{"vulnerability": "CVE-2023-3745", "sightings": [{"uuid": "8234d590-5e1d-47d9-aa11-491e6be05e7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-07-13T15:10:03.000000Z"}, {"uuid": "fc5566da-f187-4809-a1aa-4c729d02d726", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971856", "content": "", "creation_timestamp": "2024-12-24T20:34:53.422884Z"}, {"uuid": "0fe71a8e-ff4f-42ec-9bb4-850d322f4e29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:44.000000Z"}, {"uuid": "b98c50ce-fe4f-4782-94b9-f74ab21a0c08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1049", "content": "", "creation_timestamp": "2023-06-23T04:00:00.000000Z"}, {"uuid": "87a0b682-ab68-4fad-994a-e3b373325b37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1061", "content": "", "creation_timestamp": "2023-07-11T04:00:00.000000Z"}, {"uuid": "9a8c5067-1e08-433f-95c6-04ec3158bb73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1074", "content": "", "creation_timestamp": "2023-07-25T04:00:00.000000Z"}, {"uuid": "7f0f232e-d2f5-4e56-a07f-cf2d1e38306d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1075", "content": "", "creation_timestamp": "2023-07-25T04:00:00.000000Z"}, {"uuid": "b130bb28-ba80-4383-88c6-53b496835e65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/fe9bf68f-a9cc-428b-813b-a9172c037614", "content": "", "creation_timestamp": "2026-02-02T12:26:54.961218Z"}, {"uuid": "8306671e-6538-4244-ade0-24128dd72df3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/itsec_news/2936", "content": "\u200b\u26a1\ufe0fApple \u043f\u0440\u043e\u0442\u0438\u0432 \u043a\u0438\u0431\u0435\u0440\u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430: \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b iPhone \u0438 Mac \u043e\u0442 \u043f\u043e\u043b\u043d\u043e\u0433\u043e \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f.\n\n\ud83d\udcac Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 iPhone, Mac \u0438 iPad.\n\n\u0412 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Apple \u043e\u043f\u0438\u0441\u0430\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f WebKit, \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u043c\u0443\u044e \u043a\u0430\u043a CVE-2023-37450 , \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u0432 \u043d\u043e\u0432\u043e\u043c \u0440\u0430\u0443\u043d\u0434\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 Rapid Security Response (RSR) \u0440\u0430\u043d\u0435\u0435 \u0432 \u0438\u044e\u043b\u0435. \u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434, \u0437\u0430\u0441\u0442\u0430\u0432\u043b\u044f\u044f \u0436\u0435\u0440\u0442\u0432 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b.\n\n\u0415\u0449\u0435 \u043e\u0434\u043d\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u0430\u044f \u0441\u0435\u0433\u043e\u0434\u043d\u044f 0day-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u2014 \u044d\u0442\u043e \u043d\u043e\u0432\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u044f\u0434\u0440\u0430 CVE-2023-38606 , \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0430\u0442\u0430\u043a\u0430\u0445, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0441 \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438 iOS, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0445 \u0434\u043e iOS 15.7.1. \u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0438\u0437\u043c\u0435\u043d\u044f\u0442\u044c \u0432\u0430\u0436\u043d\u044b\u0435 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0439 \u044f\u0434\u0440\u0430. Apple \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0443\u043b\u0443\u0447\u0448\u0438\u0432 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435\u043c.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Kaspersky GReAT, \u043e\u0448\u0438\u0431\u043a\u0430 CVE-2023-38606 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0447\u0430\u0441\u0442\u044c\u044e \u0446\u0435\u043f\u043e\u0447\u043a\u0438 Zero-Click \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442\u043e\u0432, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439 \u0432 \u0448\u043f\u0438\u043e\u043d\u0441\u043a\u043e\u0439 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 Triangulation \u043d\u0430 iPhone .\n\n\u0421 \u043d\u0430\u0447\u0430\u043b\u0430 2023 \u0433\u043e\u0434\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0443\u0436\u0435 \u0434\u0435\u0441\u044f\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 iPhone, Mac \u0438\u043b\u0438 iPad:\n\n\u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-32434 , CVE-2023-32435 \u0438 CVE-2023-32439 ) \u0432 \u0438\u044e\u043d\u0435;\n\u0435\u0449\u0451 \u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-32409 , CVE-2023-28204 \u0438 CVE-2023-32373 ) \u0432 \u043c\u0430\u0435;\n\u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-28206 \u0438 CVE-2023-28205 ) \u0432 \u0430\u043f\u0440\u0435\u043b\u0435;\n\u0438 \u0435\u0449\u0451 \u043e\u0434\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c WebKit \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-23529 ) \u0432 \u0444\u0435\u0432\u0440\u0430\u043b\u0435.