{"vulnerability": "CVE-2025-27915", "sightings": [{"uuid": "61dd794a-3b5c-4a57-b5f3-64c3f3ebff3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m2pldvrdes2u", "content": "", "creation_timestamp": "2025-10-08T21:25:53.189416Z"}, {"uuid": "45f15c51-7f6a-4efa-b9b6-5991c3dde987", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lkoabw6otc2i", "content": "", "creation_timestamp": "2025-03-18T17:52:06.748935Z"}, {"uuid": "644b2ac7-ef93-469e-b5b6-9c163c4185c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/calimegai.bsky.social/post/3m2lumlbl3c26", "content": "", "creation_timestamp": "2025-10-07T10:01:00.692496Z"}, {"uuid": "b34b443a-5a12-4a4a-86d5-24f78307f6eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m6iagpxj4a2b", "content": "", "creation_timestamp": "2025-11-25T21:02:39.988407Z"}, {"uuid": "23664dbb-cdbb-4a67-8e05-1665749110b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3m2qway4cns2i", "content": "", "creation_timestamp": "2025-10-09T10:13:54.729286Z"}, {"uuid": "66aa1a57-685e-42ff-9ffd-7da1d0ee650d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/mmarcoseguridad.bsky.social/post/3m3cras6hb62h", "content": "", "creation_timestamp": "2025-10-16T12:31:58.935982Z"}, {"uuid": "a62dddb4-db8f-4b7e-9252-62e03b60a681", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2025-27915", "type": "exploited", "source": "https://strikeready.com/blog/0day-ics-attack-in-the-wild/", "content": "", "creation_timestamp": "2025-10-07T15:43:20.208391Z"}, {"uuid": "694baddb-3596-45f2-bebd-45768d8b9826", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/4875001", "content": "", "creation_timestamp": "2025-10-07T19:16:14.283241Z"}, {"uuid": "9cb4a94b-8ae0-423e-b09c-a216745e1625", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m2cxppvxok2p", "content": "", "creation_timestamp": "2025-10-03T21:02:31.871172Z"}, {"uuid": "e7eec119-5c4b-4731-ac5c-2f9b6ba3c05b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://thehackernews.com/2025/10/zimbra-zero-day-exploited-to-target.html", "content": "", "creation_timestamp": "2025-10-06T04:01:00.000000Z"}, {"uuid": "b81aec0f-1332-453d-bf2f-991a24a5fd30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/technadu.com/post/3m2jfmaqwzs2i", "content": "", "creation_timestamp": "2025-10-06T10:27:17.175131Z"}, {"uuid": "90146db3-888a-4bb5-9927-c63fc4c9ebd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://infosec.exchange/users/tomcat/statuses/115327218844632618", "content": "", "creation_timestamp": "2025-10-06T12:28:25.956778Z"}, {"uuid": "55426825-1ed3-4cd8-8150-602bf5fe3c35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3m2mw66rsjo2c", "content": "", "creation_timestamp": "2025-10-07T20:01:24.654746Z"}, {"uuid": "95809a27-f4af-419e-a6ce-09b50f749596", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/115326861103133608", "content": "", "creation_timestamp": "2025-10-06T10:57:27.170281Z"}, {"uuid": "6c1db55d-0e18-4d89-872f-563131b4d9b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://threatintel.cc/2025/10/06/zimbra-users-targeted-in-zeroday.html", "content": "", "creation_timestamp": "2025-10-06T08:57:33.000000Z"}, {"uuid": "59034760-0d15-4560-bb98-e0646a0ab3f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://threatintel.cc/2025/10/06/daily-cyber-threat-intelligence-briefing.html", "content": "", "creation_timestamp": "2025-10-06T10:09:49.000000Z"}, {"uuid": "98c75ed1-1234-4f18-a323-3e5a2dbbeb26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-10-07T18:10:02.000000Z"}, {"uuid": "1898f967-b38c-4de6-b65d-4adb559c21e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3m2nsnnxhix2e", "content": "", "creation_timestamp": "2025-10-08T04:31:08.572850Z"}, {"uuid": "133d347f-fd10-4df1-bcaf-41627b71c875", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-10-08T03:34:26.000000Z"}, {"uuid": "2ca05fc8-abd3-4e18-ba64-fe2b6cc7dd1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-c3744166-48c8172eb5443a2a", "content": "", "creation_timestamp": "2025-10-06T18:19:42.287121Z"}, {"uuid": "f9b9563c-3249-471f-acdc-2b6c54cec7b