\u043a\u043b\u0430\u0434\u0447\u0438\u043a\u043e\u043c \u043d\u0430 \u0432\u0435\u0431\u0438\u043d\u0430\u0440\u0435, \u043f\u0440\u0438\u0447\u0451\u043c \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0442\u043e\u0440\u044b \u0438 \u0442\u0435\u043c\u0430 \u0432\u0435\u0431\u0438\u043d\u0430\u0440\u0430 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0442 \u043f\u0440\u043e\u0444\u0435\u0441\u0441\u0438\u043e\u043d\u0430\u043b\u044c\u043d\u043e\u0439 \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438 \u0436\u0435\u0440\u0442\u0432\u044b. \u0414\u0430\u043b\u044c\u0448\u0435 - \u0444\u0430\u043b\u044c\u0448\u0438\u0432\u0430\u044f \u0432\u0435\u0431-\u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430 \u0438 \u0441\u043a\u0430\u0447\u0438\u0432\u0430\u043d\u0438\u0435 \u043f\u043e\u043b\u043d\u043e\u0446\u0435\u043d\u043d\u044b\u0445 \u0431\u044d\u043a\u0434\u043e\u0440\u043e\u0432. \u0412\u0441\u0435 \u0436\u0435\u0440\u0442\u0432\u044b \u2014 \u0441 \u0411\u043b\u0438\u0436\u043d\u0435\u0433\u043e \u0412\u043e\u0441\u0442\u043e\u043a\u0430, \u0446\u0435\u043b\u044c\u044e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0448\u043f\u0438\u043e\u043d\u0430\u0436.\n\n\ud83d\udd3a\u0410\u043d\u0430\u043b\u0438\u0437 \u0446\u0435\u043f\u043e\u0447\u043a\u0438 \u0437\u0430\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043e\u043c Darkme, \u0432 \u043a\u043e\u0442\u043e\u0440\u043e\u043c \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u043b\u0441\u044f \u0437\u0430\u043f\u0430\u0442\u0447\u0435\u043d\u043d\u044b\u0439 \u043d\u0430 \u043f\u0440\u043e\u0448\u043b\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435 \u0437\u0438\u0440\u043e\u0434\u0435\u0439 \u0432 Windows Smartscreen. \u0426\u0435\u043b\u044c\u044e \u0430\u0442\u0430\u043a\u0438 \u0431\u044b\u043b\u0438 \u0431\u0438\u0440\u0436\u0435\u0432\u044b\u0435 \u0442\u0440\u0435\u0439\u0434\u0435\u0440\u044b.\n\n\ud83d\udcbc \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u044b\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0444\u0438\u0448\u0438\u043d\u0433\u043e\u0432\u043e\u0439 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438, \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u043f\u044b\u0442\u0430\u044e\u0442\u0441\u044f \u0432\u0437\u044f\u0442\u044c \u043f\u043e\u0434 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043f\u043e\u0447\u0442\u043e\u0432\u044b\u0435 \u044f\u0449\u0438\u043a\u0438 \u0440\u0443\u043a\u043e\u0432\u043e\u0434\u0441\u0442\u0432\u0430 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0445 Azure \u2014 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e \u0434\u043b\u044f \u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430 \u0438\u043b\u0438 \u0434\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0435\u0433\u043e \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043d\u0435\u043b\u0435\u0433\u0430\u043b\u044c\u043d\u044b\u0445 \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u044b\u0445 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0439.\n\n\u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f \u0432\u0430\u043b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0438 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u043e\u0432 \u0441 \u043f\u0440\u043e\u0434\u0443\u043a\u0446\u0438\u0435\u0439 Ivanti, \u0435\u0451 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0433\u043e\u0434\u0438\u0442\u044c\u0441\u044f \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0435 \u0440\u0443\u043a\u043e\u0432\u043e\u0434\u0441\u0442\u0432\u043e \u043f\u043e \u0430\u043d\u0430\u043b\u0438\u0437\u0443 \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432.\n\n\ud83d\udd13 \u041f\u043e\u043b\u0435\u0437\u043d\u044b\u0439 \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u0439 \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0443\u043a\u0440\u0430\u0434\u0435\u043d\u044b \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f \u0432 \u043a\u0438\u0431\u0435\u0440\u0430\u0442\u0430\u043a\u0430\u0445.\n\n\ud83d\udfe6 \u041a\u0441\u0442\u0430\u0442\u0438, \u043e \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u0430\u0445. \u0412 \u0444\u0435\u0432\u0440\u0430\u043b\u044c\u0441\u043a\u0438\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Microsoft \u0432\u0445\u043e\u0434\u0438\u0442 \u0432\u0430\u0436\u043d\u043e\u0435 \u0438, \u0447\u0442\u043e \u043f\u0440\u0438\u044f\u0442\u043d\u043e, \u0437\u0430\u0431\u043b\u0430\u0433\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0434\u043e\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435. \u0421\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u044b Windows Production PCA 2011, Microsoft UEFI CA 2011 \u0438 KEK CA 2011, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043b\u0435\u0436\u0430\u0442 \u0432 \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u0438\u0438 \u0432\u0441\u0435\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b Secure Boot \u0438 \u0438\u0441\u0442\u0435\u043a\u0443\u0442 \u0432 2026 \u0433\u043e\u0434\u0443, \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u044b. \u041e\u0431\u043d\u043e\u0432\u043b\u0451\u043d\u043d\u044b\u0435 DBX \u0438 \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u044b \u043d\u0430\u0447\u043d\u0443\u0442 \u043c\u0435\u0434\u043b\u0435\u043d\u043d\u043e \u0440\u0430\u0441\u043a\u0430\u0442\u044b\u0432\u0430\u0442\u044c \u0441 \u0430\u043f\u0440\u0435\u043b\u044f, \u0447\u0442\u043e\u0431\u044b \u043d\u0435 \u043d\u0438\u0447\u0435\u0433\u043e \u043d\u0435\u043d\u0430\u0440\u043e\u043a\u043e\u043c \u043d\u0435 \u043e\u043a\u0438\u0440\u043f\u0438\u0447\u0438\u0442\u044c. \u041d\u043e \u0443\u0436\u0435 \u0441\u0435\u0439\u0447\u0430\u0441 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u044b \u043c\u043e\u0433\u0443\u0442 \u043f\u0440\u043e\u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043d\u043e\u0432\u044b\u0445 \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0432 \u0432 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445, \u0441\u043b\u0435\u0434\u0443\u044f \u0438\u043d\u0441\u0442\u0440\u0443\u043a\u0446\u0438\u0438 \u0438\u0437 \u0431\u043b\u043e\u0433\u0430 Microsoft.\n\n\u270f\ufe0f  \u041d\u0435 APT, \u043d\u043e \u0442\u043e\u0436\u0435 \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u043e\n\n\u0410\u043d\u0430\u043b\u0438\u0437 \u043d\u043e\u0432\u044b\u0445 \u0432\u0435\u0440\u0441\u0438\u0439 \u0412\u041f\u041e Glupteba \u2014 \u0435\u0449\u0451 \u043e\u0434\u0438\u043d \u043a\u043e\u043c\u043c\u0435\u0440\u0447\u0435\u0441\u043a\u0438\u0439 \u0442\u0440\u043e\u044f\u043d \u043e\u0431\u0437\u0430\u0432\u0451\u043b\u0441\u044f UEFI-\u0431\u0443\u0442\u043a\u0438\u0442\u043e\u043c. \ud83d\ude1e\n\n\ud83d\udc6e\u200d\u2642\ufe0f \u041a\u0430\u043a\u0438\u0435-\u0442\u043e \u0442\u0430\u043b\u0430\u043d\u0442\u043b\u0438\u0432\u044b\u0435 \u0441\u043e\u0446\u0438\u043d\u0436\u0435\u043d\u0435\u0440\u044b \u043f\u0440\u0438\u0434\u0443\u043c\u0430\u043b\u0438 \u0432\u043e\u0440\u043e\u0432\u0430\u0442\u044c \u0444\u043e\u0442\u043e \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0438 \u043b\u0438\u0446 \u0436\u0435\u0440\u0442\u0432 \u043d\u0430 iOS \u0438 Android, \u043f\u0440\u0438\u0442\u0432\u043e\u0440\u044f\u044f\u0441\u044c \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435\u043c \u043c\u0435\u0441\u0442\u043d\u044b\u0445 \u0433\u043e\u0441\u0443\u0441\u043b\u0443\u0433, \u0431\u0430\u043d\u043a\u043e\u0432 \u0438 \u043f\u0435\u043d\u0441\u0438\u043e\u043d\u043d\u044b\u0445 \u0444\u043e\u043d\u0434\u043e\u0432. \u0416\u0435\u0440\u0442\u0432\u044b, \u0441\u043a\u0430\u0447\u0430\u0432\u0448\u0438\u0435 \u0444\u0430\u043b\u044c\u0448\u0438\u0432\u043e\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435, \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0442 \u0432\u0441\u0451 \u044d\u0442\u043e \u0434\u043e\u0431\u0440\u043e\u0432\u043e\u043b\u044c\u043d\u043e. \u042d\u043a\u0441\u043f\u0435\u0440\u0442\u044b \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442, \u0447\u0442\u043e \u0432 \u0434\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0435\u043c \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u044d\u0442\u0438\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043f\u044b\u0442\u0430\u044e\u0442\u0441\u044f \u043e\u0431\u043e\u0439\u0442\u0438 \u0434\u0438\u0441\u0442\u0430\u043d\u0446\u0438\u043e\u043d\u043d\u044b\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432 \u0431\u0430\u043d\u043a\u0430\u0445 \u043f\u0440\u0438 \u043a\u0440\u0430\u0436\u0435 \u0434\u0435\u043d\u0435\u0433. \u0412\u043e\u0440\u043e\u0432\u0441\u0442\u0432\u0430 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0431\u0438\u043e\u043c\u0435\u0442\u0440\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (FaceID \u0438 \u043f\u0440\u043e\u0447.) \u043d\u0435 \u043f\u0440\u043e\u0438\u0441\u0445\u043e\u0434\u0438\u0442. \u0410\u0442\u0430\u043a\u0430 Goldfactory \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u0430 \u0432 \u0410\u0437\u0438\u0438, \u043d\u043e \u0442\u0435\u0445\u043d\u0438\u043a\u0430 \u0431\u0435\u0437\u0443\u0441\u043b\u043e\u0432\u043d\u043e \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0430\u0434\u0430\u043f\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0430 \u0432 \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0442\u0440\u0430\u043d\u0430\u0445.\n\n\ud83d\udcf8 \u042f\u0432\u043d\u043e \u043a 14 \u0444\u0435\u0432\u0440\u0430\u043b\u044f \u0431\u044b\u043b \u043f\u0440\u0438\u043f\u0430\u0441\u0451\u043d \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u044b\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 \u043c\u043e\u0448\u0435\u043d\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0445\u0435\u043c pig butchering, \u043f\u0440\u0438\u0437\u0432\u0430\u043d\u043d\u044b\u0445 \u0432\u044b\u043c\u0430\u043d\u0438\u0442\u044c \u043a\u0440\u0443\u043f\u043d\u044b\u0435 \u0441\u0443\u043c\u043c\u044b \u0434\u0435\u043d\u0435\u0433 \u043f\u043e\u0441\u043b\u0435 \u0434\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u0440\u043e\u043c\u0430\u043d\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u0435\u0440\u0435\u043f\u0438\u0441\u043a\u0438. \u0412 \u0446\u0435\u043b\u043e\u043c \u0430\u0437\u0431\u0443\u0447\u043d\u044b\u0439, \u043d\u043e \u0435\u0441\u0442\u044c \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0434\u0435\u0442\u0430\u043b\u0438 \u043f\u0440\u043e \u0442\u0430\u043a\u0442\u0438\u043a\u0438 \u043c\u043e\u0448\u0435\u043d\u043d\u0438\u043a\u043e\u0432. \u0412\u0442\u043e\u0440\u0430\u044f \u0447\u0430\u0441\u0442\u044c \u043c\u0430\u0442\u0435\u0440\u0438\u0430\u043b\u0430 \u043c\u0435\u043d\u0435\u0435 \u043e\u0447\u0435\u0432\u0438\u0434\u043d\u0430\u044f \u0438 \u043f\u043e\u0441\u0432\u044f\u0449\u0435\u043d\u0430 \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u044b\u043c \u0430\u0441\u043f\u0435\u043a\u0442\u0430\u043c \u0441\u0445\u0435\u043c\u044b: \u043e\u0447\u0435\u043d\u044c \u0447\u0430\u0441\u0442\u043e \u0432\u044b\u043c\u0430\u043d\u0438\u0432\u0430\u044e\u0442 \u043a\u0440\u0438\u043f\u0442\u043e\u0432\u0430\u043b\u044e\u0442\u044b, \u0430 \u043d\u0435 \u0444\u0438\u0430\u0442\u043d\u044b\u0435 \u0434\u0435\u043d\u044c\u0433\u0438.