{"vulnerability": "CVE-2025-2449", "sightings": [{"uuid": "10f9ce88-4efe-4394-b4be-c9a465e5b93a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24497", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhhmw5uvqf2k", "content": "", "creation_timestamp": "2025-02-05T22:33:52.239779Z"}, {"uuid": "afc676ec-d87f-4757-9378-5e100d9a92ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24497", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhh6lasuzu2e", "content": "", "creation_timestamp": "2025-02-05T18:17:13.274517Z"}, {"uuid": "b2841409-a49c-42e8-af3e-433e226fa0ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24497", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113952728654325312", "content": "", "creation_timestamp": "2025-02-05T18:37:30.422575Z"}, {"uuid": "3a601346-fb9f-47c7-87e2-06309b81c384", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24499", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113984941089748504", "content": "", "creation_timestamp": "2025-02-11T11:09:32.932490Z"}, {"uuid": "c18995b4-d980-46cd-ace3-4fca747b18a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24499", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhvjtvpzll2n", "content": "", "creation_timestamp": "2025-02-11T11:16:11.162023Z"}, {"uuid": "15a2889c-e390-470d-92ab-15a024f16e8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24499", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhvu4qzr4a2i", "content": "", "creation_timestamp": "2025-02-11T14:20:14.470972Z"}, {"uuid": "e61f62e5-dc74-45e4-be57-3d1731d056ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lixkmkfuem2f", "content": "", "creation_timestamp": "2025-02-25T00:00:29.633335Z"}, {"uuid": "bbb3bb79-de99-4c90-b3bf-183bd1d07b57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lixz7mnfs22v", "content": "", "creation_timestamp": "2025-02-25T04:21:45.308620Z"}, {"uuid": "f44b6ed9-3ead-4e42-b588-7e3f2bdd6737", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3liy4m7iy2x2q", "content": "", "creation_timestamp": "2025-02-25T05:22:25.289082Z"}, {"uuid": "ba18ca5f-e09b-424f-befe-6909cee3adb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2449", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-146/", "content": "", "creation_timestamp": "2025-03-17T04:00:00.000000Z"}, {"uuid": "4555a8f0-a019-4094-9d68-a39fb846d846", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3liyf74ku3c2i", "content": "", "creation_timestamp": "2025-02-25T07:56:11.981126Z"}, {"uuid": "82d795ba-8594-41ef-9d1c-bfb6df6ec8de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24499", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-09", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "0db94c4d-f46a-44e2-b294-d2d3e4b14fd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24494", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljts227odc2i", "content": "", "creation_timestamp": "2025-03-08T05:27:53.086404Z"}, {"uuid": "17c236e0-e7cd-41e3-9c32-2e24606fa681", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3liysti7igx2z", "content": "", "creation_timestamp": "2025-02-25T12:00:12.282928Z"}, {"uuid": "a5faa799-a203-431c-be6a-92462abec268", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24494", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-063-02", "content": "", "creation_timestamp": "2025-03-04T11:00:00.000000Z"}, {"uuid": "95fac16d-7c2e-4712-afe2-82a9fb212a3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114058233176053982", "content": "", "creation_timestamp": "2025-02-24T09:48:41.808743Z"}, {"uuid": "68051665-e70e-4e92-9116-12197c104b6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114059530289800963", "content": "", "creation_timestamp": "2025-02-24T15:18:33.825184Z"}, {"uuid": "d0ab2855-e8c6-4abd-a21c-2730d8878488", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24493", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lr46yhxlcq2m", "content": "", "creation_timestamp": "2025-06-08T15:37:16.264692Z"}, {"uuid": "63086db6-db1e-4477-8f82-3e9419dbb3fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24496", "type": "seen", "source": "https://infosec.place/objects/7f76f0ad-6a17-4880-ae91-b0fc7951f578", "content": "", "creation_timestamp": "2025-08-20T13:30:22.570481Z"}, {"uuid": "5c342cf8-43d2-46d0-988b-481bcef4c713", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24497", "type": "seen", "source": "https://t.me/cvedetector/17321", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24497 - F5 BIG-IP URL Filtering Unintended Request Termination Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24497 \nPublished : Feb. 5, 2025, 6:15 p.m. | 1\u00a0hour, 56\u00a0minutes ago \nDescription : When URL categorization is configured on a virtual server, undisclosed requests can cause TMM to terminate.