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3m2kxtpxwsc2a", "content": "", "creation_timestamp": "2025-10-07T01:26:02.108338Z"}, {"uuid": "aea8cd5e-bf82-4eb9-b0b9-f983d0e61ef9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/mmarcoseguridad.bsky.social/post/3m3ugectw7t2k", "content": "", "creation_timestamp": "2025-10-23T13:05:00.846352Z"}, {"uuid": "42862c99-3a5f-47b7-a2c6-2bdcde5a373d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3m2gxk6icnr2x", "content": "", "creation_timestamp": "2025-10-05T11:10:02.750777Z"}, {"uuid": "10b44369-553a-4355-8b0d-e6c696534c46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-27915", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3m2ijwljrrg2s", "content": "", "creation_timestamp": "2025-10-06T02:11:45.695628Z"}, {"uuid": "168ca58f-1c0c-4e5f-9e05-d2a124bd801e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-27915", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3m2i27vbgev2e", "content": "", "creation_timestamp": "2025-10-05T21:30:38.239035Z"}, {"uuid": "a7c83198-7f9a-4d96-937d-6a66a77e3af3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3m2j2nfi7w526", "content": "", "creation_timestamp": "2025-10-06T07:10:51.354644Z"}, {"uuid": "7b897b35-84f9-406a-8dd9-f51835e852a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3m2j2wmpo4e2u", "content": "", "creation_timestamp": "2025-10-06T07:16:01.539123Z"}, {"uuid": "eb55f042-c06e-4456-be67-334ec97fbfa0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/infosecindustry.bsky.social/post/3m2j34o7nbu2k", "content": "", "creation_timestamp": "2025-10-06T07:19:23.228127Z"}, {"uuid": "7aebc8ef-b5fd-44a5-b87e-4943345100f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "exploited", "source": "https://t.me/notlukatsky/6864", "content": "\u041b\u043e\u0432\u0438\u0442\u0435 \u0432\u043a\u0443\u0441\u043d\u044b\u0435 \u0431\u0430\u0433\u0438 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0435\u0439 \u043d\u0435\u0434\u0435\u043b\u0438 + PoC\n#CVE #Redis #Oracle #\u043f\u043e\u0434\u0431\u043e\u0440\u043a\u0430\n\n\u27a1\ufe0fRedis \u2014 RediShell (CVE-2025-49844, CVSS 10.0)\n\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 use-after-free \u0432 Lua-\u0434\u0432\u0438\u0436\u043a\u0435 Redis, \u043f\u0440\u0438\u0441\u0443\u0442\u0441\u0442\u0432\u043e\u0432\u0430\u0432\u0448\u0438\u0439 \u0432 \u043a\u043e\u0434\u043e\u0432\u043e\u0439 \u0431\u0430\u0437\u0435 13 \u043b\u0435\u0442. \u041f\u0440\u0438 \u043d\u0430\u043b\u0438\u0447\u0438\u0438 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c Lua-\u0441\u043a\u0440\u0438\u043f\u0442\u044b (EVAL/EVALSHA) \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0440\u0430\u0437\u0440\u0443\u0448\u0438\u0442\u044c \u0438\u0437\u043e\u043b\u044f\u0446\u0438\u044e Lua VM \u0438 \u0434\u043e\u0431\u0438\u0442\u044c\u0441\u044f RCE \u0432 \u043a\u043e\u043d\u0442\u0435\u043a\u0441\u0442\u0435 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 redis-server. \u0412 \u0441\u0435\u0442\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043e \u043f\u043e\u0440\u044f\u0434\u043a\u0430 330\u043a \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0445 \u0438\u043d\u0441\u0442\u0430\u043d\u0441\u043e\u0432 Redis, \u0438\u0437 \u043d\u0438\u0445 60\u043a \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u27a1\ufe0fVMware Aria Operations / VMware Tools (CVE-2025-41244, CVSS 7.8) \n\nLPE \u0432 \u0433\u043e\u0441\u0442\u0435\u0432\u043e\u0439 \u041e\u0421. \u041f\u0440\u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u043d\u043e\u043c VMware Tools \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0438 \u0447\u0435\u0440\u0435\u0437 Aria Operations \u0441 \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u043d\u044b\u043c Service Discovery Management Pack (SDMP) \u043c\u043e\u0436\u043d\u043e \u0434\u0430\u0436\u0435 \u0441 \u043d\u0435\u043f\u043e\u043b\u043d\u044b\u043c\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u0432 \u0433\u043e\u0441\u0442\u0435\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0434\u043e root/Administrator. \u0417\u0430\u043c\u0435\u0447\u0435\u043d\u044b \u0441\u043b\u0443\u0447\u0430\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 in-the-wild.