\n\n#\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 @\u041f2\u0422", "creation_timestamp": "2024-02-19T07:40:19.000000Z"}, {"uuid": "6a4a66f9-310a-42cc-945f-ab48f84b30f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/OpenHackChile/1792", "content": "https://bishopfox.com/blog/cve-2023-27997-exploitable-and-fortigate-firewalls-vulnerable", "creation_timestamp": "2023-07-02T17:01:19.000000Z"}, {"uuid": "46763213-6207-4d05-874e-4514342d8ae3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/ctinow/117710", "content": "https://ift.tt/e7rZn5X\nFortinet urges to patch the critical RCE flaw CVE-2023-27997 in Fortigate firewalls", "creation_timestamp": "2023-06-13T13:52:05.000000Z"}, {"uuid": "2a76b176-69cb-411b-a9aa-bd622e1d794b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/ctinow/118676", "content": "https://ift.tt/M5kplT7\nFortinet Discreetly Patches CVE-2023-27997, a Known Exploited Vulnerability", "creation_timestamp": "2023-06-16T20:36:24.000000Z"}, {"uuid": "b430facf-8484-4e63-899f-e36fb6440b8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/ctinow/117429", "content": "https://ift.tt/JPemScE\nCritical Vulnerability in Fortigate VPN Servers CVE-2023-27997", "creation_timestamp": "2023-06-12T10:46:36.000000Z"}, {"uuid": "2d93de8f-a7ac-425f-b32c-d8508f4acb33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/ctinow/117381", "content": "https://ift.tt/VlOi6La\nMFA no protection against new Fortinet bug CVE-2023-27997 - The Stack", "creation_timestamp": "2023-06-12T00:22:25.000000Z"}, {"uuid": "e1888132-01a5-4915-90bc-c1d2a47260cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/ctinow/117362", "content": "https://ift.tt/p835yUM\nFortinet patches pre-auth RCE, update your Fortigate firewalls ASAP! (CVE-2023-27997)", "creation_timestamp": "2023-06-11T20:52:45.000000Z"}, {"uuid": "0a123d0e-4ba3-4345-80e2-916bee867257", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/CyberBulletin/3012", "content": "\u26a1\ufe0fFortinet confirms attackers kept read-only access to FortiGate devices after patching old flaws (CVE-2022-42475, CVE-2023-27997, CVE-2024-21762) via hidden symlink in SSL-VPN.\n\n#CyberBulletin", "creation_timestamp": "2025-04-12T02:01:18.000000Z"}, {"uuid": "0b5ff349-6caa-43a0-89ac-0c8b6b299a5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/ViralCyber/12392", "content": "\ud83d\udd34\u0633\u0647\u0645 127 \u062a\u0627\u06cc\u06cc \u0627\u06cc\u0631\u0627\u0646 \u0627\u0632 17000 \u062f\u0633\u062a\u06af\u0627\u0647 Fotinet \u0642\u0631\u0628\u0627\u0646\u06cc \u0634\u062f\u0647 \u062f\u0631 \u062f\u0646\u06cc\u0627 \u062f\u0631 \u06cc\u06a9 \u0647\u0641\u062a\u0647 \u0627\u062e\u06cc\u0631!\n\u203c\ufe0f\u067e\u06cc\u0631\u0648 \u0627\u06cc\u0646 \u062e\u0628\u0631\u060c \u0645\u062a\u0627\u0633\u0641\u0627\u0646\u0647 17000 \u062f\u0633\u062a\u06af\u0627\u0647 Fortinet \u062f\u0631 \u062f\u0646\u06cc\u0627 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0648\u062f\u0646 \u0628\u0647 \u06cc\u06a9 \u062f\u0631\u0628\u200c\u067e\u0634\u062a\u06cc \u0627\u0632 \u0646\u0648\u0639 Symlink \u0622\u0644\u0648\u062f\u0647 \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u0628\u0637\u0648\u0631\u06cc\u06a9\u0647 \u0628\u0639\u062f \u0627\u0632 Patch \u06a9\u0631\u062f\u0646 \u0633\u06cc\u0633\u062a\u0645 \u0628\u0627\u0632 \u0647\u0645 \u062f\u0633\u062a\u0631\u0633\u06cc \u0647\u06a9\u0631\u0647\u0627 \u0628\u0627\u0632 \u0645\u06cc \u0645\u0627\u0646\u062f.\n\u25c0\ufe0f\u0628\u0631 \u0627\u0633\u0627\u0633 \u0622\u0645\u0627\u0631 ShadowServer \u062d\u062f\u0627\u0642\u0644 \u062a\u0639\u062f\u0627\u062f 127  \u062f\u0633\u062a\u06af\u0627\u0647 \u0627\u0632 \u0627\u06cc\u0646 \u0642\u0631\u0628\u0627\u0646\u06cc\u0627\u0646 \u062f\u0631 \u0627\u06cc\u0631\u0627\u0646 \u0628\u0648\u062f\u0647 \u0648 \u0647\u0645 \u0627\u06a9\u0646\u0648\u0646 \u0622\u0644\u0648\u062f\u0647 \u0628\u0647 Backdoor \u0647\u0633\u062a\u0646\u062f. \n\u0627\u06cc\u0646 Backdoor \u0627\u0632 \u0646\u0648\u0639 Symlink \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u062d\u062a\u06cc \u067e\u0633 \u0627\u0632 \u0627\u0639\u0645\u0627\u0644 \u0648\u0635\u0644\u0647\u200c\u0647\u0627\u060c \u0628\u0647 \u0635\u0648\u0631\u062a Read-only \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u0645\u0627\u0646\u0646\u062f \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0633\u06cc\u0633\u062a\u0645 \u062f\u0633\u062a\u0631\u0633\u06cc \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u0646\u062f.\n\ud83e\udda0 \u0631\u06cc\u0634\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc:\n\u0627\u06cc\u0646 \u062f\u0631\u0628\u200c\u067e\u0634\u062a\u06cc \u062f\u0631 \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u0627 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc\u0647\u0627\u06cc \u0633\u0627\u0644\u200c\u0647\u0627\u06cc \u06f2\u06f0\u06f2\u06f3 \u062a\u0627 \u06f2\u06f0\u06f2\u06f4 \u0628\u0648\u062f\u0647 \u0648 \u0628\u0627 \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc\u06cc \u0645\u0627\u0646\u0646\u062f CVE-2022-4247 \u0648 CVE-2023-27997 \u0648 CVE-2024-21762 \u0639\u0645\u0644 \u0645\u06cc\u200c\u06a9\u0646\u062f. \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0628\u0627 \u0627\u06cc\u062c\u0627\u062f \u06cc\u06a9 Symlink \u0645\u062e\u0631\u0628 \u062f\u0631 \u067e\u0648\u0634\u0647 SSL-VPN\u060c \u0641\u0627\u06cc\u0644\u200c\u0633\u06cc\u0633\u062a\u0645 \u06a9\u0627\u0631\u0628\u0631 \u0631\u0627 \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0633\u06cc\u0633\u062a\u0645 root \u0645\u062a\u0635\u0644 \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f.\n\n\ud83d\udee1 \u067e\u0627\u0633\u062e Fortinet:\n\u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc\u062f FortiOS \u0634\u0627\u0645\u0644 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc 7.6.2\u060c 7.4.7\u060c 7.2.11\u060c 7.0.17 \u0648 6.4.16 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u0636\u0627\u06cc \u0622\u0646\u062a\u06cc\u200c\u0648\u06cc\u0631\u0648\u0633 \u0628\u0631\u0627\u06cc \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0648 \u062d\u0630\u0641 Symlink \u0645\u062e\u0631\u0628 \u0647\u0633\u062a\u0646\u062f. Fortinet \u0647\u0645\u0686\u0646\u06cc\u0646 \u0628\u0647 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0622\u0633\u06cc\u0628\u200c\u062f\u06cc\u062f\u0647 \u0627\u0637\u0644\u0627\u0639\u200c\u0631\u0633\u0627\u0646\u06cc \u06a9\u0631\u062f\u0647 \u0648 \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f \u0631\u0645\u0632\u0647\u0627\u06cc \u0639\u0628\u0648\u0631 \u0648 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062d\u0633\u0627\u0633 \u062e\u0648\u062f \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u0646\u062f.\n\n\u26a0\ufe0f \u0644\u0632\u0648\u0645 \u0627\u0642\u062f\u0627\u0645 \u0641\u0648\u0631\u06cc:\n\u0622\u0698\u0627\u0646\u0633\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0627\u0646\u0646\u062f CISA \u062a\u0648\u0635\u06cc\u0647 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f \u062a\u0627 \u0632\u0645\u0627\u0646 \u0646\u0635\u0628 \u0648\u0635\u0644\u0647\u200c\u0647\u0627\u060c \u0642\u0627\u0628\u0644\u06cc\u062a SSL-VPN \u063a\u06cc\u0631\u0641\u0639\u0627\u0644 \u0634\u0648\u062f. \u0632\u06cc\u0631\u0627 \u0648\u062c\u0648\u062f \u0627\u06cc\u0646 Backdoor \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0627\u0641\u0634\u0627\u06cc \u0631\u0645\u0632\u0647\u0627\u06cc \u0639\u0628\u0648\u0631 \u0648 \u06a9\u0644\u06cc\u062f\u0647\u0627\u06cc \u0631\u0645\u0632\u0646\u06af\u0627\u0631\u06cc \u0645\u0646\u062c\u0631 \u0634\u0648\u062f!\n\n\u2709\ufe0f@PingChannel\n\u062e\u0628\u0631\u060c \u062a\u062d\u0644\u06cc\u0644\u060c \u0627\u0646\u062a\u0642\u0627\u062f - \u0641\u0646\u0627\u0648\u0631\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a\n\ud83d\udd2b\ud83d\udd2b\ud83d\udd2b\ud83d\udd2b", "creation_timestamp": "2025-04-18T14:08:24.000000Z"}, {"uuid": "093f610e-a5a0-4df0-a921-a80047a62760", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/zRFTjKvawtz3RcZIepsmoctm_7hzkXY8e20AVdyi84O4h_w", "content": "", "creation_timestamp": "2023-07-06T13:35:52.000000Z"}, {"uuid": "8c959599-8259-4ed3-bb9d-6ac55ac4dd81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/QPRkFSmYeiDaRfLsaPagtAFiLbAQznjhPnh6fbTEZHViSg", "content": "", "creation_timestamp": "2023-10-25T17:08:13.000000Z"}, {"uuid": "a309333a-438b-40a6-b02b-d80177c87701", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/Swfoi_pf0GHTo8iggr9TWaIRAGKauKxG6_8rkXwrkXtsuuc", "content": "", "creation_timestamp": "2023-07-04T22:03:16.000000Z"}, {"uuid": "b35df619-577f-4ddf-832a-b3f2960a1582", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/JerusalemElectronicArmy/375", "content": "#\u0623\u062e\u0628\u0627\u0631_\u0627\u0644\u0633\u0627\u064a\u0628\u0631 \n\n\u0623\u0635\u062f\u0631\u062a Fortinet \u062a\u0635\u062d\u064a\u062d\u0627\u062a \u0644\u0645\u0639\u0627\u0644\u062c\u0629 \u062b\u063a\u0631\u0629 \u0623\u0645\u0646\u064a\u0629 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u062c\u062f\u0631\u0627\u0646 \u0627\u0644\u062d\u0645\u0627\u064a\u0629 FortiGate \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0647\u0627 \u0628\u0627\u0644\u0631\u0642\u0645 CVE-2023-27997 \u0648\u0627\u0644\u062a\u064a \u062a\u0645\u0643\u0646 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0645\u0646 \u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0627\u0644\u0628\u0631\u0645\u062c\u064a\u0629 \u0639\u0646 \u0628\u064f\u0639\u062f (RCE).\n#\u062c\u064a\u0634_\u0627\u0644\u0642\u062f\u0633_\u0627\u0644\u0625\u0644\u0643\u062a\u0631\u0648\u0646\u064a", "creation_timestamp": "2023-06-13T10:28:44.000000Z"}, {"uuid": "91559f84-02b4-462e-a3c4-96d10b752088", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "Telegram/FI12DvbzMlgY--fwl8K4zn-XlVMxVXy0we-sKDJBiDt1mw", "content": "", "creation_timestamp": "2023-06-13T10:45:07.000000Z"}, {"uuid": "319f861c-979c-468c-b21d-c9f1885d90b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/arpsyndicate/378", "content": "#ExploitObserverAlert\n\nCVE-2023-27997\n\nDESCRIPTION: Exploit Observer has 58 entries related to CVE-2023-27997. A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all versions, version 1.1 all versions SSL-VPN may allow a remote attacker to execute arbitrary code or commands via specifically crafted requests.\n\nFIRST-EPSS: 0.154070000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-11-23T00:23:40.000000Z"}, {"uuid": "7236d144-7743-4857-b52f-81ca5a1d9cee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "Telegram/dtIe1Va1bhf-Dx_dB3ROG2j7z94vgRQ-g5x8umtx3v695g", "content": "", "creation_timestamp": "2025-04-11T21:56:56.000000Z"}, {"uuid": "f21eade6-79f4-49c9-b33c-15f7fc44c9dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "Telegram/LvLvljHB5jFGqGnGNU1HDvCEfbpgMmPN7Vw4HyB9w_OEcg", "content": "", "creation_timestamp": "2023-07-04T10:20:47.000000Z"}, {"uuid": "83e0454b-4f4f-4921-bdda-cafdb82ba212", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/pouWO7oHuMlxYwPs30aspnMqHr17AxXm3igkclxUsCqax5E", "content": "", "creation_timestamp": "2025-04-18T23:00:06.000000Z"}, {"uuid": "2f8e3db4-f5d1-413a-9c32-e3e6f264ded6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/arvinclub1/960", "content": "CVE-2023-27997 FortiGate (CVE-2023-27997)\nIt is not usable \"as-is\" and serves educational purposes.