\n\u0421\u043f\u0438\u0441\u043e\u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0434\u0432\u0443\u043c\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0435\u0433\u043e\u0434\u043d\u044f \u043d\u0443\u043b\u0435\u0432\u044b\u043c\u0438 \u0434\u043d\u044f\u043c\u0438, \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u043e\u0431\u0448\u0438\u0440\u0435\u043d \u0438 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u0448\u0438\u0440\u043e\u043a\u0438\u0439 \u0441\u043f\u0435\u043a\u0442\u0440 \u043c\u043e\u0434\u0435\u043b\u0435\u0439 iPhone \u0438 iPad, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u044b Mac \u043f\u043e\u0434 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c macOS Big Sur, Monterey \u0438 Ventura.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2023-07-27T04:50:00.000000Z"}, {"uuid": "bb7c0b8d-4585-404b-a80a-5091af97e513", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/BitLenta/16399", "content": "Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043d\u043e\u0432\u044b\u0439 Rapid Security Respons (\u043d\u043e \u043d\u0435 \u043d\u0430\u0434\u043e\u043b\u0433\u043e) \u0434\u043b\u044f iOS, iPadOS, macOS \u0438 \u0432\u0435\u0431-\u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 Safari, \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043d\u043e\u0432\u043e\u0439 0-day (\u0443\u0436\u0435 \u0434\u0435\u0441\u044f\u0442\u043e\u0439 \u0432 \u044d\u0442\u043e\u043c \u0433\u043e\u0434\u0443), \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0435\u0439 \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 iPhone, Mac \u0438 iPad.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 WebKit, \u043e\u0442\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u043c\u0430\u044f  \u043a\u0430\u043a\u00a0CVE-2023-37450, \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0433\u043e \u0432\u0435\u0431-\u043a\u043e\u043d\u0442\u0435\u043d\u0442\u0430.\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0438 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0435 \u043e\u0431 \u043e\u0448\u0438\u0431\u043a\u0435 \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442 \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u043e\u043c\u0443 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044e.\n\n\u0421\u043e\u0433\u043b\u0430\u0441\u043d\u043e \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044f\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0434\u043b\u044f\u00a0iOS\u00a0\u0438\u00a0macOS \u0441 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435\u043c CVE-2023-37450, Apple \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u044d\u0442\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c. \n\n\u041a\u0430\u043a \u0438 \u0432 \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u0435 \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0445 \u0441\u043b\u0443\u0447\u0430\u0435\u0432, \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0435\u0439 \u043e \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440\u0435 \u0438 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u0430\u0445 \u0430\u0442\u0430\u043a, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043b\u0438\u0447\u043d\u043e\u0441\u0442\u0438 \u0441\u0442\u043e\u044f\u0449\u0435\u0433\u043e \u0437\u0430 \u043d\u0438\u043c\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 \u043e\u0447\u0435\u043d\u044c \u043c\u0430\u043b\u043e.\n\n\u041f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c iPhone \u0437\u0430\u044f\u0432\u0438\u043b, \u0447\u0442\u043e \u0440\u0435\u0448\u0438\u043b \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0443\u043b\u0443\u0447\u0448\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a.\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f iOS 16.5.1 (a), iPadOS 16.5.1 (a), macOS Ventura 13.4.1 (a) \u0438 Safari 16.5.2 \u0431\u044b\u043b\u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0441\u043e \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u043c\u0438 \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b: iOS 16.5.1 \u0438 iPadOS 16.5.1, macOS \u0412\u0435\u043d\u0442\u0443\u0440\u0430 13.4.1 \u0438 macOS Big Sur \u0438 macOS Monterey.