{"vulnerability": "cve-2023-3320", "sightings": [{"uuid": "e6cc958b-0547-4990-8181-8d8f87924e59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://gist.github.com/kitherill/35c9211065676c6c258f3a3f1d76a26d", "content": "", "creation_timestamp": "2026-02-11T12:49:28.000000Z"}, {"uuid": "de4e1399-e725-4b54-ac53-2b1acc8f0d13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33200", "type": "seen", "source": "https://t.me/itsec_news/3368", "content": "\u200b\u26a1\ufe0fArm: \u043e\u0448\u0438\u0431\u043a\u0430 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 GPU \u043c\u043e\u0436\u0435\u0442 \u0443\u043d\u0438\u0447\u0442\u043e\u0436\u0438\u0442\u044c \u0434\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u0435.\n\n\ud83d\udcac \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Arm (Arm Holdings) \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043e\u0431 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0435\u0439 \u0448\u0438\u0440\u043e\u043a\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0435 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u044b GPU Mali. \u041e\u0448\u0438\u0431\u043a\u0430 \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438\u0437 Google Threat Analysis Group (TAG) \u0438 Project Zero.\n\n\u041f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043f\u043e\u043a\u0430 \u043d\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u044e\u0442\u0441\u044f, \u043d\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2023-4211 \u043e\u043f\u0438\u0441\u0430\u043d\u0430 \u043a\u0430\u043a \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438, \u0447\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0438\u043b\u0438 \u043c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0447\u0443\u0432\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u043c\u0438. Arm \u043e\u0431\u044a\u044f\u0441\u043d\u044f\u0435\u0442, \u0447\u0442\u043e \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0431\u0435\u0437 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u043c\u043e\u0436\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u044b\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u043f\u0430\u043c\u044f\u0442\u0438 \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u0430, \u0447\u0442\u043e\u0431\u044b \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0443\u0436\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0434\u043e\u0431\u0430\u0432\u043b\u044f\u0435\u0442, \u0447\u0442\u043e \u043d\u0430\u0448\u043b\u0430 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u00ab\u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u0430\u0442\u044c\u0441\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439, \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438\u00bb.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0443 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u043e\u0432:\n\n\u0414\u0440\u0430\u0439\u0432\u0435\u0440 \u044f\u0434\u0440\u0430 GPU Midgard: \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u043e\u0442 r12p0 \u0434\u043e r32p0;\n\u0414\u0440\u0430\u0439\u0432\u0435\u0440 \u044f\u0434\u0440\u0430 GPU Bifrost: \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u043e\u0442 r0p0 \u0434\u043e r42p0;\n\u0414\u0440\u0430\u0439\u0432\u0435\u0440 \u044f\u0434\u0440\u0430 GPU Valhall: \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u043e\u0442 r19p0 \u0434\u043e r42p0;\n\u0414\u0440\u0430\u0439\u0432\u0435\u0440 \u044f\u0434\u0440\u0430 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b GPU Arm 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f: \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u043e\u0442 r41p0 \u0434\u043e r42p0.