\nhttps://github.com/lexfo/xortigate-cve-2023-27997", "creation_timestamp": "2023-10-13T04:04:09.000000Z"}, {"uuid": "20cc0c53-379b-496a-945d-4aa97582db73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/RYWLrutJ1yUzw-ZgtZH3bP0irYvRHGWiATrRW6KLyGAuBg", "content": "", "creation_timestamp": "2023-06-12T09:35:30.000000Z"}, {"uuid": "6d422de6-0dc4-4387-9093-3e01cc449a07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/TYG_YE/834", "content": "\u26a0\ufe0f \u0639\u0627\u062c\u0644: \u062a\u0645 \u0627\u0643\u062a\u0634\u0627\u0641 \u062b\u063a\u0631\u0629 \u0623\u0645\u0646\u064a\u0629 \u062d\u0631\u062c\u0629 \u062c\u062f\u064a\u062f\u0629 \u0644\u0640 RCE (CVE-2023-27997) \u0641\u064a \u062c\u062f\u0631\u0627\u0646 \u062d\u0645\u0627\u064a\u0629 FortiGate. \u0642\u0645 \u0628\u0627\u0644\u062a\u062d\u062f\u064a\u062b \u0625\u0644\u0649 \u0623\u062d\u062f\u062b \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a \u0644\u062a\u0623\u0645\u064a\u0646 \u0634\u0628\u0643\u062a\u0643 \u0636\u062f \u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0627\u0644\u0628\u0631\u0645\u062c\u064a\u0629 \u0639\u0646 \u0628\u064f\u0639\u062f \u0627\u0644\u0645\u062d\u062a\u0645\u0644\n\n#Yemeni_Hackers", "creation_timestamp": "2023-06-13T10:51:44.000000Z"}, {"uuid": "0d3020d9-cc41-46a6-9208-3458a484e89a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/KomunitiSiber/440", "content": "Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw\nhttps://thehackernews.com/2023/07/alert-330000-fortigate-firewalls-still.html\n\nNo less than 330000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that have come under active exploitation in the wild.\nCybersecurity firm Bishop Fox, in a\u00a0report\u00a0published last week, said that out of nearly 490,000 Fortinet SSL-VPN interfaces exposed on the internet, about 69 percent remain unpatched.\nCVE-2023-27997", "creation_timestamp": "2023-07-04T10:56:26.000000Z"}, {"uuid": "a8c9cd93-6668-45fd-a729-726f28b1331a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/KomunitiSiber/344", "content": "Critical FortiOS and FortiProxy Vulnerability Likely Exploited - Patch Now!\nhttps://thehackernews.com/2023/06/critical-fortios-and-fortiproxy.html\n\nFortinet on Monday disclosed that a\u00a0newly patched critical flaw\u00a0impacting FortiOS and FortiProxy may have been \"exploited in a limited number of cases\" in attacks targeting government, manufacturing, and critical infrastructure sectors.\nThe\u00a0vulnerability, tracked as\u00a0CVE-2023-27997\u00a0(CVSS score: 9.2), concerns a\u00a0heap-based buffer overflow\u00a0vulnerability in FortiOS and FortiProxy SSL-VPN that could", "creation_timestamp": "2023-06-13T10:25:03.000000Z"}, {"uuid": "042aa214-629e-4aa5-a287-cbf038aa3484", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/KomunitiSiber/338", "content": "Critical RCE Flaw Discovered in Fortinet FortiGate Firewalls - Patch Now!\nhttps://thehackernews.com/2023/06/critical-rce-flaw-discovered-in.html\n\nFortinet has released patches to address a critical security flaw in its FortiGate firewalls that could be abused by a threat actor to achieve remote code execution.\nThe vulnerability, tracked as\u00a0CVE-2023-27997, is \"reachable pre-authentication, on every SSL VPN appliance,\" Lexfo Security researcher Charles Fol, who discovered and reported the flaw,\u00a0said\u00a0in a tweet over the weekend.\nDetails", "creation_timestamp": "2023-06-12T10:34:36.000000Z"}, {"uuid": "1e638158-b39d-4643-90cb-d2f2315b4c23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/hunter4good/195", "content": "https://twitter.com/HunterMapping/status/1675398903808802816\n\ud83d\udea8Alert\ud83d\udea8 CVE-2023-27997 \n@bishopfox\n developed an #exploit for this #RCE vulnerability\nPatch exposed appliances ASAP!\n\ud83d\udc40https://twitter.com/bishopfox/status/1674923014549381120\n\n\ud83d\udcce https://hunter.how/list?searchValue=header.server%3D%22xxxxxxxx-xxxxx%22\n\n1\u20e3 FOFA: server=\"xxxxxxxx-xxxxx\"\n2\u20e3 Shodan: Server: xxxxxxxx-xxxxx", "creation_timestamp": "2024-06-17T17:00:57.000000Z"}, {"uuid": "c1fe7958-a116-462d-bfe2-66a60d794be2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/PfBDhyUlchQfTUwkRCz2h7RqM5ds-n-bVldH34W40cGx_g", "content": "", "creation_timestamp": "2023-07-01T17:36:04.000000Z"}, {"uuid": "5ee2b762-2130-4f51-8472-1ed29dc65cd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3095", "content": "Hackers Factory \n\nProtect and manage browser extensions using Chrome Browser Cloud Management\n\nhttp://security.googleblog.com/2023/06/protect-and-manage-browser-extensions.html\n\nGitHub Dataset Research Reveals Millions Potentially Vulnerable\u00a0to RepoJacking\n\nhttps://blog.aquasec.com/github-dataset-research-reveals-millions-potentially-vulnerable-to-repojacking\n\nIf you're not writing custom Nuclei templates, you're missing out\n\nhttps://blog.projectdiscovery.io/if-youre-not-writing-custom-nuclei-templates-youre-missing-out/\n\nBug Bytes #204 \u2013 Everything You Missed From NahamCon\n\nhttps://blog.intigriti.com/2023/06/21/bug-bytes-204-everything-you-missed-from-nahamcon/\n\nKeep it simple, Scanner\n\nhttps://portswigger.net/blog/keep-it-simple-scanner\n\nCVE-2023-27997 Vulnerability Scanner for FortiGate Firewalls\n\nhttps://bishopfox.com/blog/cve-2023-27997-vulnerability-scanner-fortigate\n\nCallisto - An Intelligent Binary Vulnerability Analysis Tool\n\nhttps://github.com/JetP1ane/Callisto\n\nSupply chain security for Go, Part 2: Compromised dependencies\n\nhttp://security.googleblog.com/2023/06/supply-chain-security-for-go-part-2.html\n\njsluice is a Go package and command-line tool for extracting URLs, paths, secrets, and other interesting data from JavaScript source code.\n\nhttps://github.com/BishopFox/jsluice\n\nAdmin Panel Bypass without the credentials\n\nhttps://medium.com/@sayim0x3105/admin-panel-bypass-without-the-credentials-e867eee7c81b\n\n#infosec #cybersecurity", "creation_timestamp": "2023-06-28T10:28:30.000000Z"}, {"uuid": "a8ea0eb8-a028-4e11-a9d2-9605385c676d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3092", "content": "Hackers Factory\n\nLatest Nuclei Release v2.9.3 (bugfix release)!\n\nhttps://github.com/projectdiscovery/nuclei/releases/tag/v2.9.3\n\nGenymotion \u2014 Proxying Android App Traffic Through Burp Suite in Windows\n\nhttps://medium.com/@mzkamol/genymotion-proxying-android-app-traffic-through-burp-suite-in-windows-5754f742a06\n\nProtect and manage browser extensions using Chrome Browser Cloud Management\n\nhttp://security.googleblog.com/2023/06/protect-and-manage-browser-extensions.html\n\nGitHub Dataset Research Reveals Millions Potentially Vulnerable\u00a0to RepoJacking\n\nhttps://blog.aquasec.com/github-dataset-research-reveals-millions-potentially-vulnerable-to-repojacking\n\nIf you're not writing custom Nuclei templates, you're missing out\n\nhttps://blog.projectdiscovery.io/if-youre-not-writing-custom-nuclei-templates-youre-missing-out/\n\nBug Bytes #204 \u2013 Everything You Missed From NahamCon\n\nhttps://blog.intigriti.com/2023/06/21/bug-bytes-204-everything-you-missed-from-nahamcon/\n\nKeep it simple, Scanner\n\nhttps://portswigger.net/blog/keep-it-simple-scanner\n\nCVE-2023-27997 Vulnerability Scanner for FortiGate Firewalls\n\nhttps://bishopfox.com/blog/cve-2023-27997-vulnerability-scanner-fortigate\n\nA brief summary about a SSTI to RCE in Bagisto\n\nhttps://siltonrenato02.medium.com/a-brief-summary-about-a-ssti-to-rce-in-bagisto-e900ac450490\n\nCallisto - An Intelligent Binary Vulnerability Analysis Tool\n\nhttps://github.com/JetP1ane/Callisto\n\nAWS WAF Clients Left Vulnerable to SQL Injection Due to Unorthodox MSSQL Design Choice\n\nhttps://www.gosecure.net/blog/2023/06/21/aws-waf-clients-left-vulnerable-to-sql-injection-due-to-unorthodox-mssql-design-choice/\n\n#infosec #cybersecurity \n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-06-26T13:31:12.000000Z"}, {"uuid": "2f9f22cc-8656-4378-af51-358c97bb9f7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3090", "content": "25 Tools \ud83d\udd27 \ud83d\udd28\ud83d\udd27\ud83d\udd28-  Hackers Factory \n\n\u200b\u200bCVE-2023-27997u\n\nSafely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing.\n\nhttps://github.com/BishopFox/CVE-2023-27997-check\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bServer-Side Prototype Pollution\n\nThis repository contains a collection of Server-Side Prototype Pollution gadgets in Node.js core code and 3rd party NPM packages.\n\nhttps://github.com/yuske/server-side-prototype-pollution\n\n#cybersecurity #infosec\n\n\u200b\u200bRIDS - Remote ID Spoofer\n\nAn ESP8266/NodeMCU Drone RemoteID Spoofer. This spawns 16 different fake drones broadcasting RemoteID, with them all flying in random directions around a particular GPS location. \n\nhttps://github.com/jjshoots/RemoteIDSpoofer\n\n#cybersecurity #infosec\n\n\u200b\u200bSteganim\n\nNim implementation of storing a payload into the least significant bit of each byte of an image. Using this technique to remotely fetch shellcode or other secrets at runtime can help into removing some IOCs like payload entropy.\n\nhttps://github.com/OffenseTeacher/Steganim\n\n#infosec #pentesting #redteam\n\n\u200b\u200bqualcomm_baseband_scripts\n\nCollection of scripts for reversing Qualcomm Hexagon baseband / modem firmware.\n\nhttps://github.com/mzakocs/qualcomm_baseband_scripts\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-1454\n\nJeecg Boot qurestSql SQL vuln\n\nhttps://github.com/Sweelg/CVE-2023-1454-Jeecg-Boot-qurestSql-SQLvuln\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bSilent Spring\n\nPrototype Pollution Leads to Remote Code Execution in Node.js\n\nhttps://github.com/yuske/silent-spring\n\n#cybersecurity #infosec\n\n\u200b\u200bSemgrep Rules for Android Application Security\n\nA collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.\n\nhttps://github.com/mindedsecurity/semgrep-rules-android-security\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-30347\n\nReflected Cross-Site-Scripting in Neox Contact Center\n\nhttps://github.com/huzefa2212/CVE-2023-30347\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bEFI Resolver\n\nA Binary Ninja plugin that automatically resolves type information for EFI protocol usage.\n\nhttps://github.com/Vector35/efi-resolver\n\n#cybersecurity #infosec\n\n\u200b\u200bGhostFart\n\nUnhooking is performed via indirect syscalls Leveraging NTAPI to grab NTDLL for unhooking without triggering \"PspCreateProcessNotifyRoutine\"\n\nhttps://github.com/mansk1es/GhostFart\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-27372\n\nSPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.\n\nhttps://github.com/nuts7/CVE-2023-27372\n\ncve #cybersecurity #infosec\n\n\u200b\u200bkbtls\n\nKey-Based TLS - Mutually Trusted TLS Connections Based on a Pre-Shared Connection Key.\n\nhttps://github.com/RedTeamPentesting/kbtls\n\n#infosec #pentesting #redteam\n\n\u200b\u200bArtemis\n\nA modular web reconnaissance tool and vulnerability scanner based on Karton.