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u043f\u043e\u0437\u0436\u0435 Apple\u00a0\u0443\u0434\u0430\u043b\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u041f\u041e \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a\u00a0\u0438\u0445 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043f\u0440\u0438\u0432\u0435\u043b\u0430 \u043a \u0442\u043e\u043c\u0443, \u0447\u0442\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0432\u0435\u0431-\u0441\u0430\u0439\u0442\u044b, \u0442\u0430\u043a\u0438\u0435 \u043a\u0430\u043a Facebook, Instagram \u0438 Zoom, \u0432\u044b\u0434\u0430\u0432\u0430\u043b\u0438 \u043e\u0448\u0438\u0431\u043a\u0443 \u00ab\u043d\u0435\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u043c\u044b\u0439 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u00bb \u0432 Safari.\n\n\u041e\u0436\u0438\u0434\u0430\u0435\u043c, \u0447\u0442\u043e Apple, \u0441\u043a\u043e\u0440\u0435\u0435 \u0432\u0441\u0435\u0433\u043e, \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u0442 RSR, \u043a\u043e\u0433\u0434\u0430 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0441\u043c\u043e\u0433\u0443\u0442 \u0440\u0435\u0448\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443.\n\n\u0410 \u0438\u0445 \u043a\u043e\u043b\u043b\u0435\u0433\u0438 \u0438\u0437 \u0420\u0435\u043c\u043e\u043d\u0434\u0430 \u043e\u0431\u044b\u0447\u043d\u043e \u043f\u043e \u044d\u0442\u043e\u043c\u0443 \u043f\u043e\u0432\u043e\u0434\u0443 \u043d\u0435 \u0437\u0430\u043c\u043e\u0440\u0430\u0447\u0438\u0432\u0430\u044e\u0442\u0441\u044f, \u0437\u0430 \u043d\u0438\u0445 \u043c\u0438\u043a\u0440\u043e\u043f\u0430\u0442\u0447\u0438 \u043a\u043b\u0435\u043f\u0430\u044e\u0442 \u0441\u0442\u043e\u0440\u043e\u043d\u043d\u0438\u0435 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0438.\n\n\u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c. (Secator)", "creation_timestamp": "2023-07-11T19:55:00.000000Z"}, {"uuid": "b867877a-2c94-4321-831e-a6995d9e15b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/alexmakus/5060", "content": "\u044d\u043c\u0435\u0440\u0434\u0436\u0435\u043d\u0441\u0438! \u044d\u043a\u0442\u0438\u0432\u043b\u0438 \u044d\u043a\u0441\u043b\u043e\u0439\u0442\u0435\u0434! \u0438 \u0432\u043e\u0442 \u044d\u0442\u043e \u0432\u0441\u0435 \u2014\u00a0\u0432 \u043d\u043e\u0432\u043e\u043c \u044d\u043f\u0438\u0437\u043e\u0434\u0435 \u0441\u0435\u0440\u0438\u0430\u043b\u0430 \u201c\u042d\u043f\u043e\u043b \u0432\u044b\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u0441\u0440\u043e\u0447\u043d\u044b\u0439 \u0430\u043f\u0434\u0435\u0439\u0442 \u0434\u043b\u044f iOS/macOS\u201d\n\nImpact: Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\nDescription: The issue was addressed with improved checks.\nCVE-2023-37450: an anonymous researcher\n\nhttps://support.apple.com/en-us/HT213823\nhttps://support.apple.com/en-us/HT213825\n\n\u0410\u041f\u0414 \u0415\u0441\u043b\u0438 \u0432\u044b \u0443\u0441\u043f\u0435\u043b\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u0438\u0442\u044c \u0430\u043f\u0434\u0435\u0439\u0442, \u0438 \u0443 \u0432\u0430\u0441 \u0441\u043b\u043e\u043c\u0430\u043b\u0441\u044f \u0431\u0440\u0430\u0443\u0437\u0435\u0440, \u0442\u043e \u0432\u0430\u043c \u0441\u044e\u0434\u0430\nhttps://support.apple.com/en-us/HT213827", "creation_timestamp": "2023-07-11T16:04:34.000000Z"}, {"uuid": "3788035f-a13f-42bf-ab47-59123938a8f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/kasperskyb2b/741", "content": "\ud83c\udf4f\ud83c\udf4f \u00ab\u0411\u044b\u0441\u0442\u0440\u044b\u0439 \u0430\u043f\u0434\u0435\u0439\u0442\u00bb \u0437\u0430\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u043d\u043e\u0432\u044b\u0439 \u0437\u0438\u0440\u043e\u0434\u0435\u0439 \u0432 iOS \u0438 macOS\n\nApple \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u043b\u0430 \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u043d\u0443\u044e \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u044e Rapid Security Response (RSR), \u0447\u0442\u043e\u0431\u044b \u0437\u0430\u043a\u0440\u044b\u0442\u044c CVE-2023-37450, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 WebKit, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0443\u044e \u043a RCE \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0443\u044e iOS \u0438 macOS, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0441\u0432\u0435\u0436\u0438\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 16.5.1 \u0438 13.4.1. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c\u0438, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c Apple \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e. \n\u0422\u0435, \u043a\u0442\u043e \u043d\u0435 \u0432\u043a\u043b\u044e\u0447\u0438\u043b RSR, \u043f\u043e\u043b\u0443\u0447\u0430\u0442 \u0437\u0430\u043f\u043b\u0430\u0442\u043a\u0443 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0433\u043e \u0431\u043e\u043b\u0435\u0435 \u043a\u0440\u0443\u043f\u043d\u043e\u0433\u043e \u043f\u0430\u043a\u0435\u0442\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439, \u043a\u043e\u0433\u0434\u0430 Apple \u0435\u0433\u043e \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u0442.