\n\u0421\u0435\u0440\u0438\u0438 Midgard, Bifrost \u0438 Valhall \u0431\u044b\u043b\u0438 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u044b \u0432 2013, 2016 \u0438 2019 \u0433\u043e\u0434\u0430\u0445 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u043e\u043d\u0438 \u043a\u0430\u0441\u0430\u044e\u0442\u0441\u044f \u0441\u0442\u0430\u0440\u044b\u0445 \u043c\u043e\u0434\u0435\u043b\u0435\u0439 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432. \u041f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0435 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u0443 Valhall (Mali-G77), \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 Samsung Galaxy S20/S20 FE, Xiaomi Redmi K30/K40, Motorola Edge 40 \u0438 OnePlus Nord 2.\n\n\u0410\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u0430 GPU 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f \u043e\u0442 Arm \u0431\u044b\u043b\u0430 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u0430 \u043d\u0430 \u0440\u044b\u043d\u043a\u0435 \u0432 \u043c\u0430\u0435 2023 \u0433\u043e\u0434\u0430 \u0441 \u0447\u0438\u043f\u0430\u043c\u0438 Mali-G720 \u0438 Mali-G620, \u043e\u0440\u0438\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c\u0438 \u043d\u0430 \u043f\u0440\u0435\u043c\u0438\u0443\u043c-\u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u044b \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u0438.\n\n\u041f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u0441\u043e\u043e\u0431\u0449\u0430\u0435\u0442, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u0434\u043b\u044f Bifrost , Valhall \u0438 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b GPU Arm 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f \u0441 \u0432\u0435\u0440\u0441\u0438\u0435\u0439 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u044f\u0434\u0440\u0430 r43p0 (\u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0439 24 \u043c\u0430\u0440\u0442\u0430 2023 \u0433\u043e\u0434\u0430). Midgard \u0431\u043e\u043b\u044c\u0448\u0435 \u043d\u0435 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0432\u0440\u044f\u0434 \u043b\u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043b\u044f CVE-2023-4211.\n\nArm \u0442\u0430\u043a\u0436\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u043b\u0430 \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 : CVE-2023-33200 \u0438 CVE-2023-34970, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043d\u0435\u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0433\u043e\u043d\u043a\u0438 (race condition) \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u044b\u0445 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0439 \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u0430 \u0434\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438. \u041e\u0448\u0438\u0431\u043a\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 Bifrost, Valhall \u0438 \u0432\u0435\u0440\u0441\u0438\u0438 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u044f\u0434\u0440\u0430 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b GPU Arm 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f \u0434\u043e r44p0, \u0441 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u043c\u044b\u043c\u0438 \u0446\u0435\u043b\u044f\u043c\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f r44p1 \u0438 r45p0 (\u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u043c\u0438 15 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u044f 2023 \u0433\u043e\u0434\u0430).