\n\nhttps://github.com/CERT-Polska/Artemis\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bRS-Shell\n\nA dirty PoC for a reverse shell with cool features in Rust.\n\nhttps://github.com/BlWasp/rs-shell\n\n#infosec #pentesting #redteam\n\n\u200b\u200bInvoke-PowerExtract\n\nThis tool is able to parse memory dumps of the LSASS process without any additional tools (e.g. Debuggers) or additional sideloading of mimikatz. It is a pure PowerShell implementation for parsing and extracting secrets (LSA / MSV and Kerberos) of the LSASS process.\n\nhttps://github.com/powerseb/PowerExtract\n\n#infosec #pentesting #redteam\n\nRPC Firewall\n\nCheck out our RPC Firewall blog post or our BlackHat talk to gain better understanding of RPC, RPC attacks and the solution: the RPC Firewall.\n\nhttps://github.com/zeronetworks/rpcfirewall\n\n#cybersecurity #infosec\n\n\u200b\u200bGooFuzz \n\nA tool to perform fuzzing with an #OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).\n\nhttps://github.com/m3n0sd0n4ld/GooFuzz\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200b1/2", "creation_timestamp": "2023-06-24T16:00:44.000000Z"}, {"uuid": "384e84c5-5609-4c05-ac8f-2577cabbe790", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/tTpvc375et-SZfcg0BKWolWaubHm4I5SCHpCmY2LG_Qn", "content": "", "creation_timestamp": "2023-08-04T01:00:26.000000Z"}, {"uuid": "aee8a77c-07fc-423e-9567-05677ab64811", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/breachdetector/331664", "content": "{\n  \"Source\": \"https://www.turkhackteam.org/\",\n  \"Content\": \"CVE-2023-27997 FortiGate G\u00fcvenlik Duvar\u0131 Exploiti Nedir ? \", \n  \"author\": \" ('BARBAROS)\",\n  \"Detection Date\": \"06 Sep 2023\",\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 t.me/breachdetector \ud83d\udd39", "creation_timestamp": "2023-09-06T01:48:38.000000Z"}, {"uuid": "c5bedf47-67b4-4f97-b013-ef972a766e75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/K1o3laKh9zxvuoY52PuoBh8MYlr1MEcVBxTXJecQFL8voY4", "content": "", "creation_timestamp": "2023-07-11T14:54:08.000000Z"}, {"uuid": "767c27b5-401e-425d-94d5-3a21840f345e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "Telegram/Qrc0KTPEEhGIyVCBGPKP8fq026dvEbF88bPEOvSrXu11fu0", "content": "", "creation_timestamp": "2023-07-11T14:53:07.000000Z"}, {"uuid": "b8b1cf02-4436-4187-bdb0-50b74a13357f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/JerusalemElectronicArmy/407", "content": "#\u0623\u062e\u0628\u0627\u0631_\u0627\u0644\u0633\u0627\u064a\u0628\u0631\n\n\u062a\u0645 \u062a\u0635\u062d\u064a\u062d \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u062d\u0631\u062c\u0629 CVE-2023-27997 \u0641\u064a #Fortigate \u0628\u0648\u0627\u0633\u0637\u0629 #Fortinet.\n#\u062c\u064a\u0634_\u0627\u0644\u0642\u062f\u0633_\u0627\u0644\u0625\u0644\u0643\u062a\u0631\u0648\u0646\u064a", "creation_timestamp": "2023-06-17T10:54:41.000000Z"}, {"uuid": "e7271fb4-2d6b-47cb-ae37-f1ff0aae957f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/1769", "content": "CVE-2023-27997 FortiGate\n\u0420\u0430\u0437\u0431\u043e\u0440 - XORtigate: Pre-authentication Remote Code Execution on Fortigate VPN\n\u0421\u043a\u0430\u0447\u0430\u0442\u044c - exploit\n\u0414\u044b\u0440\u043a\u0435 3 \u043c\u0435\u0441\u044f\u0446\u0430 - \u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0443\u0441\u043f\u0435\u043b\u043e \u043f\u0440\u043e\u041f\u0430\u0442\u0447\u0438\u0442\u044c\u0441\u044f \u0440\u0430\u0441\u0441\u043a\u0430\u0436\u0435\u0442 shodan\n\n#fortigate #rce", "creation_timestamp": "2023-10-12T20:56:59.000000Z"}, {"uuid": "3b8a7b9b-2bc6-441d-acb6-eab8ef9be686", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "Telegram/qc8V3_sne83uUom-C3hcjB-amnOfp-Dw-RCVqKzzpnMYNk8", "content": "", "creation_timestamp": "2024-02-18T21:42:27.000000Z"}, {"uuid": "d9d74c3b-650b-4d8f-9802-0d929099935e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "Telegram/gyrsh0nMhiAiEaqHSkL9OXH7xOwPFNYIdXMkdnpSxfNlH3s", "content": "", "creation_timestamp": "2024-03-01T18:43:00.000000Z"}, {"uuid": "7f2f82eb-c69c-473c-98a6-ff70fd4b953f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/e-Ucy-YX49AJm15RfJIHE50HVyJKtyF6CM3TztZ6QFO1dfc", "content": "", "creation_timestamp": "2023-07-11T18:45:56.000000Z"}, {"uuid": "c3fdecea-d592-48da-82f7-6f74956c7aaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "Telegram/Q2F7-EsFCaA8NDXXSQQAG71VBM0abrmT7ENzabTkKFOzrY8", "content": "", "creation_timestamp": "2023-07-11T15:40:11.000000Z"}, {"uuid": "08579c8f-4344-4d8a-94c5-5c464048d87c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "Telegram/K3RjvxakAT8ErxZpys-eCjgA9nW4Oi7CCl030Bbt5Rq1fyo", "content": "", "creation_timestamp": "2023-07-11T15:39:50.000000Z"}, {"uuid": "f5986cb5-dcb4-4a29-a28a-4ac5a1bed28e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/6332", "content": "\u0410\u043d\u0430\u043b\u0438\u0442\u0438\u043a\u0438 \u043f\u0440\u0438\u043d\u0430\u0434\u043b\u0435\u0436\u0430\u0449\u0435\u0439 Google Mandiant \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e \u043d\u043e\u0432\u043e\u0439 \u0442\u0440\u0435\u0432\u043e\u0436\u043d\u043e\u0439 \u0442\u0435\u043d\u0434\u0435\u043d\u0446\u0438\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u043e\u0439 \u0441 \u0442\u0435\u043c, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u044e\u0442 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0435\u0439 \u043f\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044e \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044e 0-day \u0432 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0438.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Mandiant, \u0438\u0437 138 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b \u043a\u0430\u043a \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0435 \u0432 2023 \u0433\u043e\u0434\u0443, 97 (70,3%) \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u043a\u0430\u043a \u043d\u0443\u043b\u0438 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u0435\u0449\u0435 \u0434\u043e \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0438 \u0443\u0437\u043d\u0430\u043b\u0438 \u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0438 \u043e\u0448\u0438\u0431\u043e\u043a \u0438\u043b\u0438 \u0441\u043c\u043e\u0433\u043b\u0438 \u0431\u044b \u0438\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c.\n\n\u0421 2020 \u043f\u043e 2022 \u0433\u043e\u0434 \u0441\u043e\u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0435 \u043c\u0435\u0436\u0434\u0443 n-\u0434\u043d\u044f\u043c\u0438 (\u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438) \u0438 \u043d\u0443\u043b\u0435\u0432\u044b\u043c\u0438 \u0434\u043d\u044f\u043c\u0438 (\u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f) \u043e\u0441\u0442\u0430\u0432\u0430\u043b\u043e\u0441\u044c \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u044b\u043c \u0438 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u043b\u043e 4:6, \u043d\u043e \u0432 2023 \u0433\u043e\u0434\u0443 \u0441\u043e\u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0435 \u0438\u0437\u043c\u0435\u043d\u0438\u043b\u043e\u0441\u044c \u0434\u043e 3:7.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u044d\u0442\u043e \u0441\u0432\u044f\u0437\u0430\u043d\u043e \u043d\u0435 \u0441 \u0443\u043c\u0435\u043d\u044c\u0448\u0435\u043d\u0438\u0435\u043c \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 n-day, \u0430 \u0441 \u0440\u043e\u0441\u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u043d\u0443\u043b\u0435\u0439 \u0438 \u0443\u043b\u0443\u0447\u0448\u0435\u043d\u0438\u0435\u043c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0435\u0439 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043f\u043e \u0438\u0445 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044e.\n\n\u0420\u043e\u0441\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 \u0438 \u0434\u0438\u0432\u0435\u0440\u0441\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044f \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 \u0442\u0430\u043a\u0436\u0435 \u043e\u0442\u0440\u0430\u0436\u0430\u044e\u0442\u0441\u044f \u0432 \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u0435 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0432\u043e\u0437\u0440\u043e\u0441\u043b\u043e \u0432 2023 \u0433\u043e\u0434\u0443 \u0434\u043e \u0440\u0435\u043a\u043e\u0440\u0434\u043d\u044b\u0445 56 \u043f\u043e \u0441\u0440\u0430\u0432\u043d\u0435\u043d\u0438\u044e \u0441 44 \u0432 2022 \u0433\u043e\u0434\u0443.\n\n\u0414\u0440\u0443\u0433\u0438\u043c \u0432\u0430\u0436\u043d\u044b\u043c \u0442\u0440\u0435\u043d\u0434\u043e\u043c \u0441\u0442\u0430\u043b\u043e \u0441\u043e\u043a\u0440\u0430\u0449\u0435\u043d\u0438\u0435 \u0432\u0440\u0435\u043c\u0435\u043d\u0438, \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0433\u043e \u0434\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 TTE \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 (n-day \u0438\u043b\u0438 0-day), - \u0434\u043e \u043f\u044f\u0442\u0438 \u0434\u043d\u0435\u0439!\n\n\u0414\u043b\u044f \u0441\u0440\u0430\u0432\u043d\u0435\u043d\u0438\u044f, \u0432 2018-2019 \u0433\u043e\u0434\u0430\u0445 TTE \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u043b 63 \u0434\u043d\u044f, \u0430 \u0432 2021-2022 \u0433\u043e\u0434\u0430\u0445 - 32 \u0434\u043d\u044f, \u0447\u0442\u043e \u0434\u0430\u0432\u0430\u043b\u043e \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0434\u043b\u044f \u043f\u043b\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u043b\u0438 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u043c\u0435\u0440 \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0439 \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0442\u0435\u043f\u0435\u0440\u044c, \u043a\u043e\u0433\u0434\u0430 TTE \u0441\u043e\u043a\u0440\u0430\u0442\u0438\u043b\u043e\u0441\u044c \u0434\u043e 5 \u0434\u043d\u0435\u0439, \u0442\u0430\u043a\u0438\u0435 \u0441\u0442\u0440\u0430\u0442\u0435\u0433\u0438\u0438, \u043a\u0430\u043a \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0430\u0446\u0438\u044f \u0441\u0435\u0442\u0438, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u043e\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0438 \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0435 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u0438\u043e\u0440\u0438\u0442\u0435\u0442\u043e\u0432 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439, \u0432\u044b\u0445\u043e\u0434\u044f\u0442 \u043d\u0430 \u043f\u0435\u0440\u0432\u044b\u0439 \u043f\u043b\u0430\u043d.\n\n\u0412 \u0441\u0432\u044f\u0437\u0438 \u0441 \u044d\u0442\u0438\u043c Google \u0431\u043e\u043b\u044c\u0448\u0435 \u043d\u0435 \u0432\u0438\u0434\u0438\u0442 \u043a\u043e\u0440\u0440\u0435\u043b\u044f\u0446\u0438\u0438 \u043c\u0435\u0436\u0434\u0443 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u0435\u043c \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0438 TTE.