\u00a0 Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-05T21:39:53.000000Z"}, {"uuid": "a33cf52d-142c-41cd-9c22-f850a0ce8dfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "https://t.me/cvedetector/18786", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24490 - Mattermost SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24490 \nPublished : Feb. 24, 2025, 8:15 a.m. | 30\u00a0minutes ago \nDescription : Mattermost versions 10.4.x &lt;=&lt;=&lt;=&lt;=\nSeverity: 9.6 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-24T10:26:03.000000Z"}, {"uuid": "1508e05a-b37e-4121-b83b-8004abd6f69d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24499", "type": "seen", "source": "https://t.me/cvedetector/17693", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24499 - Siemens SCALANCE Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24499 \nPublished : Feb. 11, 2025, 11:15 a.m. | 52\u00a0minutes ago \nDescription : A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions &lt; V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions &lt; V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions &lt; V3.0.0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions &lt; V3.0.0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0) (All versions &lt; V3.0.0), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions &lt; V3.0.0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions &lt; V3.0.0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0) (All versions &lt; V3.0.0), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions &lt; V3.0.0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions &lt; V3.0.0), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions &lt; V3.0.0), SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0) (All versions &lt; V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions &lt; V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions &lt; V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions &lt; V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions &lt; V3.0.0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0) (All versions &lt; V3.0.0), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions &lt; V3.0.0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0) (All versions &lt; V3.0.0). Affected devices do not properly validate input while loading the configuration files. This could allow an authenticated remote attacker to execute arbitrary shell commands on the device. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T13:10:22.000000Z"}, {"uuid": "54025e63-8fbe-4cc0-8292-483f85ee15f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24494", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6549", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24494\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Path traversal may allow remote code execution using privileged account \n(requires device admin account, cannot be performed by a regular user). \nIn combination with the 'Upload' functionality this could be used to \nexecute an arbitrary script or possibly an uploaded binary. Remediation \nin Version 6.7.0, release date: 20-Oct-24.\n\ud83d\udccf Published: 2025-03-05T15:15:19.986Z\n\ud83d\udccf Modified: 2025-03-05T15:15:19.986Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/news-events/ics-advisories/icsa-25-063-02\n2. https://www.keysight.com/us/en/contact.html\n3. https://support.ixiacom.com/\n4. https://support.ixiacom.com/support-overview/product-support/downloads-updates", "creation_timestamp": "2025-03-05T15:32:55.000000Z"}, {"uuid": "e58ac33e-8a6e-4e73-9a0f-d3f4fe1d3aab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24495", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16257", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24495\n\ud83d\udd25 CVSS Score: 6.8 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N)\n\ud83d\udd39 Description: Incorrect initialization of resource in the branch prediction unit for some Intel(R) Core\u2122 Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access.