\n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2023-07-11T08:46:13.000000Z"}, {"uuid": "3fc9c109-d191-4986-b85d-32023e4ff4ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/kasperskyb2b/767", "content": "\ud83e\ude79\ud83e\ude79\ud83e\ude79 \u0426\u0435\u043b\u044b\u0439 \u0431\u0443\u043a\u0435\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0442\u0440\u0435\u0431\u0443\u044e\u0449\u0438\u0445 \u0441\u0440\u043e\u0447\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\niOS \u0438 MacOS:  \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0432\u0448\u0438\u0435\u0441\u044f CVE-2023-37450 \u0438 CVE-2023-38606 \u0432 iOS/iPadOS. \u0412\u0442\u043e\u0440\u0430\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 #iOSTriangulation. \u0412\u0441\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0437\u0430\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u043f\u043e\u0447\u0442\u0438 25 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439.\n\nConfluence \u0438 Bamboo \u043e\u0442 Atlassian: \u0442\u0440\u0438 RCE (CVE-2023-22505, -22508 \u0438 -22506, CVSS 7.5-8.5). \u0410\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u0434\u043e\u043b\u0436\u0435\u043d \u0431\u044b\u0442\u044c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d. \u041f\u0435\u0440\u0432\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u0430 \u0434\u043b\u044f Confluence Data Center \u0438 Confluence Server \u043b\u0438\u043d\u0435\u0439\u043a\u0438 8, \u0432\u0442\u043e\u0440\u0430\u044f - \u0434\u043b\u044f \u0432\u0435\u0440\u0441\u0438\u0439 7 \u0438 8, \u0430 \u0442\u0440\u0435\u0442\u044c\u044f \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0441\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043a Bamboo. \n\n\u0414\u043b\u044f \u0442\u0435\u0445, \u043a\u0442\u043e \u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f EMM-\u0440\u0435\u0448\u0435\u043d\u0438\u0435\u043c Ivanti (\u0432 \u0434\u0435\u0432\u0438\u0447\u0435\u0441\u0442\u0432\u0435 MobileIron Core), \u0432 \u0432\u043e\u0441\u043a\u0440\u0435\u0441\u0435\u043d\u044c\u0435 \u0432\u044b\u0448\u043b\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435, \u0437\u0430\u043a\u0440\u044b\u0432\u0430\u044e\u0449\u0435\u0435 \u043e\u043f\u0430\u0441\u043d\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2023-35078. \u041e\u043d\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u043f\u043e\u043b\u0443\u0447\u0430\u0442\u044c \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u044b (\u0438\u043c\u0435\u043d\u0430, \u043d\u043e\u043c\u0435\u0440\u0430 \u0442\u0435\u043b\u0435\u0444\u043e\u043d\u043e\u0432 \u0438 \u0442.\u043f.). \u0438\u0445 \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0432\u043d\u043e\u0441\u0438\u0442\u044c \u0432 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f. \u0411\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d \u0442\u043e\u043b\u044c\u043a\u043e \u0437\u0430\u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c, \u043d\u043e \u0443\u0436\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u0433\u043e\u0441\u043e\u0440\u0433\u0430\u043d\u044b \u041d\u043e\u0440\u0432\u0435\u0433\u0438\u0438.   \n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2023-07-25T13:31:40.000000Z"}, {"uuid": "2a987f80-66cf-454a-96d0-65f36122c10d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/ctinow/122970", "content": "https://ift.tt/gPAu1pv\nApple pushes out emergency fix for actively exploited zero-day (CVE-2023-37450)", "creation_timestamp": "2023-07-11T12:01:43.000000Z"}, {"uuid": "6d42b355-e111-483a-bb87-4a8028930b8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "Telegram/8juaKjZLU7Sp079kllTVjRIHm69LTso2K05NudTCKo4UwbU", "content": "", "creation_timestamp": "2023-07-11T06:19:07.000000Z"}, {"uuid": "a36e4aa9-fd26-49e3-80d6-6c89d8b4cf8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/arpsyndicate/1058", "content": "#ExploitObserverAlert\n\nCVE-2023-37450\n\nDESCRIPTION: Exploit Observer has 8 entries related to CVE-2023-37450. The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, Safari 16.5.2, tvOS 16.6, macOS Ventura 13.5, watchOS 9.6. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\n\nFIRST-EPSS: 0.001020000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2023-12-03T23:34:30.000000Z"}, {"uuid": "03757dff-bb5a-4339-a566-ce2427408221", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "Telegram/bC0hrRIlS9zITjW1uAm7LJZkXgg3QBEnRW73auM_V1_zTw", "content": "", "creation_timestamp": "2023-07-11T08:18:27.000000Z"}, {"uuid": "8fc90f37-06ff-4356-99be-b84549443dc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/KomunitiSiber/469", "content": "Apple Issues Urgent Patch for Zero-Day Flaw Targeting iOS, iPadOS, macOS, and Safari\nhttps://thehackernews.com/2023/07/apple-issues-urgent-patch-for-zero-day.html\n\nApple has released\u00a0Rapid Security Response\u00a0updates for iOS, iPadOS, macOS, and Safari web browser to\u00a0address\u00a0a zero-day flaw that it said has been actively exploited in the wild.