\n\n\u0412 2023 \u0433\u043e\u0434\u0443 75% \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u043e\u0434\u043e\u0432\u0430\u043d\u044b \u0434\u043e \u043d\u0430\u0447\u0430\u043b\u0430 \u0438\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445, \u0430 25% \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0445\u0430\u043a\u0435\u0440\u044b \u0443\u0436\u0435 \u043d\u0430\u0447\u0430\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u0412 \u043e\u0442\u0447\u0435\u0442\u0435 \u043f\u0440\u0438\u0432\u0435\u0434\u0435\u043d\u044b \u0434\u0432\u0430 \u043f\u0440\u0438\u043c\u0435\u0440\u0430, \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 \u0432\u0437\u0430\u0438\u043c\u043e\u0441\u0432\u044f\u0437\u0438 \u043c\u0435\u0436\u0434\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c\u044e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c\u044e: CVE-2023-28121 (\u043f\u043b\u0430\u0433\u0438\u043d WordPress) \u0438 CVE-2023-27997 (Fortinet FortiOS).\n\n\u0412 \u043f\u0435\u0440\u0432\u043e\u043c \u0441\u043b\u0443\u0447\u0430\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c \u0447\u0435\u0440\u0435\u0437 \u0442\u0440\u0438 \u043c\u0435\u0441\u044f\u0446\u0430 \u043f\u043e\u0441\u043b\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u0447\u0435\u0440\u0435\u0437 \u0434\u0435\u0441\u044f\u0442\u044c \u0434\u043d\u0435\u0439 \u043f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 PoC, \u0430 \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 FortiOS - \u043f\u0440\u0430\u043a\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0441\u0440\u0430\u0437\u0443 \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0432 PoC, \u043d\u043e \u043f\u0435\u0440\u0432\u044b\u0439 \u0441\u043b\u0443\u0447\u0430\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0431\u044b\u043b \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d \u0447\u0435\u0442\u044b\u0440\u0435 \u043c\u0435\u0441\u044f\u0446\u0430 \u0441\u043f\u0443\u0441\u0442\u044f.\n\n\u0421\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u043c\u043e\u0442\u0438\u0432\u0430\u0446\u0438\u044f \u0441\u0443\u0431\u044a\u0435\u043a\u0442\u0430 \u0443\u0433\u0440\u043e\u0437\u044b, \u0446\u0435\u043b\u0435\u0432\u0430\u044f \u0446\u0435\u043d\u043d\u043e\u0441\u0442\u044c \u0438 \u043e\u0431\u0449\u0430\u044f \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0430\u0442\u0430\u043a\u0438 - \u0432\u0441\u0435 \u044d\u0442\u043e \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u0442 \u0438\u0433\u0440\u0430\u0442\u044c \u0440\u043e\u043b\u044c \u0432 TTE, \u043e\u0434\u043d\u0430\u043a\u043e \u043a\u0430\u043a\u0443\u044e-\u043b\u0438\u0431\u043e \u043a\u043e\u0440\u0440\u0435\u043b\u044f\u0446\u0438\u044e \u0441 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c\u044e PoC \u0442\u0435\u043f\u0435\u0440\u044c \u043c\u043e\u0436\u043d\u043e \u043d\u0435 \u0443\u0447\u0438\u0442\u044b\u0432\u0430\u0442\u044c \u0432\u043e\u0432\u0441\u0435.", "creation_timestamp": "2024-10-17T18:15:05.000000Z"}, {"uuid": "be97432a-dad0-4ef3-ab4a-e145ac762137", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/true_secator/6943", "content": "Fortinet \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u0435\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043d\u0430\u0448\u043b\u0438 \u0441\u043f\u043e\u0441\u043e\u0431 \u0441\u043e\u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f \u043a \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u043c FortiGate \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u044b\u0439 \u0432\u0435\u043a\u0442\u043e\u0440 \u0434\u043e\u0441\u0442\u0443\u043f\u0430, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432, \u0431\u044b\u043b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d.\n\n\u041f\u0440\u0435\u0434\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442\u0441\u044f, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u0438 \u0443\u0436\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f, \u043f\u043e\u043c\u0438\u043c\u043e \u043f\u0440\u043e\u0447\u0435\u0433\u043e, CVE-2022-4247, CVE-2023-27997 \u0438 CVE-2024-21762.\n\n\u042d\u0442\u043e \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u0435\u0442\u0441\u044f \u043f\u0443\u0442\u0435\u043c \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0441\u0441\u044b\u043b\u043a\u0438, \u0441\u043e\u0435\u0434\u0438\u043d\u044f\u044e\u0449\u0435\u0439 \u0444\u0430\u0439\u043b\u043e\u0432\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0438 \u043a\u043e\u0440\u043d\u0435\u0432\u0443\u044e \u0444\u0430\u0439\u043b\u043e\u0432\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0432 \u043f\u0430\u043f\u043a\u0435, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439 \u0434\u043b\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u044f\u0437\u044b\u043a\u043e\u0432\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0434\u043b\u044f SSL-VPN.\n\nFortinet \u043e\u0442\u043c\u0435\u0447\u0430\u0435\u0442, \u0447\u0442\u043e \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u0432\u043d\u043e\u0441\u0438\u043b\u0438\u0441\u044c \u0432 \u0444\u0430\u0439\u043b\u043e\u0432\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0438 \u0438\u043c \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0438\u0437\u0431\u0435\u0436\u0430\u0442\u044c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f, \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u0447\u0435\u0433\u043e \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0441\u044b\u043b\u043a\u0430 (\u0442\u0430\u043a\u0436\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0430\u044f \u043a\u0430\u043a \u0441\u0438\u043c\u043b\u0438\u043d\u043a) \u0441\u043e\u0445\u0440\u0430\u043d\u044f\u043b\u0430\u0441\u044c \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0431\u044b\u043b\u0438 \u0437\u0430\u043a\u0440\u044b\u0442\u044b.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u044d\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0441\u043e\u0445\u0440\u0430\u043d\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f \u043a \u0444\u0430\u0439\u043b\u0430\u043c \u0432 \u0444\u0430\u0439\u043b\u043e\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u043a\u043b\u0438\u0435\u043d\u0442\u044b, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0438\u043a\u043e\u0433\u0434\u0430 \u043d\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u043b\u0438 SSL-VPN, \u043d\u0435 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b \u044d\u0442\u043e\u0439 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439.\n\n\u041d\u0435\u044f\u0441\u043d\u043e, \u043a\u0442\u043e \u0441\u0442\u043e\u0438\u0442 \u0437\u0430 \u044d\u0442\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c\u044e, \u043d\u043e \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 Fortinet \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u043e, \u0447\u0442\u043e \u043e\u043d\u0430 \u043d\u0435 \u0431\u044b\u043b\u0430 \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u043d\u0430 \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u0439 \u0440\u0435\u0433\u0438\u043e\u043d \u0438\u043b\u0438 \u043e\u0442\u0440\u0430\u0441\u043b\u044c. \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0443\u0432\u0435\u0434\u043e\u043c\u0438\u043b\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043a\u043e\u0441\u043d\u0443\u043b\u0430\u0441\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430.\n\n\u0412 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u043c\u0435\u0440 \u043f\u043e \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044e \u043f\u043e\u0432\u0442\u043e\u0440\u0435\u043d\u0438\u044f \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0431\u044b\u043b \u0432\u044b\u043f\u0443\u0449\u0435\u043d \u0440\u044f\u0434 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u041f\u041e FortiOS:\n\n- FortiOS 7.4, 7.2, 7.0 \u0438 6.4: \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0441\u044b\u043b\u043a\u0430 \u0431\u044b\u043b\u0430 \u043f\u043e\u043c\u0435\u0447\u0435\u043d\u0430 \u043a\u0430\u043a \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f, \u043e\u043d\u0430 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0443\u0434\u0430\u043b\u044f\u0435\u0442\u0441\u044f \u0430\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441\u043d\u044b\u043c \u044f\u0434\u0440\u043e\u043c.\n\n- FortiOS 7.6.2, 7.4.7, 7.2.11, 7.0.17 \u0438 6.4.16: \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0441\u044b\u043b\u043a\u0430 \u0431\u044b\u043b\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u0430, \u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0439 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 SSL-VPN \u0431\u044b\u043b \u0438\u0437\u043c\u0435\u043d\u0435\u043d \u0434\u043b\u044f \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u0442\u0430\u043a\u0438\u0445 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u0441\u0441\u044b\u043b\u043e\u043a.\n\n\u041a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b FortiOS \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0439 7.6.2, 7.4.7, 7.2.11, 7.0.17 \u0438\u043b\u0438 6.4.16, \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0438 \u0440\u0430\u0441\u0441\u043c\u0430\u0442\u0440\u0438\u0432\u0430\u0442\u044c \u0432\u0441\u0435 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u043a\u0430\u043a \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435, \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u044f\u00a0\u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0448\u0430\u0433\u0438 \u043f\u043e \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044e.\n\nCISA \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u0443\u044e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044e \u0441 \u043f\u0440\u0438\u0437\u044b\u0432\u043e\u043c \u0441\u0431\u0440\u043e\u0441\u0438\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438 \u0440\u0430\u0441\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u0438 SSL-VPN \u0434\u043e \u0442\u0435\u0445 \u043f\u043e\u0440, \u043f\u043e\u043a\u0430 \u043d\u0435 \u0431\u0443\u0434\u0443\u0442 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u044b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u0413\u0440\u0443\u043f\u043f\u0430 \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f CERT-FR \u0432 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u043e\u043c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435 \u0437\u0430\u044f\u0432\u0438\u043b\u0430, \u0447\u0442\u043e \u0435\u0439 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u044f\u0445, \u0434\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u043d\u0430\u0447\u0430\u043b\u043e\u043c 2023 \u0433\u043e\u0434\u0430.\n\n\u0412 watchTowr \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0438, \u0447\u0442\u043e \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442 \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442 \u0431\u0435\u0441\u043f\u043e\u043a\u043e\u0439\u0441\u0442\u0432\u043e \u043f\u043e \u0434\u0432\u0443\u043c \u0432\u0430\u0436\u043d\u044b\u043c \u043f\u0440\u0438\u0447\u0438\u043d\u0430\u043c.\n\n\u0412\u043e-\u043f\u0435\u0440\u0432\u044b\u0445, \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u0441\u044f \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0431\u044b\u0441\u0442\u0440\u0435\u0435, \u0447\u0435\u043c \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0441\u043f\u0435\u0432\u0430\u044e\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0438 \u0447\u0442\u043e \u0435\u0449\u0435 \u0432\u0430\u0436\u043d\u0435\u0435, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0433\u043b\u0443\u0431\u043e\u043a\u043e \u043e\u0441\u043e\u0437\u043d\u0430\u044e\u0442 \u044d\u0442\u043e\u0442 \u0444\u0430\u043a\u0442.