\n\n\u0412\u0441\u0435 \u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u043c \u0441 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0439, \u043a\u0430\u043a \u043f\u0440\u0430\u0432\u0438\u043b\u043e, \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u0435\u0442\u0441\u044f \u043f\u0443\u0442\u0435\u043c \u043f\u0440\u0438\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u043d\u0430 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 \u0438\u0437 \u043d\u0435\u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2023-12-02T01:05:23.000000Z"}, {"uuid": "c2a6605d-ba6f-41ac-ae80-d45e909d7fb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3320", "type": "seen", "source": "https://t.me/kasraone_com/329", "content": "CVE-2023-3320\n\n\n\u0627\u0641\u0632\u0648\u0646\u0647 WP Sticky Social \u0628\u0631\u0627\u06cc \u0648\u0631\u062f\u067e\u0631\u0633 \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062c\u0639\u0644 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u0628\u06cc\u0646 \u0633\u0627\u06cc\u062a\u06cc \u062f\u0631 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc \u062a\u0627\u060c \u0648 \u0627\u0632 \u062c\u0645\u0644\u0647\u060c 1.0.1 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0627\u0633\u062a. \u062f\u0644\u06cc\u0644 \u0627\u06cc\u0646 \u0627\u0645\u0631 \u0639\u062f\u0645 \u062a\u0623\u06cc\u06cc\u062f \u0627\u0639\u062a\u0628\u0627\u0631 \u063a\u06cc\u0631 \u0645\u0633\u062a\u0642\u06cc\u0645 \u062f\u0631 \u0641\u0627\u06cc\u0644 ~/admin/views/admin.php \u0627\u0633\u062a. \u0627\u06cc\u0646 \u0627\u0645\u06a9\u0627\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0634\u062f\u0647 \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0646\u062f \u062a\u0627 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0627\u0641\u0632\u0648\u0646\u0647 \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u0646\u062f \u0648 \u0627\u0633\u06a9\u0631\u06cc\u067e\u062a\u200c\u0647\u0627\u06cc \u0648\u0628 \u0645\u062e\u0631\u0628 \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u06cc\u06a9 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u062c\u0639\u0644\u06cc \u062a\u0632\u0631\u06cc\u0642 \u06a9\u0646\u0646\u062f \u06a9\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u0645\u062f\u06cc\u0631 \u0633\u0627\u06cc\u062a \u0631\u0627 \u0641\u0631\u06cc\u0628 \u062f\u0647\u0646\u062f \u062a\u0627 \u0639\u0645\u0644\u06cc \u0645\u0627\u0646\u0646\u062f \u06a9\u0644\u06cc\u06a9 \u06a9\u0631\u062f\u0646 \u0631\u0648\u06cc \u06cc\u06a9 \u067e\u06cc\u0648\u0646\u062f \u0631\u0627 \u0627\u0646\u062c\u0627\u0645 \u062f\u0647\u062f.", "creation_timestamp": "2023-06-29T07:29:32.000000Z"}, {"uuid": "f973bf90-a961-4260-9fc1-6160c01be2be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33204", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2541", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-33204\n\ud83d\udd39 Description: sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377.\n\ud83d\udccf Published: 2023-05-18T00:00:00\n\ud83d\udccf Modified: 2025-01-22T14:49:28.299Z\n\ud83d\udd17 References:\n1. https://github.com/sysstat/sysstat/pull/360\n2. https://lists.debian.org/debian-lts-announce/2023/05/msg00026.html\n3. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NUBFX3UNOSM7KFUIB3J32ASYT5ZRXJQV/\n4. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7UUEKMNDMC6RZTI4O367ZD2YKCOX5THX/", "creation_timestamp": "2025-01-22T15:03:00.000000Z"}, {"uuid": "cbcb0af2-1fdd-4943-bec8-abe824bbf02f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33209", "type": "seen", "source": "https://t.me/ctinow/157157", "content": "https://ift.tt/tRoiHsu\nCVE-2023-33209", "creation_timestamp": "2023-12-20T17:23:45.000000Z"}, {"uuid": "89607efc-59d6-46ea-a800-584ab48b1677", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33200", "type": "exploited", "source": "https://t.me/hackyourmom/5453", "content": "\u041a\u043e\u0440\u043f\u043e\u0440\u0430\u0446\u0456\u044f Arm \u043f\u043e\u043f\u0435\u0440\u0435\u0434\u0438\u043b\u0430 \u043f\u0440\u043e  \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u0456\u0441\u0442\u044c \u0433\u0440\u0430\u0444\u0456\u0447\u043d\u0438\u0445 \u043f\u0440\u043e\u0446\u0435\u0441\u043e\u0440\u0456\u0432 Mali\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0456\u044f Arm \u0432\u0438\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u043d\u043e\u0432\u043b\u0435\u043d\u043d\u044f, \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0447\u0438 \u0432\u0438\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044f \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u043e\u0441\u0442\u0456 \u0432 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0456 \u044f\u0434\u0440\u0430 \u0433\u0440\u0430\u0444\u0456\u0447\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u043e\u0440\u0430 Mali, \u044f\u043a\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0432\u0438\u043a\u043e\u0440\u0438\u0441\u0442\u043e\u0432\u0443\u0432\u0430\u043b\u0430\u0441\u044f \u0445\u0430\u043a\u0435\u0440\u0430\u043c\u0438. \u0412\u0440\u0430\u0437\u043b\u0438\u0432\u0456 \u043f\u0440\u0438\u0441\u0442\u0440\u043e\u0457 \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442\u044c Google Pixel, Android-\u0442\u0435\u043b\u0435\u0444\u043e\u043d\u0438, Chromebook \u0456 \u043f\u0440\u0438\u0441\u0442\u0440\u043e\u0457 \u043f\u0456\u0434 \u0443\u043f\u0440\u0430\u0432\u043b\u0456\u043d\u043d\u044f\u043c Linux. \u0426\u044f \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u0456\u0441\u0442\u044c \u043e\u0442\u0440\u0438\u043c\u0430\u043b\u0430 \u0456\u0434\u0435\u043d\u0442\u0438\u0444\u0456\u043a\u0430\u0442\u043e\u0440 CVE-2023-4211 \u0456 \u0431\u0443\u043b\u0430 \u0432\u0438\u044f\u0432\u043b\u0435\u043d\u0430 \u0444\u0430\u0445\u0456\u0432\u0446\u044f\u043c\u0438 \u0437 Google Threat Analysis Group (TAG) \u0456 Project Zero.\n\n\u0414\u0435\u0442\u0430\u043b\u0456 \u043f\u0440\u043e \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u0456\u0441\u0442\u044c \u043f\u043e\u043a\u0438 \u0449\u043e \u043d\u0435 \u0440\u043e\u0437\u0433\u043e\u043b\u043e\u0448\u0443\u044e\u0442\u044c\u0441\u044f, \u0430\u043b\u0435 \u0432\u0456\u0434\u043e\u043c\u043e, \u0449\u043e \u0432\u043e\u043d\u0430 \u043f\u043e\u0432'\u044f\u0437\u0430\u043d\u0430 \u0437 \u043d\u0435\u043a\u043e\u0440\u0435\u043a\u0442\u043d\u0438\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c \u0434\u043e \u0432\u0456\u043b\u044c\u043d\u043e\u0457 \u043f\u0430\u043c'\u044f\u0442\u0456, \u0449\u043e \u0434\u043e\u0437\u0432\u043e\u043b\u044f\u0454 \u0437\u043b\u043e\u0432\u043c\u0438\u0441\u043d\u0438\u043a\u0430\u043c \u043c\u0430\u043d\u0456\u043f\u0443\u043b\u044e\u0432\u0430\u0442\u0438 \u043a\u043e\u043d\u0444\u0456\u0434\u0435\u043d\u0446\u0456\u0439\u043d\u0438\u043c\u0438 \u0434\u0430\u043d\u0438\u043c\u0438. Arm \u043f\u043e\u0432\u0456\u0434\u043e\u043c\u043b\u044f\u0454, \u0449\u043e \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u0438\u0439 \u043d\u0435\u043f\u0440\u0438\u0432\u0456\u043b\u0435\u0433\u0456\u0439\u043e\u0432\u0430\u043d\u0438\u0439 \u043a\u043e\u0440\u0438\u0441\u0442\u0443\u0432\u0430\u0447 \u043c\u043e\u0436\u0435 \u0437\u043b\u043e\u0432\u0436\u0438\u0432\u0430\u0442\u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c \u0434\u043e \u043f\u0430\u043c'\u044f\u0442\u0456 \u0433\u0440\u0430\u0444\u0456\u0447\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u043e\u0440\u0430.