\n\ud83d\udccf Published: 2025-05-13T21:02:51.390Z\n\ud83d\udccf Modified: 2025-05-13T21:02:51.390Z\n\ud83d\udd17 References:\n1. https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01322.html", "creation_timestamp": "2025-05-13T21:31:24.000000Z"}, {"uuid": "f6900c33-22a7-4bb8-9309-8e80d27b7dfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24494", "type": "seen", "source": "https://t.me/cvedetector/19642", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24494 - Android Device Admin Path Traversal Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2025-24494 \nPublished : March 5, 2025, 4:15 p.m. | 1\u00a0hour, 3\u00a0minutes ago \nDescription : Path traversal may allow remote code execution using privileged account   \n(requires device admin account, cannot be performed by a regular user).   \nIn combination with the 'Upload' functionality this could be used to   \nexecute an arbitrary script or possibly an uploaded binary. Remediation   \nin Version 6.7.0, release date: 20-Oct-24. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-05T18:37:04.000000Z"}, {"uuid": "a5b3c63d-d492-4222-b002-59884b3c314b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24499", "type": "seen", "source": "Telegram/-R7DPWRFZFRe6wuiqdIPAXrcDZz9bne6krKvLYq0S2GRcFU", "content": "", "creation_timestamp": "2025-02-11T12:32:32.000000Z"}, {"uuid": "e49b80d2-66cc-4c2b-8609-53314226d897", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24490", "type": "seen", "source": "Telegram/Vvd5MA2nmu0duCxF3bbKYEKW__TKbzMFIp2pUAfan9WmCtw", "content": "", "creation_timestamp": "2025-02-24T09:30:39.000000Z"}, {"uuid": "0315fb27-1c9e-4415-8928-66cf3ee410db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24495", "type": "seen", "source": "https://t.me/true_secator/7036", "content": "Intel, AMD \u0438 Arm \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b\u0438 \u0441\u0432\u043e\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 Patch Tuesday, \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u0443\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u0445 \u0432 \u0438\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u0441 \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u043c\u0438 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 \u043d\u0430 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u044b.\n\n\u041e\u0434\u043d\u0430 \u0438\u0437 \u0442\u0430\u043a\u0438\u0445 \u0431\u044b\u043b\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 \u043d\u0430 \u043d\u0435\u0434\u0435\u043b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0448\u0432\u0435\u0439\u0446\u0430\u0440\u0441\u043a\u043e\u0433\u043e \u0443\u043d\u0438\u0432\u0435\u0440\u0441\u0438\u0442\u0435\u0442\u0430 ETH Zurich, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0438\u043c\u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432\u0435\u0442\u0432\u043b\u0435\u043d\u0438\u044f (CVE-2024-45332), \u043a\u043e\u0442\u043e\u0440\u0430\u044f, \u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442 \u0432\u0441\u044e \u043c\u043e\u0449\u044c \u0430\u0442\u0430\u043a \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u0432\u0435\u0442\u0432\u043b\u0435\u043d\u0438\u044f \u0446\u0435\u043b\u0438 (Spectre-BTI) \u043d\u0430 Intel.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e, \u0445\u043e\u0442\u044f \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0437\u0430\u0449\u0438\u0442\u044b\u00a0Spectre-BTI\u00a0(\u0442\u0430\u043a\u0436\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u043a\u0430\u043a Spectre v2) \u043e\u0442 Intel \u0440\u0430\u0431\u043e\u0442\u0430\u043b\u0438 \u043f\u043e\u0447\u0442\u0438 \u0448\u0435\u0441\u0442\u044c \u043b\u0435\u0442, \u0442\u0435\u043f\u0435\u0440\u044c \u0438\u043c \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043d\u0430\u0439\u0442\u0438 \u0441\u043f\u043e\u0441\u043e\u0431 \u0438\u0445 \u043e\u0431\u0445\u043e\u0434\u0430 \u0438\u0445 \u0438\u0437-\u0437\u0430 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044f \u0433\u043e\u043d\u043a\u0438, \u0432\u043b\u0438\u044f\u044e\u0449\u0435\u0433\u043e \u043d\u0430 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u044b Intel.