\nThe WebKit bug, cataloged as\u00a0CVE-2023-37450, could allow threat actors to achieve arbitrary code execution when processing specially crafted web content. The iPhone maker said it addressed the issue with improved checks", "creation_timestamp": "2023-07-11T07:29:37.000000Z"}, {"uuid": "050683df-2973-48c9-887d-b50f0c7dffcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37456", "type": "published-proof-of-concept", "source": "Telegram/s35AMqhqtadEqpjRxkI5cW3sPSrTin72JMblREttZD-iDXg", "content": "", "creation_timestamp": "2025-03-06T10:00:05.000000Z"}, {"uuid": "aeec597d-80ba-4dd7-8c9a-9cee43cd7e78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/rrv_ru/169", "content": "\ud83e\udd37\ud83c\udffc\u200d\u2642\ufe0fCVE-2023-37450(Safari(Webkit) 0-day, may have been actively exploited(ITW)) maybe fixed in commit 4f99c06 \"Cherry-pick 259548.856@safari-7615-branch (c3d2e3627b45). https://bugs.webkit.org/show_bug.cgi?id=259231\" in WebKitGTK 2.40.4 and WPE WebKit 2.40.4.\nCallVarargs should identify that it can read inline call frame arguments.\n\nWhat's new in WebKitGTK 2.40.4?\n\ud83d\udcbeFix a bug in JavaScript reading variable arguments in a call.\n\n\ud83d\udee1WebKitGTK and WPE WebKit Security Advisory WSA-2023-0006", "creation_timestamp": "2023-07-24T18:04:49.000000Z"}, {"uuid": "84c4c9d1-8060-49b8-a0e5-cb7dfbc02d3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "https://t.me/JerusalemElectronicArmy/490", "content": "#\u0623\u062e\u0628\u0627\u0631_\u0627\u0644\u0633\u0627\u064a\u0628\u0631\n\n\u062a\u0637\u0644\u0642 Apple \u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0623\u0645\u0646\u064a\u0629 \u0644\u0645\u0639\u0627\u0644\u062c\u0629 \u062b\u063a\u0631\u062a\u064a\u0646 \u063a\u064a\u0631 \u0645\u0639\u0631\u0641\u0629\u060c \u062a\u0645 \u0627\u0633\u062a\u063a\u0644\u0627\u0644\u0647\u0627 \u0641\u064a \u0647\u062c\u0645\u0627\u062a \u062a\u0633\u062a\u0647\u062f\u0641 \u0623\u062c\u0647\u0632\u0629 iPhone \u0648 Mac \u0648 iPad: \n- \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u0623\u0648\u0644\u0649 \u0647\u064a WebKit (CVE-2023-37450).\n- \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u062b\u0627\u0646\u064a\u0629 \u0647\u064a Kernel (CVE-2023-38606).\n#\u062c\u064a\u0634_\u0627\u0644\u0642\u062f\u0633_\u0627\u0644\u0625\u0644\u0643\u062a\u0631\u0648\u0646\u064a", "creation_timestamp": "2023-07-25T09:40:50.000000Z"}, {"uuid": "d2573847-bdf0-4973-a773-552abd4c0590", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/JerusalemElectronicArmy/465", "content": "#\u0623\u062e\u0628\u0627\u0631_\u0627\u0644\u0633\u0627\u064a\u0628\u0631 \n\n\u0623\u0635\u062f\u0631\u062a Apple \u0644\u0644\u062a\u0648 \u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0645\u0647\u0645\u0629 \u0644\u062a\u0635\u062d\u064a\u062d \u0639\u064a\u0628 zero-day \u0627\u0644\u0630\u064a \u0623\u0639\u0637\u064a \u0627\u0633\u0645 (CVE-2023-37450) \u0627\u0644\u0630\u064a \u062a\u0645 \u0627\u0633\u062a\u063a\u0644\u0627\u0644\u0647 \u0628\u0641\u0639\u0627\u0644\u064a\u0629.\n\u0627\u0644\u062a\u062d\u062f\u064a\u062b \u0625\u0644\u0649 iOS 16.5.1 (a) \u0648 iPadOS 16.5.1 (a) \u0648 macOS Ventura 13.4.1 (a) \u0648 Safari 16.5.2.\n#\u062c\u064a\u0634_\u0627\u0644\u0642\u062f\u0633_\u0627\u0644\u0625\u0644\u0643\u062a\u0631\u0648\u0646\u064a", "creation_timestamp": "2023-07-11T09:22:35.000000Z"}, {"uuid": "b392e34d-7916-4b16-bf3b-441dd03c1dff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "seen", "source": "Telegram/jmHU4ENIr0BG4JbxWLCLQnbSHghmSRmLdBPaBFd79mj40lU", "content": "", "creation_timestamp": "2023-07-12T15:08:16.000000Z"}, {"uuid": "610bc857-3116-4cfe-b3ad-c4c19b9edf65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/true_secator/4653", "content": "Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c iOS, macOS \u0438 iPadOS, \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0432 \u043d\u043e\u0432\u0443\u044e 0-day, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u0410\u0420\u0422.\n\n\u042d\u0442\u043e \u043a\u0430\u043a \u0440\u0430\u0437 \u043e\u0434\u043d\u0430 \u0438\u0437 \u0434\u044b\u0440 \u0432 \u044f\u0434\u0440\u0435 iOS \u0438 macOS, \u043e \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0441\u0442\u0430\u043b\u043e \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u044f \u0440\u0435\u0441\u0435\u0440\u0447\u0435\u0440\u0430\u043c \u0438\u0437 \u041b\u0430\u0431\u043e\u0440\u0430\u0442\u043e\u0440\u0438\u0438 \u041a\u0430\u0441\u043f\u0435\u0440\u0441\u043a\u043e\u0433\u043e \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f Operation Triangulation.