\n\n\u0412\u0440\u0430\u0437\u043b\u0438\u0432\u0456\u0441\u0442\u044c \u0432\u0436\u0435 \u0431\u0443\u043b\u0430 \u043e\u0431'\u0454\u043a\u0442\u043e\u043c \u043e\u0431\u043c\u0435\u0436\u0435\u043d\u043e\u0433\u043e \u0442\u0430 \u0446\u0456\u043b\u044c\u043e\u0432\u043e\u0433\u043e \u0432\u0438\u043a\u043e\u0440\u0438\u0441\u0442\u0430\u043d\u043d\u044f. \u0412\u043e\u043d\u0430 \u0441\u0442\u043e\u0441\u0443\u0454\u0442\u044c\u0441\u044f \u0440\u0456\u0437\u043d\u0438\u0445 \u0432\u0435\u0440\u0441\u0456\u0439 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0456\u0432, \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0447\u0438 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0438 \u044f\u0434\u0440\u0430 Midgard GPU, Bifrost GPU, Valhall GPU \u0456 \u0430\u0440\u0445\u0456\u0442\u0435\u043a\u0442\u0443\u0440\u0438 Arm GPU 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0456\u043d\u043d\u044f. \u0414\u0435\u044f\u043a\u0456 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u0456 \u043f\u0440\u0438\u0441\u0442\u0440\u043e\u0457, \u044f\u043a\u0456 \u0432\u0438\u043a\u043e\u0440\u0438\u0441\u0442\u043e\u0432\u0443\u044e\u0442\u044c \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u0456 \u0447\u0456\u043f\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442\u044c Samsung Galaxy S20/S20 FE, Xiaomi Redmi K30/K40, Motorola Edge 40 \u0456 OnePlus Nord 2.\n\nArm \u0437\u0430\u0443\u0432\u0430\u0436\u0443\u0454, \u0449\u043e \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u0456\u0441\u0442\u044c \u0431\u0443\u043b\u0430 \u0443\u0441\u0443\u043d\u0435\u043d\u0430 \u0432 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430\u0445 Bifrost, Valhall \u0456 GPU 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0456\u043d\u043d\u044f \u0432\u0435\u0440\u0441\u0456\u0457 r43p0, \u0432\u0438\u043f\u0443\u0449\u0435\u043d\u043e\u0457 24 \u0431\u0435\u0440\u0435\u0437\u043d\u044f 2023 \u0440\u043e\u043a\u0443. \u041e\u0434\u043d\u0430\u043a \u0434\u043b\u044f \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u044f\u0434\u0440\u0430 Midgard \u0431\u0456\u043b\u044c\u0448\u0435 \u043d\u0435 \u0431\u0443\u0434\u0435 \u043f\u0430\u0442\u0447\u0456\u0432.\n\n\u0414\u043e\u0441\u0442\u0443\u043f\u043d\u0456\u0441\u0442\u044c \u043e\u043d\u043e\u0432\u043b\u0435\u043d\u044c \u0434\u043b\u044f \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u0438\u0445 \u043f\u0440\u0438\u0441\u0442\u0440\u043e\u0457\u0432 \u0437\u0430\u043b\u0435\u0436\u0438\u0442\u044c \u0432\u0456\u0434 \u0457\u0445 \u0432\u0438\u0440\u043e\u0431\u043d\u0438\u043a\u0456\u0432 \u0456 \u0441\u043a\u043b\u0430\u0434\u043d\u043e\u0441\u0442\u0456 \u043b\u0430\u043d\u0446\u044e\u0433\u0430 \u043f\u043e\u0441\u0442\u0430\u0447\u0430\u043d\u043d\u044f, \u0442\u043e\u043c\u0443 \u0434\u0435\u044f\u043a\u0456 \u043a\u043e\u0440\u0438\u0441\u0442\u0443\u0432\u0430\u0447\u0456 \u043c\u043e\u0436\u0443\u0442\u044c \u043e\u0442\u0440\u0438\u043c\u0430\u0442\u0438 \u0432\u0438\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044f \u0440\u0430\u043d\u0456\u0448\u0435, \u043d\u0456\u0436 \u0456\u043d\u0448\u0456.