\n\n\u0410\u0442\u0430\u043a\u0438 \u0442\u0438\u043f\u0430 Spectre \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443, \u0438\u043c\u0435\u044e\u0449\u0435\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0446\u0435\u043d\u043d\u0443\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u0438\u0437 \u043f\u0430\u043c\u044f\u0442\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043a\u043b\u044e\u0447\u0438 \u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u043f\u0430\u0440\u043e\u043b\u0438.\n\n\u0412 \u0441\u0432\u043e\u0435\u043c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435\u00a0Intel \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0430, \u0447\u0442\u043e \u0432\u044b\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043c\u0438\u043a\u0440\u043e\u043a\u043e\u0434\u0430 \u0434\u043b\u044f \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2024-45332, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043e\u043d\u0430 \u043e\u0442\u043d\u0435\u0441\u043b\u0430 \u043a \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438.\n\nAMD \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e, \u043a\u0430\u043a \u0437\u0430\u044f\u0432\u0438\u043b\u0438 \u0441\u0430\u043c\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438, \u044d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0435 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0435\u0435 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u044b.\n\n\u0415\u0449\u0435 \u043e\u0434\u043d\u0430 \u0430\u0442\u0430\u043a\u0430 \u043d\u0430 \u0426\u041f \u0431\u044b\u043b\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 \u043d\u0430 \u044d\u0442\u043e\u0439 \u0436\u0435 \u043d\u0435\u0434\u0435\u043b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438\u0437 \u0433\u043e\u043b\u043b\u0430\u043d\u0434\u0441\u043a\u043e\u0433\u043e \u0443\u043d\u0438\u0432\u0435\u0440\u0441\u0438\u0442\u0435\u0442\u0430 VU Amsterdam, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0430\u0437\u0432\u0430\u043b\u0438 \u0435\u0435 Training Solo, \u043e\u0442\u043a\u0440\u044b\u0432 \u0442\u0440\u0438 \u043d\u043e\u0432\u044b\u0445 \u043a\u043b\u0430\u0441\u0441\u0430 \u0441\u0430\u043c\u043e\u043e\u0431\u0443\u0447\u0430\u044e\u0449\u0438\u0445\u0441\u044f \u0430\u0442\u0430\u043a Spectre v2, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0434\u0447\u0435\u0440\u043a\u0438\u0432\u0430\u044e\u0442 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0438\u0437\u043e\u043b\u044f\u0446\u0438\u0438 \u0434\u043e\u043c\u0435\u043d\u0430.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043b\u0438 \u0434\u0432\u0430 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u044b Intel, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0442 \u043a \u0443\u0442\u0435\u0447\u043a\u0435 \u043f\u0430\u043c\u044f\u0442\u0438 \u044f\u0434\u0440\u0430 \u0441\u043e \u0441\u043a\u043e\u0440\u043e\u0441\u0442\u044c\u044e \u0434\u043e 17 \u041a\u0431\u0438\u0442/\u0441, \u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0434\u0432\u0435 \u043d\u043e\u0432\u044b\u0435 \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 (CVE-2024-28956\u00a0\u0438\u00a0CVE-2025-24495), \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043d\u0430\u0440\u0443\u0448\u0430\u044e\u0442 \u0438\u0437\u043e\u043b\u044f\u0446\u0438\u044e \u0434\u043e\u043c\u0435\u043d\u0430 \u0438 \u0432\u043d\u043e\u0432\u044c \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u043f\u0440\u043e\u0441\u0442\u043e\u0440 \u0434\u043b\u044f \u0442\u0440\u0430\u0434\u0438\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a Spectre-v2 \u00ab\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c-\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u00bb, \u00ab\u0433\u043e\u0441\u0442\u044c-\u0433\u043e\u0441\u0442\u044c\u00bb \u0438 \u0434\u0430\u0436\u0435 \u00ab\u0433\u043e\u0441\u0442\u044c-\u0445\u043e\u0441\u0442\u00bb.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Intel \u0437\u0430\u044f\u0432\u0438\u043b\u0430, \u0447\u0442\u043e \u0432\u044b\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043c\u0438\u043a\u0440\u043e\u043a\u043e\u0434\u0430 \u0438 \u043f\u0440\u0435\u0434\u043f\u0438\u0441\u0430\u043d\u0438\u044f \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u044d\u0442\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439.