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Apple, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u044f\u0434\u0440\u0430 (CVE-2023-38606) \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u043d\u0430 \u0431\u0430\u0437\u0435 iOS, iPadOS \u0438 macOS \u0438 \u0443\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0430\u0442\u0430\u043a\u0430\u0445, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0441 \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u043c\u0438 \u0434\u043e iOS 15.7.1.\n\n\u041f\u043e \u0441\u043b\u043e\u0432\u0430\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 Kaspersky GReAT, CVE-2023-38606 \u044f\u0432\u043b\u044f\u043b\u0430\u0441\u044c \u0447\u0430\u0441\u0442\u044c\u044e \u0446\u0435\u043f\u043e\u0447\u043a\u0438 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0449\u0435\u043b\u0447\u043a\u043e\u043c, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439\u00a0\u00a0\u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0448\u043f\u0438\u043e\u043d\u0441\u043a\u043e\u0433\u043e \u041f\u041e Triangulation \u043d\u0430 iPhone \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 iMessage.\n\n\u041f\u0440\u0435\u0434\u044b\u0434\u0443\u0449\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c WebKit, \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u043c\u0430\u044f \u043a\u0430\u043a CVE-2023-37450, \u0431\u044b\u043b\u0430 \u0440\u0430\u043d\u0435\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u0432 Rapid Security Response (RSR).\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0430 \u043d\u0435\u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0434\u043b\u044f \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u0432\u0430\u0436\u043d\u044b\u0445 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0439 \u044f\u0434\u0440\u0430.\u00a0Apple \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0438\u0445, \u0443\u043b\u0443\u0447\u0448\u0438\u0432 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435\u043c.\n\n\u0412 \u0446\u0435\u043b\u043e\u043c Apple \u043f\u043e\u0444\u0438\u043a\u0441\u0438\u043b\u0430 \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 25 \u0437\u0430\u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043e\u0448\u0438\u0431\u043e\u043a \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 iPhone \u0438 iPad, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u0430\u044e\u0442 \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u044b\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 RCE-\u0430\u0442\u0430\u043a\u0430\u043c. \u041d\u0435 \u043e\u0431\u043e\u0448\u043b\u0430 \u0441\u0442\u043e\u0440\u043e\u043d\u043e\u0439 CVE-2023-32409 \u0432 tvOS 16.6 \u0438 watchOS 9.6.\n\nApple \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u043a\u0440\u044b\u043b\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0435 Safari (Safari 16.6), \u0430 \u0442\u0430\u043a\u0436\u0435 \u0431\u043e\u043b\u0435\u0435 \u0441\u0442\u0430\u0440\u044b\u0445 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 iPhone \u0438 iPad (iOS 15.7.8 \u0438 iPadOS 15.7.8) \u0438 macOS\u00a0Ventura 13.5.\n\n\u041f\u043e \u0438\u0442\u043e\u0433\u0443, \u0441 \u043d\u0430\u0447\u0430\u043b\u0430 \u0433\u043e\u0434\u0430 Apple \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0443\u0436\u0435 11 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 0-day, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u0434\u043b\u044f \u0430\u0442\u0430\u043a \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u043f\u043e\u0434 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c iOS, macOS \u0438 iPadOS.", "creation_timestamp": "2023-07-25T13:30:05.000000Z"}, {"uuid": "1c9a2da6-783b-49b5-a8fd-3d1b0c1fdd04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/true_secator/4600", "content": "Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043d\u043e\u0432\u044b\u0439 Rapid Security Respons (\u043d\u043e \u043d\u0435 \u043d\u0430\u0434\u043e\u043b\u0433\u043e) \u0434\u043b\u044f iOS, iPadOS, macOS \u0438 \u0432\u0435\u0431-\u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 Safari, \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043d\u043e\u0432\u043e\u0439 0-day (\u0443\u0436\u0435 \u0434\u0435\u0441\u044f\u0442\u043e\u0439 \u0432 \u044d\u0442\u043e\u043c \u0433\u043e\u0434\u0443), \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0435\u0439 \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 iPhone, Mac \u0438 iPad.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 WebKit, \u043e\u0442\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u043c\u0430\u044f  \u043a\u0430\u043a\u00a0CVE-2023-37450, \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0433\u043e \u0432\u0435\u0431-\u043a\u043e\u043d\u0442\u0435\u043d\u0442\u0430.