\n\n\u0412\u043e-\u0432\u0442\u043e\u0440\u044b\u0445, \u0432 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043b\u0438, \u043a\u0430\u043a \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043b\u0438 \u0431\u044d\u043a\u0434\u043e\u0440\u044b \u043f\u043e\u0441\u043b\u0435 \u0431\u044b\u0441\u0442\u0440\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d\u043d\u044b\u0435 \u0434\u043b\u044f \u0442\u043e\u0433\u043e, \u0447\u0442\u043e\u0431\u044b \u043f\u0435\u0440\u0435\u0436\u0438\u0442\u044c \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u044b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f, \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0438 \u0441\u0431\u0440\u043e\u0441\u0430 \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043a \u043a \u0437\u0430\u0432\u043e\u0434\u0441\u043a\u0438\u043c, \u0447\u0442\u043e\u0431\u044b \u0441\u043e\u0445\u0440\u0430\u043d\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0441\u0435\u0442\u044f\u043c.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432 \u043a\u043b\u0438\u0435\u043d\u0442\u0441\u043a\u043e\u0439 \u0431\u0430\u0437\u0435 watchTowr \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0441\u043b\u0443\u0447\u0430\u0438 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u0431\u044d\u043a\u0434\u043e\u0440\u043e\u0432, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0432 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u0445, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043d\u043e\u0433\u0438\u0435 \u0431\u044b \u043e\u0434\u043d\u043e\u0437\u043d\u0430\u0447\u043d\u043e \u043d\u0430\u0437\u0432\u0430\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u043e\u0439.", "creation_timestamp": "2025-04-14T15:41:38.000000Z"}, {"uuid": "0c44b401-e7c9-4d76-bd86-86d0f3bb2676", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/Programmer_Tech/7295", "content": "\u0638\u0647\u0631\u062a \u062b\u063a\u0631\u0629 \u0623\u0645\u0646\u064a\u0629 \u062c\u062f\u064a\u062f\u0629 \u0641\u064a  fortinet firewall \u0627\u0644\u062b\u063a\u0631\u0629 \u062d\u0631\u062c\u0629 \u062c\u062f\u0627\u064b \u0648 \u0627\u0644 score 9.8 \u0645\u0646 \u0623\u0635\u0644 10 \n\u0646\u0638\u0627\u0645 \u0630\u064a fortiOS \u062a\u0642\u0631\u064a\u0628\u0627\u064b \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645\u0647\u0627 \u0639\u062f\u062f \u0643\u0628\u064a\u0631 \u062c\u062f\u0627\u064b \u0645\u0646 \u0627\u0644\u0634\u0631\u0643\u0627\u062a \u0644\u0630\u0627\u0644\u0643 \u0627\u0644\u0645\u0648\u0636\u0648\u0639 \u0645\u0647\u0645 \u0648\u0639\u0644\u064a \u0627\u0644\u062c\u0645\u064a\u0639 \u0627\u0644\u062a\u0631\u0642\u064a\u0629 \u0627\u0644\u064a \u0627\u0644\u0627\u0635\u062f\u0627\u0631\u0627\u062a \u0627\u0644\u062c\u062f\u064a\u062f\u0647\n#CVE-2023-27997\n\n\u062f\u0627 \u0645\u0642\u0627\u0644 \u0628\u064a\u062a\u0643\u0644\u0645 \u0639\u0646 \u0627\u0644\u062b\u063a\u0631\u0629 \n\nhttps://programmer-tech.com/fortinet-firewall-vulnerability-cve-2023-27997/", "creation_timestamp": "2023-07-04T22:33:26.000000Z"}, {"uuid": "7d928d24-c070-460e-a06f-7e3ddeeaf3c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/true_secator/5521", "content": "\u041e\u0447\u0435\u0440\u0435\u0434\u043d\u0430\u044f \u043f\u0430\u0440\u0442\u0438\u044f \u0438\u0437 \u0431\u043e\u043b\u0435\u0435 200 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0437\u0430\u043a\u0440\u044b\u0442\u0430 Siemens \u0438 Schneider Electric \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0437\u0430 \u043c\u0430\u0440\u0442 2024 \u0433\u043e\u0434\u0430.\n\nSiemens\u00a0\u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 11 \u043d\u043e\u0432\u044b\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439, \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0449\u0438\u0445 \u0432 \u043e\u0431\u0449\u0435\u0439 \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u0438 214 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0431\u043e\u043b\u044c\u0448\u0430\u044f \u0447\u0430\u0441\u0442\u044c \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0441\u044f \u043a \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u043e\u043c\u0443 \u0441\u0447\u0438\u0442\u044b\u0432\u0430\u0442\u0435\u043b\u044e Simatic RF160B.\n\n\u0414\u0432\u0430 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f \u043f\u043e\u0441\u0432\u044f\u0449\u0435\u043d\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c FortiOS \u0438 Fortigate, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 Fortigate NGFW \u0438\u043d\u0442\u0435\u0433\u0440\u0438\u0440\u043e\u0432\u0430\u043d \u0441 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u0430\u043c\u0438 \u0438 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u0430\u043c\u0438 Ruggedcom, \u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 Fortinet \u0442\u0430\u043a\u0436\u0435 \u0432\u043b\u0438\u044f\u044e\u0442 \u043d\u0430 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 \u0445\u043e\u0441\u0442\u0438\u043d\u0433\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Siemens Ruggedcom APE1808.\n\n\u041e\u0434\u043d\u0430 \u0438\u0437 \u0434\u0432\u0443\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 Ruggedcom APE1808 \u043e\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u0435\u0442 \u0441\u0435\u043c\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c, \u0430 \u0434\u0440\u0443\u0433\u0438\u0435\u00a038.\u00a0\u041e\u043d\u0438 \u043c\u043e\u0433\u0443\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a RCE, MitM-\u0430\u0442\u0430\u043a\u0430\u043c, \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044e \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439, \u0443\u0442\u0435\u0447\u043a\u0435 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438, \u043e\u0431\u0445\u043e\u0434\u0443 \u0444\u0443\u043d\u043a\u0446\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 DoS.\n\n\u0412 \u0447\u0438\u0441\u043b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Fortinet -\u00a0CVE-2024-21762\u00a0,\u00a0CVE-2023-27997\u00a0\u0438\u00a0CVE-2022-41328, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u043f\u0440\u043e\u0434\u0432\u0438\u043d\u0443\u0442\u044b\u043c\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438.\u00a0\n\n\u041f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0439 \u0433\u0438\u0433\u0430\u043d\u0442 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c \u0441 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435\u043c \u0442\u0440\u0435\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 \u043f\u0440\u043e\u0442\u0438\u0432\u043e\u043f\u043e\u0436\u0430\u0440\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b Sinteso EN \u0438 Cerberus PRO EN.\u00a0\n\n\u041e\u0434\u043d\u0430 \u0438\u0437 \u043d\u0438\u0445 \u0431\u044b\u043b\u0430 \u043e\u0446\u0435\u043d\u0435\u043d\u0430 \u043a\u0430\u043a \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f (CVSS 10) \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443, \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0432 \u0431\u0430\u0437\u043e\u0432\u043e\u0439 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 root.\n\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0433\u043b\u0430 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430, \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u0432 Sinema Remote Connect Server.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0432 Siemens Sentron (DoS) \u0438 Solid Edge (RCE).\n\nSiemens \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432, \u043d\u043e \u0434\u043b\u044f \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0433\u043e \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0435\u0449\u0435 \u043d\u0435 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b.\n\nSchneider Electric\u00a0\u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430 \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u0432\u0430 \u043d\u043e\u0432\u044b\u0445 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f.\n\n\u0412 \u043e\u0434\u043d\u043e\u043c \u0438\u0437 \u043d\u0438\u0445 \u043e\u043f\u0438\u0441\u0430\u043d\u044b \u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Easergy T200 RTU \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0440\u0430\u0441\u043f\u0440\u0435\u0434\u0435\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u043c\u0438 \u0441\u0435\u0442\u044f\u043c\u0438 \u043e\u0431\u0449\u0435\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043d\u0435\u0433\u043e \u0438 \u043d\u0438\u0437\u043a\u043e\u0433\u043e \u043d\u0430\u043f\u0440\u044f\u0436\u0435\u043d\u0438\u044f.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438\u043c\u0435\u044e\u0442 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0438 \u0432\u044b\u0441\u043e\u043a\u0443\u044e \u0441\u0442\u0435\u043f\u0435\u043d\u044c \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0434\u043b\u044f \u0437\u0430\u0445\u0432\u0430\u0442\u0430 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0437\u0430\u043f\u0438\u0441\u0435\u0439, RCE \u0438 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u0441\u043d\u044f\u0442\u043e \u0441 \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u043a\u043e\u043d\u0446\u0435 2021 \u0433\u043e\u0434\u0430, \u0438 \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0442\u044c\u0441\u044f \u043d\u0435 \u0431\u0443\u0434\u0435\u0442.\u00a0\u041a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u0431\u044b\u043b\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u043e\u0432\u0430\u043d\u043e \u043f\u0435\u0440\u0435\u0439\u0442\u0438 \u043d\u0430 PowerLogic T300.\n\n\u0414\u0440\u0443\u0433\u043e\u0439 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c Schneider \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u0443\u0435\u0442 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u0435 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 EcoStruxure Power Design \u2013 Ecodial.", "creation_timestamp": "2024-03-14T13:00:08.000000Z"}, {"uuid": "c0ab23f3-5886-4464-b78d-7de3b66c4a90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/true_secator/4575", "content": "\u041d\u0435 \u043c\u0435\u043d\u0435\u0435 330 000 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u043e\u0432 FortiGate \u0432\u0441\u0435 \u0435\u0449\u0435 \u043d\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b \u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u0434\u043b\u044f CVE-2023-27997 \u2014 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435, \u0441\u043f\u0443\u0441\u0442\u044f \u043f\u043e\u0447\u0442\u0438 \u043c\u0435\u0441\u044f\u0446 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a Fortinet \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435.