\u00a0\n\nAMD \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u043e \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0430 \u0432 \u0441\u0432\u043e\u0435\u0439 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438, \u0447\u0442\u043e \u0435\u0435 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u044b \u043d\u0435 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u044d\u0442\u043e\u0439 \u0430\u0442\u0430\u043a\u0435, \u0447\u0435\u0433\u043e \u043d\u0435 \u0441\u043a\u0430\u0436\u0435\u0448\u044c \u043f\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u044b Arm.\n\n\u041f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u0447\u0438\u043f\u043e\u0432 \u0441\u043e\u043e\u0431\u0449\u0438\u043b, \u0447\u0442\u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043d\u0435 \u043d\u043e\u0432\u0430\u044f, \u043d\u043e \u0442\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 \u0440\u0443\u043a\u043e\u0432\u043e\u0434\u0441\u0442\u0432\u043e \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432\u0441\u0435 \u0436\u0435 \u0431\u044b\u043b\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u043e, \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u0442\u043a\u043e \u043e\u0431\u043e\u0437\u043d\u0430\u0447\u0430\u044f \u0440\u0438\u0441\u043a\u0438.\n\n\u0412 \u0446\u0435\u043b\u043e\u043c, Intel \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430 25 \u043d\u043e\u0432\u044b\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439, \u043e\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u044e\u0449\u0438\u0445 \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u0432 \u0435\u0435 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445. \u00a0\n\n\u0423\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438, DoS \u0438\u043b\u0438 EoP \u0432 Tiber Edge Platform, Graphics and Graphics Driver, Server Board, PROSet/Wireless, Gaudi, Xeon, Ethernet Network Adapter, Slim Bootloader \u0438 Simics Package Manager.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441\u0440\u0435\u0434\u043d\u0435\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b \u0432 Intel RealSense, Ethernet Network Adapter, Ethernet Connections Boot Utility, oneAPI Level Zero, OpenVINO, Advisor, Endurance Gaming Mode, Arc GPU, Core \u0438 Xeon CPU, oneAPI DPC++/C++ Compiler \u0438 QuickAssist Technology.\n\nAMD\u00a0\u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b\u0430 \u0442\u0430\u043a\u0436\u0435 \u0435\u0449\u0435 \u0442\u0440\u0438 \u043d\u043e\u0432\u044b\u0445 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044f. \u041e\u0434\u0438\u043d \u0438\u0437 \u043d\u0438\u0445 \u043e\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u0435\u0442 \u0447\u0435\u0442\u044b\u0440\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 AMD Manageability Tools - \u0438\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a EoP \u0438 \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u043c\u0443 RCE.\n\n\u0412 \u0434\u0440\u0443\u0433\u043e\u043c \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0438 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442\u0441\u044f \u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0430\u0445 AMD Optimizing CPU Libraries (AOCL), \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0442\u0430\u043a\u0436\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0434\u043b\u044f EoP \u0438, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e, RCE.\n\n\u0412 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u043c - \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441\u0440\u0435\u0434\u043d\u0435\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 uProf, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432.", "creation_timestamp": "2025-05-15T18:00:07.000000Z"}, {"uuid": "0ee3cd06-90af-411c-aed3-fa8c60d0508d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24495", "type": "seen", "source": "https://t.me/thehackernews/6848", "content": "\ud83d\udcbb Spectre Isn\u2019t Dead. It\u2019s Mutating! New CPU flaw hits ALL modern Intel chips.\n\n\ud83d\udee0 Researchers at ETH Zurich and VUSec uncovered Spectre-style Intel CPU flaws (CVE-2024-45332, CVE-2024-28956, CVE-2025-24495) that leak memory across users, guests, and hosts\u2014at rates up to 17KB/sec.\n\nRead details \u2192 https://thehackernews.com/2025/05/researchers-expose-new-intel-cpu-flaws.html\n\nPatches are out. But is this just another Band-Aid?", "creation_timestamp": "2025-05-16T11:14:42.000000Z"}]}