\n\n\u27a1\ufe0fOpenSSH \u2014 ProxyCommand newline injection (CVE-2025-61984, CVSS 7.8)\n\nCommand injection \u043f\u0440\u0438 \u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0438 ProxyCommand. \u0415\u0441\u043b\u0438 \u0432 \u0438\u043c\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0438/\u0438\u043b\u0438 \u0432\u043d\u0435\u0448\u043d\u0438\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u043f\u043e\u043f\u0430\u0434\u0430\u044e\u0442 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0449\u0438\u0435 \u0441\u0438\u043c\u0432\u043e\u043b\u044b, \u0438\u0442\u043e\u0433\u043e\u0432\u0430\u044f \u043a\u043e\u043c\u0430\u043d\u0434\u0430 \u0434\u043b\u044f ProxyCommand \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0430 shell-\u043e\u043c \u0442\u0430\u043a, \u0447\u0442\u043e \u043c\u043e\u0436\u043d\u043e \u0434\u043e\u0431\u0438\u0442\u044c\u0441\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u043a\u043e\u043c\u0430\u043d\u0434 \u043d\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u0435. \u0422\u043e \u0435\u0441\u0442\u044c \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u0430\u044f \u0441\u0430\u043d\u0438\u0442\u0438\u0437\u0430\u0446\u0438\u044f \u0438 \u044d\u043a\u0440\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0442\u043e\u043a\u0435\u043d\u043e\u0432 \u043f\u0440\u0438 \u043f\u043e\u0434\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0435 \u0432 \u0448\u0430\u0431\u043b\u043e\u043d\u044b.\n\n\u27a1\ufe0f Zimbra Collaboration \u2014 Classic Web Client XSS \u0447\u0435\u0440\u0435\u0437 .ICS (CVE-2025-27915, CVSS 6.1). \n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u0441\u0430\u043d\u0430\u0446\u0438\u044f HTML \u0432\u043d\u0443\u0442\u0440\u0438 iCalendar (.ICS). \u0412\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u043d\u0438\u0435 HTML/JS (\u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, ) \u0432 \u0441\u043e\u0431\u044b\u0442\u0438\u0435 \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u0441\u043a\u0440\u0438\u043f\u0442\u0430 \u043f\u0440\u0438 \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435 \u0432 \u043a\u043b\u0430\u0441\u0441\u0438\u0447\u0435\u0441\u043a\u043e\u043c \u0432\u0435\u0431-\u043a\u043b\u0438\u0435\u043d\u0442\u0435. \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0443\u043a\u0440\u0430\u0441\u0442\u044c \u043a\u0443\u043a\u0438/\u0442\u043e\u043a\u0435\u043d\u044b, \u043f\u0435\u0440\u0435\u0441\u044b\u043b\u0430\u0442\u044c \u043f\u0438\u0441\u044c\u043c\u0430, \u043c\u0435\u043d\u044f\u0442\u044c \u0444\u0438\u043b\u044c\u0442\u0440\u044b, \u0447\u0438\u0442\u0430\u0442\u044c \u043f\u043e\u0447\u0442\u0443.\n\n\u27a1\ufe0f3DEXPERIENCE (CVE-2025-9976, CVSS 9.0)\n\n\u0418\u043d\u0442\u0435\u0433\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f PLM-\u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430 \u043e\u0442 Dassault Systemes, \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u044f\u044e\u0449\u0430\u044f CAD, CAE, CAM \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0438\u043d\u0436\u0435\u043d\u0435\u0440\u043d\u044b\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u043c\u0438 \u0432 \u0435\u0434\u0438\u043d\u0443\u044e \u0441\u0440\u0435\u0434\u0443 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0438. \u0411\u0430\u0433 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 OS command injection \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 Station Launcher. \u0421\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440 \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0432\u043d\u0435\u0434\u0440\u0435\u043d \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0439 \u0432\u044b\u0437\u043e\u0432 \u0438 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u043a\u043e\u043c\u0430\u043d\u0434 \u043d\u0430 \u043c\u0430\u0448\u0438\u043d\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f. \u0411\u0435\u0437 PoC, \u0437\u0430\u0442\u043e \u0441\u0432\u0435\u0436\u0430\u043a.