\n\n\u0422\u0430\u043a\u0438\u0435 \u043d\u0435\u0443\u0442\u0435\u0448\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u043f\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u0438 \u043e\u0442\u0440\u0430\u0437\u0438\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Bishop Fox \u0432 \u0441\u0432\u043e\u0435\u043c\u00a0\u043e\u0442\u0447\u0435\u0442\u0435. \n\n\u041e\u043d\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043f\u043e\u0447\u0442\u0438 490 000 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u043e\u0432 Fortinet SSL-VPN, \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0445 \u0432 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435, \u0430 \u043f\u043e \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0430\u043c \u0430\u043d\u0430\u043b\u0438\u0437\u0430 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u043b\u0438, \u0447\u0442\u043e 69% \u0438\u0437 \u043d\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u044b.\n\nRCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2023-27997) \u0438\u043c\u0435\u0435\u0442 \u043e\u0446\u0435\u043d\u043a\u0443 CVSS: 9,8 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 XORtigate.\n\n\u041e\u043d\u0430 \u0432\u043e\u0437\u043d\u0438\u043a\u0430\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0431\u0443\u0444\u0435\u0440\u0430 \u043a\u0443\u0447\u0438 \u0432 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 FortiOS, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0441\u043e\u0435\u0434\u0438\u043d\u044f\u0435\u0442 \u0432\u0441\u0435 \u0441\u0435\u0442\u0435\u0432\u044b\u0435 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u044b Fortinet \u0434\u043b\u044f \u0438\u0445 \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u0438 \u0432 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 Security Fabric \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0430.\n\nCVE-2023-27997 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0435\u043c\u0443 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0441 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u043e\u043c SSL VPN, \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u043c \u0432 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435.\n\nFortinet \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c 11 \u0438\u044e\u043d\u044f, \u043f\u0440\u0435\u0436\u0434\u0435 \u0447\u0435\u043c \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c \u0435\u0435,\u00a0\u0432\u044b\u043f\u0443\u0441\u0442\u0438\u0432 \u0432\u0435\u0440\u0441\u0438\u0438 \u043f\u0440\u043e\u0448\u0438\u0432\u043a\u0438 FortiOS\u00a06.0.17, 6.2.15, 6.4.13, 7.0.12 \u0438 7.2.5, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u0438\u0437\u043d\u0430\u0432 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0442\u0430\u0440\u0433\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445, \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0433\u043e\u0441\u0441\u0435\u043a\u0442\u043e\u0440, \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u043e \u0438 \u0432\u0430\u0436\u043d\u044b\u0435 \u0441\u0435\u043a\u0442\u043e\u0440\u0430 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442, \u0447\u0442\u043e \u043d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0442\u043e, \u0447\u0442\u043e 153 414 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u044b \u0434\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438 FortiOS, \u043c\u043d\u043e\u0433\u0438\u0435 \u0438\u0437 \u043e\u0431\u0449\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Fortinet \u043d\u0435 \u043f\u043e\u043b\u0443\u0447\u0430\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0432 \u0442\u0435\u0447\u0435\u043d\u0438\u0435 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u0432\u043e\u0441\u044c\u043c\u0438 \u043b\u0435\u0442, \u0440\u0430\u0431\u043e\u0442\u0430\u044f \u043f\u043e\u0434 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c FortiOS \u0432\u0435\u0440\u0441\u0438\u0439 5 \u0438 6.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u044d\u0442\u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u0434\u043b\u044f \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u0438\u0445 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0441 \u043e\u0431\u0449\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u043c\u0438 PoC, \u043d\u0435 \u0433\u043e\u0432\u043e\u0440\u044f \u0443\u0436\u0435 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0438\u0445 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430 \u0443\u0436\u0435 \u0434\u0430\u0432\u043d\u043e \u0437\u0430\u043a\u043e\u043d\u0447\u0438\u043b\u0430\u0441\u044c.\n\n\u0412\u043f\u0440\u043e\u0447\u0435\u043c, \u043f\u043e\u0432\u0442\u043e\u0440\u044f\u0442\u044c\u0441\u044f \u043d\u0435 \u0431\u0443\u0434\u0435\u043c, \u0441\u0442\u043e\u043b\u044c \u043d\u0435\u0433\u0430\u0442\u0438\u0432\u043d\u044b\u0435 \u0442\u0440\u0435\u043d\u0434\u044b \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u043c \u043d\u0435 \u043f\u0435\u0440\u0432\u044b\u0439 \u0433\u043e\u0434 - \u0432\u044b\u0432\u043e\u0434\u044b \u0432\u0441\u0435 \u0441\u0434\u0435\u043b\u0430\u044e\u0442 \u0441\u0430\u043c\u0438.", "creation_timestamp": "2023-07-04T13:30:05.000000Z"}, {"uuid": "0186e1d6-1c1d-4b3f-9515-2ebcebafb236", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/true_secator/4494", "content": "\u041a\u0430\u043a \u043e\u043a\u0430\u0437\u0430\u043b\u043e\u0441\u044c Fortigate, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u0440\u0438\u0437\u0432\u0430\u043d \u0437\u0430\u0449\u0438\u0449\u0430\u0442\u044c, \u0441\u0430\u043c \u043d\u0443\u0436\u0434\u0430\u0435\u0442\u0441\u044f \u0432 \u0437\u0430\u0449\u0438\u0442\u0435, \u0442\u0430\u043a \u043a\u0430\u043a \u0432 Fortinet \u0431\u044c\u044e\u0442 \u0442\u0440\u0435\u0432\u043e\u0433\u0443 \u0438 \u043f\u0440\u0438\u0437\u044b\u0432\u0430\u044e\u0442 \u043d\u0435\u043c\u0435\u0434\u043b\u0435\u043d\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u0414\u0435\u043b\u043e \u0432 \u0442\u043e\u043c, \u0447\u0442\u043e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c FortiOS SSL VPN, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u043d\u0430 \u043f\u0440\u043e\u0448\u043b\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435, \u043c\u043e\u0433\u043b\u0430 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043f\u0440\u0430\u0432\u0438\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0435 \u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u044a\u0435\u043a\u0442\u044b, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443.\n\nCVE-2023-27997 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 FortiOS \u0438 FortiProxy SSL-VPN, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438 \u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u0435\u0441\u0442\u0438 RCE \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0445 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0431\u044b\u043b \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d \u0432\u043e \u0432\u0440\u0435\u043c\u044f \u0430\u0443\u0434\u0438\u0442\u0430 \u043a\u043e\u0434\u0430 \u043c\u043e\u0434\u0443\u043b\u044f SSL-VPN \u043f\u043e\u0441\u043b\u0435 \u0434\u0440\u0443\u0433\u043e\u0439 \u043d\u0435\u0434\u0430\u0432\u043d\u0435\u0439 \u0441\u0435\u0440\u0438\u0438 \u0430\u0442\u0430\u043a \u043f\u0440\u043e\u0442\u0438\u0432 \u043f\u0440\u0430\u0432\u0438\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0445 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c 0-day (\u0421VE-2022-42475) \u0432 FortiOS.\n\n\u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u0432 \u043a\u043e\u043d\u0446\u0435 \u043f\u0440\u043e\u0448\u043b\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435 \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 \u043f\u0440\u043e\u0448\u0438\u0432\u043a\u0438 FortiOS 6.0.17, 6.2.15, 6.4.13, 7.0.12 \u0438 7.2.5., \u043f\u0440\u0435\u0436\u0434\u0435 \u0447\u0435\u043c \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438.\n\n\u0412 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043d\u0435 \u043f\u0435\u0440\u0432\u044b\u0439 \u0440\u0430\u0437 \u0432\u044b\u043f\u0443\u0441\u043a\u0430\u044e\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0435\u0440\u0435\u0434 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u0435\u043c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0447\u0442\u043e\u0431\u044b \u0434\u0430\u0442\u044c \u0432\u0440\u0435\u043c\u044f \u043e\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u043f\u0440\u0435\u0436\u0434\u0435 \u0447\u0435\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0430\u0434\u0430\u043f\u0442\u0438\u0440\u0443\u044e\u0442 \u0438\u0445 \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432. \u0421\u043f\u0430\u0441\u0438\u0431\u043e, \u0447\u0442\u043e \u043d\u0435 \u0434\u043e, \u0430 \u0442\u0430\u043a \u0432 \u043f\u044f\u0442\u043d\u0438\u0446\u0443 \u0432\u0441\u0435 \u0430\u0434\u043c\u0438\u043d\u044b \u0441\u0438\u0434\u044f\u0442 \u0438 \u0436\u0434\u0443\u0442, \u043a\u043e\u0433\u0434\u0430 \u0447\u0442\u043e-\u0442\u043e \u043d\u043e\u0432\u0435\u043d\u044c\u043a\u043e\u0435 \u0432\u044b\u0439\u0434\u0435\u0442.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043d\u0430 \u0441\u0430\u043c\u043e\u043c \u0434\u0435\u043b\u0435 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u0430\u044f, \u0432\u0435\u0434\u044c \u0441\u043e\u0433\u043b\u0430\u0441\u043d\u043e Shodan \u0432 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u043c 250 000 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u043e\u0432 Fortigate, \u0438 \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043d\u0438\u0445, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0443\u044f\u0437\u0432\u0438\u043c\u044b.\n\n\u0411\u043e\u043b\u0435\u0435 \u0442\u043e\u0433\u043e, \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u043e\u0432 \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u043e, \u0447\u0442\u043e \u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0435 \u0443\u0437\u043d\u0430\u043b\u0438 \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e \u0432 Fortinet \u0438 \u043e\u043d\u0430 \u043c\u043e\u0433\u043b\u0430 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0432 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0441\u043b\u0443\u0447\u0430\u0435\u0432, \u043a\u0435\u043c-\u0442\u043e \u0435\u0449\u0435.\n\n\u041d\u0430 \u0434\u0430\u043d\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u0442\u0435\u0441\u043d\u043e \u0441\u043e\u0442\u0440\u0443\u0434\u043d\u0438\u0447\u0430\u0435\u0442 \u0441 \u043a\u043b\u0438\u0435\u043d\u0442\u0430\u043c\u0438, \u0447\u0442\u043e\u0431\u044b \u043e\u0442\u0441\u043b\u0435\u0434\u0438\u0442\u044c \u0441\u0438\u0442\u0443\u0430\u0446\u0438\u044e.