\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0438 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0435 \u043e\u0431 \u043e\u0448\u0438\u0431\u043a\u0435 \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442 \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u043e\u043c\u0443 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044e.\n\n\u0421\u043e\u0433\u043b\u0430\u0441\u043d\u043e \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044f\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0434\u043b\u044f\u00a0iOS\u00a0\u0438\u00a0macOS \u0441 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435\u043c CVE-2023-37450, Apple \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u044d\u0442\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c. \n\n\u041a\u0430\u043a \u0438 \u0432 \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u0435 \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0445 \u0441\u043b\u0443\u0447\u0430\u0435\u0432, \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0435\u0439 \u043e \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440\u0435 \u0438 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u0430\u0445 \u0430\u0442\u0430\u043a, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043b\u0438\u0447\u043d\u043e\u0441\u0442\u0438 \u0441\u0442\u043e\u044f\u0449\u0435\u0433\u043e \u0437\u0430 \u043d\u0438\u043c\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 \u043e\u0447\u0435\u043d\u044c \u043c\u0430\u043b\u043e.\n\n\u041f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c iPhone \u0437\u0430\u044f\u0432\u0438\u043b, \u0447\u0442\u043e \u0440\u0435\u0448\u0438\u043b \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0443\u043b\u0443\u0447\u0448\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a.\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f iOS 16.5.1 (a), iPadOS 16.5.1 (a), macOS Ventura 13.4.1 (a) \u0438 Safari 16.5.2 \u0431\u044b\u043b\u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0441\u043e \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u043c\u0438 \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b: iOS 16.5.1 \u0438 iPadOS 16.5.1, macOS \u0412\u0435\u043d\u0442\u0443\u0440\u0430 13.4.1 \u0438 macOS Big Sur \u0438 macOS Monterey.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u043f\u043e\u0437\u0436\u0435 Apple\u00a0\u0443\u0434\u0430\u043b\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u041f\u041e \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a\u00a0\u0438\u0445 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043f\u0440\u0438\u0432\u0435\u043b\u0430 \u043a \u0442\u043e\u043c\u0443, \u0447\u0442\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0432\u0435\u0431-\u0441\u0430\u0439\u0442\u044b, \u0442\u0430\u043a\u0438\u0435 \u043a\u0430\u043a Facebook, Instagram \u0438 Zoom, \u0432\u044b\u0434\u0430\u0432\u0430\u043b\u0438 \u043e\u0448\u0438\u0431\u043a\u0443 \u00ab\u043d\u0435\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u043c\u044b\u0439 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u00bb \u0432 Safari.\n\n\u041e\u0436\u0438\u0434\u0430\u0435\u043c, \u0447\u0442\u043e Apple, \u0441\u043a\u043e\u0440\u0435\u0435 \u0432\u0441\u0435\u0433\u043e, \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u0442 RSR, \u043a\u043e\u0433\u0434\u0430 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0441\u043c\u043e\u0433\u0443\u0442 \u0440\u0435\u0448\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443.\n\n\u0410 \u0438\u0445 \u043a\u043e\u043b\u043b\u0435\u0433\u0438 \u0438\u0437 \u0420\u0435\u043c\u043e\u043d\u0434\u0430 \u043e\u0431\u044b\u0447\u043d\u043e \u043f\u043e \u044d\u0442\u043e\u043c\u0443 \u043f\u043e\u0432\u043e\u0434\u0443 \u043d\u0435 \u0437\u0430\u043c\u043e\u0440\u0430\u0447\u0438\u0432\u0430\u044e\u0442\u0441\u044f, \u0437\u0430 \u043d\u0438\u0445 \u043c\u0438\u043a\u0440\u043e\u043f\u0430\u0442\u0447\u0438 \u043a\u043b\u0435\u043f\u0430\u044e\u0442 \u0441\u0442\u043e\u0440\u043e\u043d\u043d\u0438\u0435 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0438.\n\n\u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2023-07-11T12:25:43.000000Z"}, {"uuid": "014e0461-c58b-4f69-ba83-ee34f2812841", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37459", "type": "published-proof-of-concept", "source": "https://t.me/cibsecurity/70620", "content": "\u203c CVE-2023-37459 \u203c\n\nContiki-NG is an operating system for internet-of-things devices. In versions 4.9 and prior, when a packet is received, the Contiki-NG network stack attempts to start the periodic TCP timer if it is a TCP packet with the SYN flag set. But the implementation does not first verify that a full TCP header has been received. Specifically, the implementation attempts to access the flags field from the TCP buffer in the following conditional expression in the `check_for_tcp_syn` function. For this reason, an attacker can inject a truncated TCP packet, which will lead to an out-of-bound read from the packet buffer. As of time of publication, a patched version is not available. As a workaround, one can apply the changes in Contiki-NG pull request #2510 to patch the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-16T00:25:55.000000Z"}, {"uuid": "f7ac1bd8-be57-48de-abfe-21a239fa6bb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37454", "type": "seen", "source": "https://t.me/cibsecurity/66137", "content": "\u203c CVE-2023-37454 \u203c\n\nAn issue was discovered in the Linux kernel through 6.4.2. A crafted UDF filesystem image causes a use-after-free write operation in the udf_put_super and udf_close_lvid functions in fs/udf/super.