\n\nP.s. \u043a\u0430\u043a \u0432\u0430\u043c \u0442\u0430\u043a\u043e\u0439 \u0444\u043e\u0440\u043c\u0430\u0442 \u043f\u043e\u0441\u0442\u043e\u0432? \ud83d\ude2c - \u0435\u0441\u043b\u0438 \u043a\u0430\u0439\u0444, \ud83d\udd25 - \u0435\u0441\u043b\u0438 \u043d\u0430\u0434\u043e \u0435\u0449\u0435 \u0434\u043e\u0440\u0430\u0431\u043e\u0442\u0430\u0442\u044c. \u0422\u0430\u043a\u043e\u0439 \u0444\u043e\u0440\u043c\u0430\u0442 \u0431\u0443\u0434\u0435\u0442 \u0432\u044b\u0445\u043e\u0434\u0438\u0442\u044c \u043f\u043e \u043f\u043d\n\n\ud83c\udf1a @poxek | \ud83d\udcf2 MAX |\ud83c\udf1a \u0411\u043b\u043e\u0433 | \ud83d\udcfa YT | \ud83d\udcfa RT | \ud83d\udcfa VK | \u2764\ufe0f \u041c\u0435\u0440\u0447", "creation_timestamp": "2025-10-15T14:56:30.000000Z"}, {"uuid": "c3cc6074-3f83-4cca-8b0a-bc3e7d6bef3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m2pk255vjh2a", "content": "", "creation_timestamp": "2025-10-08T21:02:26.723287Z"}, {"uuid": "d289b464-bfb4-4441-bfa6-558f62a64ecc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-27915", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/f0c13b0d-ff14-4e8a-94fb-cdbbd19f2678", "content": "", "creation_timestamp": "2026-02-02T12:25:49.697521Z"}, {"uuid": "6e423a9b-8326-444f-83e6-2549f91c0b6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "exploited", "source": "https://t.me/hackyourmom/12837", "content": "\ud83d\udca5 \u0425\u0430\u043a\u0435\u0440\u0438 \u0437\u043b\u0430\u043c\u0430\u043b\u0438 Zimbra Collaboration Suite, \u0432\u0438\u043a\u043e\u0440\u0438\u0441\u0442\u0430\u0432\u0448\u0438 zero-day \u0443\u0440\u0430\u0437\u043b\u0438\u0432\u0456\u0441\u0442\u044c CVE-2025-27915 \u0447\u0435\u0440\u0435\u0437 \u0444\u0430\u0439\u043b\u0438 iCalendar (.ICS). \u0426\u0435 \u0434\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u043e \u0457\u043c \u0432\u043f\u0440\u043e\u0432\u0430\u0434\u0436\u0443\u0432\u0430\u0442\u0438 \u0448\u043a\u0456\u0434\u043b\u0438\u0432\u0438\u0439 JavaScript, \u0432\u0438\u043a\u0440\u0430\u0434\u0430\u0442\u0438 \u043b\u0438\u0441\u0442\u0438, \u043b\u043e\u0433\u0456\u043d\u0438, \u043a\u043e\u043d\u0442\u0430\u043a\u0442\u0438 \u0439 \u043f\u0435\u0440\u0435\u0441\u0438\u043b\u0430\u0442\u0438 \u0434\u0430\u043d\u0456 \u043d\u0430 \u0441\u0442\u043e\u0440\u043e\u043d\u043d\u0456 \u0430\u0434\u0440\u0435\u0441\u0438. \u041a\u043e\u043c\u043f\u0430\u043d\u0456\u044f StrikeReady \u0432\u0438\u044f\u0432\u0438\u043b\u0430 \u0430\u0442\u0430\u043a\u0443, \u043a\u043e\u043b\u0438 \u043f\u043e\u043c\u0456\u0442\u0438\u043b\u0430 \u0432\u0435\u043b\u0438\u043a\u0456 ICS-\u0444\u0430\u0439\u043b\u0438 \u0437 \u0443\u043c\u0456\u0449\u0435\u043d\u0438\u043c \u043a\u043e\u0434\u043e\u043c, \u044f\u043a\u0438\u0439 \u043e\u0431\u0445\u043e\u0434\u0438\u0432 \u043f\u0435\u0440\u0435\u0432\u0456\u0440\u043a\u0443 HTML \u0443 \u0432\u0435\u0440\u0441\u0456\u044f\u0445 ZCS 9.0\u201310 \ud83d\udc7e \u0411\u0456\u043b\u044c\u0448\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u0438\u0446\u044c \ud83d\udc48 #cybernews", "creation_timestamp": "2025-10-06T15:24:16.000000Z"}, {"uuid": "38e8a1d9-4265-4c8e-8de1-1aaa6557b510", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "exploited", "source": "Telegram/0VbZe_23vYi0IKTPuqKPwqF12jNEdlxyMQXTwhA2tCZvTw", "content": "", "creation_timestamp": "2025-10-06T11:36:06.000000Z"}, {"uuid": "3beb5a45-258d-44ea-a3fd-5e6b2d09858c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27915", "type": "exploited", "source": "https://t.me/thehackernews/7662", "content": "A \u201charmless\u201d ICS calendar file exploited Zimbra\u2019s XSS zero-day flaw (CVE-2025-27915) \u2014 turning an invite into a full data stealer.\n\nTarget: Brazil\u2019s military.\nThe script waited 72 hours before exfiltrating credentials.\n\nRead \u2192 https://thehackernews.com/2025/10/zimbra-zero-day-exploited-to-target.html", "creation_timestamp": "2025-10-06T06:05:40.000000Z"}]}