\n\nFortinet \u0443\u0436\u0435 \u043d\u0435 \u0432 \u043f\u0435\u0440\u0432\u043e\u0439 \u0431\u044b\u0442\u044c \u043f\u043e\u0434 \u043f\u0440\u0438\u0446\u0435\u043b\u043e\u043c APT. \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0430 \u0432\u0437\u043b\u043e\u043c\u043e\u043c \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Fortinet FortiGuard \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0440\u0430\u043d\u0435\u0435 \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e\u0439 0-day, \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0431\u044b\u043b \u043f\u043e\u043b\u0443\u0447\u0435\u043d \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0441\u0435\u0442\u044f\u043c \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439 \u0432 \u0448\u0438\u0440\u043e\u043a\u043e\u043c \u0441\u043f\u0435\u043a\u0442\u0440\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0435\u043a\u0442\u043e\u0440\u043e\u0432. \n\n\u0422\u043e\u0433\u0434\u0430 \u043a \u0430\u0442\u0430\u043a\u0430\u043c \u0431\u044b\u043b\u0430 \u043f\u0440\u0438\u0447\u0430\u0441\u0442\u043d\u0430 \u043a\u0438\u0442\u0430\u0439\u0441\u043a\u0430\u044f Volt Typhoon, \u043d\u043e \u0438\u043c\u0435\u0435\u0442 \u043b\u0438 \u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0435 \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0430 \u043a \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2023-27997 \u0434\u043e\u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e \u043d\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e.", "creation_timestamp": "2023-06-13T18:20:04.000000Z"}, {"uuid": "996eb424-fcfc-487f-ba06-6cded6bd79d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3783", "content": "\ud83d\udd31CVE-2023-24488 POC : https://www.system32.ink/2023/07/cve-2023-24488-poc.html\n\n\ud83d\udd31CVE-2023-28252 POC : https://www.system32.ink/2023/07/cve-2023-28252-poc.html\n\n\ud83d\udd31Sniffle - Sniffer for Bluetooth 5 and 4.x (LE) : https://www.system32.ink/2023/07/sniffle-sniffer-for-bluetooth-5-and-4x.html\n\n\ud83d\udd31ChromeOS pluginvm arbitrary chmod 777 : https://www.system32.ink/2023/07/chromeos-pluginvm-arbitrary-chmod-777.html\n\n\ud83d\udd31Akira Ransomware Decryptor Software : https://www.system32.ink/2023/07/akira-ransomware-decryptor-software.html\n\n\ud83d\udd31CVE-2023-27997 FortiGate SSL VPN Detector : https://www.system32.ink/2023/07/cve-2023-27997-fortigate-ssl-vpn.html\n\n\ud83d\udd31TomcatBackdoorPoC : https://www.system32.ink/2023/07/tomcatbackdoorpoc.html", "creation_timestamp": "2023-07-10T00:50:12.000000Z"}, {"uuid": "60a6b650-559b-4d38-a494-acec162742a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/information_security_channel/51502", "content": "Fortinet: APTs Exploiting FortiOS Vulnerabilities in Critical Infrastructure Attacks\nhttps://www.securityweek.com/fortinet-apts-exploiting-fortios-vulnerabilities-in-critical-infrastructure-attacks/\n\nFortinet warns that Chinese and other APTs are exploiting CVE-2022-42475 and CVE-2023-27997 in attacks.\nThe post Fortinet: APTs Exploiting FortiOS Vulnerabilities in Critical Infrastructure Attacks (https://www.securityweek.com/fortinet-apts-exploiting-fortios-vulnerabilities-in-critical-infrastructure-attacks/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2024-02-08T17:16:42.000000Z"}, {"uuid": "5251cc0e-f30d-4811-a302-c79ff06a1ce7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/information_security_channel/50082", "content": "Fortinet Patches Critical FortiGate SSL VPN Vulnerability\nhttps://www.securityweek.com/fortinet-patches-critical-fortigate-ssl-vpn-vulnerability/\n\nFortinet has patched CVE-2023-27997, a critical FortiGate SSL VPN vulnerability that can be exploited for unauthenticated remote code execution. \nThe post Fortinet Patches Critical FortiGate SSL VPN Vulnerability (https://www.securityweek.com/fortinet-patches-critical-fortigate-ssl-vpn-vulnerability/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2023-06-12T12:04:48.000000Z"}, {"uuid": "0ba2973a-5545-4926-93f5-7256adca3187", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/information_security_channel/50089", "content": "Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks\nhttps://www.securityweek.com/fortinet-warns-customers-of-possible-zero-day-exploited-in-limited-attacks/\n\nFortinet has warned customers that the critical CVE-2023-27997 vulnerability that was patched recently could be a zero-day exploited in limited attacks.\nThe post Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks (https://www.securityweek.com/fortinet-warns-customers-of-possible-zero-day-exploited-in-limited-attacks/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2023-06-13T12:11:51.000000Z"}, {"uuid": "7e26c9b1-bd3a-4496-ad11-da2b4c4e4c8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9026", "content": "#exploit\nCVE-2023-27997:\nFortiOS SSL-VPN buffer overflow vulnerability PoC", "creation_timestamp": "2023-09-15T10:58:01.000000Z"}, {"uuid": "dfd4c9e4-0509-4026-b841-8e4198b15ab2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/thehackernews/3466", "content": "\u26a0\ufe0f Urgent: A new critical RCE security vulnerability (CVE-2023-27997) in FortiGate firewalls has been discovered. Update to the latest versions to secure your network against potential remote code execution. \n \nRead details: https://thehackernews.com/2023/06/critical-rce-flaw-discovered-in.html", "creation_timestamp": "2023-06-12T08:57:54.000000Z"}, {"uuid": "e5fc311a-e04d-4095-a71f-f37f3f7e9abf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/thehackernews/3553", "content": "\ud83d\udea8 Critical Alert! Over 330,000 FortiGate firewalls are still vulnerable to the critical CVE-2023-27997 RCE exploit!  \n \nDon't be a sitting duck, PATCH NOW!  \n \nLearn more: https://thehackernews.com/2023/07/alert-330000-fortigate-firewalls-still.html", "creation_timestamp": "2023-07-04T08:59:51.000000Z"}, {"uuid": "0d6362fa-377d-45d3-88a5-0dfc8b21e786", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/SecLabNews/13987", "content": "\u042d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0440\u0430\u0437\u0431\u0438\u0432\u0430\u0435\u0442 \u043a\u0443\u0447\u0443: \u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u044b FortiGate \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u043c\u0438 \u0434\u043b\u044f \u0430\u0442\u0430\u043a\n\n \u0421\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u044b \u0418\u0411-\u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 Bishop Fox \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 , \u0447\u0442\u043e \u0431\u043e\u043b\u0435\u0435 300 000 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u043e\u0432 FortiGate \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2023-27997 (CVSS: 9.8) \u043d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0442\u043e, \u0447\u0442\u043e Fortinet \u043c\u0435\u0441\u044f\u0446 \u043d\u0430\u0437\u0430\u0434 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0435\u0435 \u044d\u0442\u043e\u0442 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a.\n\n\u0427\u0442\u043e\u0431\u044b \u043f\u0440\u043e\u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u0442\u044c, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445, Bishop Fox \u0441\u043e\u0437\u0434\u0430\u043b \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 , \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0430\u0442\u044c\u0441\u044f \u043a \u0441\u0435\u0440\u0432\u0435\u0440\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430, \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0434\u0432\u043e\u0438\u0447\u043d\u044b\u0439 \u0444\u0430\u0439\u043b BusyBox \u0438 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u0438\u043d\u0442\u0435\u0440\u0430\u043a\u0442\u0438\u0432\u043d\u0443\u044e \u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0443.\n\n#FortiGate, #CVE-2023-27997, #RCE @SecLabNews", "creation_timestamp": "2023-07-04T15:47:39.000000Z"}, {"uuid": "8abef36f-b345-4ee3-8aa6-1150b685b84d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/7459", "content": "CVE-2023-27997 Vulnerability Scanner for FortiGate Firewalls\n\nhttps://bishopfox.com/blog/cve-2023-27997-vulnerability-scanner-fortigate", "creation_timestamp": "2023-06-23T18:09:00.000000Z"}, {"uuid": "6465c029-fbe2-4814-b11a-ef2c74a6ddf7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "seen", "source": "https://t.me/thebugbountyhunter/7599", "content": "CVE-2023-27997: Critical Fortinet Fortigate Remote Code Execution Vulnerability\n\nhttps://www.rapid7.com/blog/post/2023/06/12/etr-cve-2023-27997-critical-fortinet-fortigate-remote-code-execution-vulnerability/", "creation_timestamp": "2023-07-30T21:15:59.000000Z"}, {"uuid": "b707164f-cef4-45bc-a251-f54f852257d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/thebugbountyhunter/7514", "content": "CVE-2023-27997 Is Exploitable, and 69% of FortiGate Firewalls Are Vulnerable\n\nhttps://bishopfox.com/blog/cve-2023-27997-exploitable-and-fortigate-firewalls-vulnerable", "creation_timestamp": "2023-07-12T09:43:45.000000Z"}, {"uuid": "4060734d-6a00-4c2e-8762-a00bf9776966", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/thehackernews/6654", "content": "\u26a1 Even patching won't save you.\n\nFortinet confirms attackers kept read-only access to FortiGate devices after patching old flaws (CVE-2022-42475, CVE-2023-27997, CVE-2024-21762) via hidden symlink in SSL-VPN.\n\nFull details \ud83d\udc49 https://thehackernews.com/2025/04/fortinet-warns-attackers-retain.html", "creation_timestamp": "2025-04-11T19:59:10.000000Z"}, {"uuid": "3c67e59f-d613-44dc-8181-e1b2099ae84f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "exploited", "source": "https://t.me/xakep_ru/14298", "content": "\u0411\u043e\u043b\u0435\u0435 330 000 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Fortinet \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u043f\u0435\u0440\u0435\u0434 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u043c RCE-\u0431\u0430\u0433\u043e\u043c\n\n\u0421\u043e\u0442\u043d\u0438 \u0442\u044b\u0441\u044f\u0447 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u043e\u0432 FortiGate \u0432\u0441\u0435 \u0435\u0449\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u043f\u0435\u0440\u0435\u0434 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 CVE-2023-27997, \u0445\u043e\u0442\u044f \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Fortinet \u0435\u0449\u0435 \u043c\u0435\u0441\u044f\u0446 \u043d\u0430\u0437\u0430\u0434 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0435\u0435 \u044d\u0442\u043e\u0442 \u0431\u0430\u0433.\n\nhttps://xakep.ru/2023/07/04/cve-2023-27997/", "creation_timestamp": "2023-07-04T16:38:41.000000Z"}, {"uuid": "1ef626d8-a45f-49ea-a94d-15828fe0588d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1212", "content": "https://labs.watchtowr.com/xortigate-or-cve-2023-27997/", "creation_timestamp": "2023-09-30T14:01:00.000000Z"}, {"uuid": "0e4bf7c0-d4a5-49a2-b794-022566c6df7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8533", "content": "#tools\n#Blue_Team_Techniques\n1. Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing\nhttps://github.com/BishopFox/CVE-2023-27997-check\n2. Semgrep Rules for Android Application Security\nhttps://github.com/mindedsecurity/semgrep-rules-android-security", "creation_timestamp": "2023-06-22T11:01:08.000000Z"}, {"uuid": "fa0f779b-8564-4a97-ada2-433413d3a9bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27997", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/977", "content": "#exploit\nCVE-2023-27997:\nFortiOS SSL-VPN buffer overflow vulnerability PoC", "creation_timestamp": "2024-08-16T08:24:35.000000Z"}]}