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-06T20:20:26.000000Z"}, {"uuid": "9bf3108e-b1cc-436b-8116-8efee5b013bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37453", "type": "seen", "source": "https://t.me/cibsecurity/66144", "content": "\u203c CVE-2023-37453 \u203c\n\nAn issue was discovered in the USB subsystem in the Linux kernel through 6.4.2. There is an out-of-bounds and crash in read_descriptors in drivers/usb/core/sysfs.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-06T20:20:33.000000Z"}, {"uuid": "0aa5336e-a402-4513-80fb-7672c6e0474f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3745", "type": "seen", "source": "https://t.me/cibsecurity/67162", "content": "\u203c CVE-2023-3745 \u203c\n\nA heap-based buffer overflow issue was found in ImageMagick's PushCharPixel() function in quantum-private.h. This issue may allow a local attacker to trick the user into opening a specially crafted file, triggering an out-of-bounds read error and allowing an application to crash, resulting in a denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-24T20:26:18.000000Z"}, {"uuid": "42547e24-5353-468e-a4f4-7522cac65b73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37456", "type": "seen", "source": "https://t.me/cibsecurity/66563", "content": "\u203c CVE-2023-37456 \u203c\n\nThe session restore helper crashed whenever there was no parameter sent to the message handler. This vulnerability affects Firefox for iOS &lt; 115.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-12T18:20:59.000000Z"}, {"uuid": "f06430e3-72d9-402a-9518-833a47ad0d1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37455", "type": "seen", "source": "https://t.me/cibsecurity/66557", "content": "\u203c CVE-2023-37455 \u203c\n\nThe permission request prompt from the site in the background tab was overlaid on top of the site in the foreground tab. This vulnerability affects Firefox for iOS &lt; 115.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-12T18:21:45.000000Z"}, {"uuid": "a22bd4de-301b-41f1-a1ab-aa80e3420576", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "published-proof-of-concept", "source": "https://t.me/androidMalware/2242", "content": "iOS 16.5.1 safari RCE Analysis (CVE-2023\u201337450)\n[blog] https://medium.com/@enki-techblog/ios-16-5-1-safari-rce-analysis-cve-2023-37450-89bb8583bebc\n[slides] https://www.synacktiv.com/sites/default/files/2024-05/escaping_the_safari_sandbox_slides.pdf", "creation_timestamp": "2024-07-05T15:16:23.000000Z"}, {"uuid": "87cdf2bd-632f-4cc3-b1c1-93b348545fd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/thehackernews/3580", "content": "\u26a1 Apple just released critical updates to patch an actively exploited zero-day (CVE-2023-37450) flaw. \n \n\ud83d\udee1\ufe0f Update to iOS 16.5.1 (a), iPadOS 16.5.1 (a), macOS Ventura 13.4.1 (a), and Safari 16.5.2.  \n \nRead: https://thehackernews.com/2023/07/apple-issues-urgent-patch-for-zero-day.html", "creation_timestamp": "2023-07-11T06:11:54.000000Z"}, {"uuid": "50826813-d7fb-4c42-8150-899e08b0cafe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37450", "type": "exploited", "source": "https://t.me/xakep_ru/14332", "content": "Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0435 \u043f\u0430\u0442\u0447\u0438 \u0434\u043b\u044f 0-day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 WebKit\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Apple \u043e\u0431\u043d\u0430\u0440\u043e\u0434\u043e\u0432\u0430\u043b\u0438 RSR-\u043f\u0430\u0442\u0447\u0438, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0449\u0438\u0435 \u043d\u043e\u0432\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f (CVE-2023-37450), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0437\u0430\u0441\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 iPhone, Mac \u0438 iPad. \u0412 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0438, \u0447\u0442\u043e \u044d\u0442\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430, \u043f\u043e\u0445\u043e\u0436\u0435, \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c.\n\nhttps://xakep.ru/2023/07/11/0day-rsr/", "creation_timestamp": "2023-07-11T10:39:00.000000Z"}]}