\n\n\u041a\u0440\u0456\u043c \u0442\u043e\u0433\u043e, Arm \u0442\u0430\u043a\u043e\u0436 \u043f\u043e\u0432\u0456\u0434\u043e\u043c\u0438\u043b\u0430 \u043f\u0440\u043e \u0434\u0432\u0456 \u0456\u043d\u0448\u0456 \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u043e\u0441\u0442\u0456 (CVE-2023-33200 \u0456 CVE-2023-34970), \u044f\u043a\u0456 \u0434\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442\u044c \u043d\u0435\u043f\u0440\u0438\u0432\u0456\u043b\u0435\u0433\u0456\u0439\u043e\u0432\u0430\u043d\u0438\u043c \u043a\u043e\u0440\u0438\u0441\u0442\u0443\u0432\u0430\u0447\u0430\u043c \u0432\u0438\u043a\u043e\u043d\u0443\u0432\u0430\u0442\u0438 \u043d\u0435\u0437\u0430\u043a\u043e\u043d\u043d\u0456 \u043e\u043f\u0435\u0440\u0430\u0446\u0456\u0457 \u0456 \u043e\u0442\u0440\u0438\u043c\u0443\u0432\u0430\u0442\u0438 \u0434\u043e\u0441\u0442\u0443\u043f \u0434\u043e \u0432\u0456\u043b\u044c\u043d\u043e\u0457 \u043f\u0430\u043c'\u044f\u0442\u0456. \u0426\u0456 \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u043e\u0441\u0442\u0456 \u0442\u0430\u043a\u043e\u0436 \u0441\u0442\u043e\u0441\u0443\u044e\u0442\u044c\u0441\u044f \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0456\u0432 \u044f\u0434\u0440\u0430 Bifrost, Valhall \u0456 \u0430\u0440\u0445\u0456\u0442\u0435\u043a\u0442\u0443\u0440\u0438 GPU 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0456\u043d\u043d\u044f \u0456 \u0431\u0443\u043b\u0438 \u0443\u0441\u0443\u043d\u0435\u043d\u0456 \u0432 \u0432\u0435\u0440\u0441\u0456\u044f\u0445 r44p1 \u0456 r45p0, \u0432\u0438\u043f\u0443\u0449\u0435\u043d\u0438\u0445 15 \u0432\u0435\u0440\u0435\u0441\u043d\u044f 2023 \u0440\u043e\u043a\u0443.\n\n\u041f\u043e\u0440\u0442\u0430\u043b: hackyourmom.com \nSocial Media: YT | TikTok  | INST-SHOP\n\u0411\u043e\u0442 \u0437\u0432\u02bc\u044f\u0437\u043a\u0443 | \u041f\u0456\u0434\u0442\u0440\u0438\u043c\u0430\u0442\u0438 : Patreon\n\u0427\u0430\u0442:@hackyourmomchat\n\u0414\u043e\u0434\u0430\u0442\u043a\u0438: \u0434\u043b\u044f Android, \u0434\u043b\u044f IOS", "creation_timestamp": "2023-10-04T07:12:26.000000Z"}, {"uuid": "d70a80f7-3ef9-45d6-b155-60b7e2a6732d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33200", "type": "seen", "source": "Telegram/X3hzt264PvGP-sYWXHaObezCUdIijav2Ed5Pz2NN1lsYlR1W", "content": "", "creation_timestamp": "2025-03-08T04:35:52.000000Z"}, {"uuid": "fcbb47e6-7b0b-4a7a-8c9c-2e73a0a0b8e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/arpsyndicate/3200", "content": "#ExploitObserverAlert\n\nCVE-2023-33201\n\nDESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to CVE-2023-33201. Bouncy Castle For Java before 1.74 is affected by an LDAP injection vulnerability. The vulnerability only affects applications that use an LDAP CertStore from Bouncy Castle to validate X.509 certificates. During the certificate validation process, Bouncy Castle inserts the certificate's Subject Name into an LDAP search filter without any escaping, which leads to an LDAP injection vulnerability.\n\nFIRST-EPSS: 0.000510000\nNVD-IS: 1.4\nNVD-ES: 3.9", "creation_timestamp": "2024-01-28T04:23:06.000000Z"}, {"uuid": "61098f1e-717c-41ad-8450-82cd44738452", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33206", "type": "seen", "source": "https://t.me/cvedetector/2817", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-33206 - Diebold Nixdorf Vynamic Security Suite Symlink Validation Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-33206 \nPublished : Aug. 8, 2024, 6:15 p.m. | 16\u00a0minutes ago \nDescription : Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR16, 4.0.0 SR06, 4.1.0 SR04, 4.2.0 SR03, and 4.3.0 SR01 fails to validate symlinks during the Pre-Boot Authorization (PBA) process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-08T20:35:17.000000Z"}, {"uuid": "d08b4457-82bb-47ae-a8ba-a8fb8405c643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3320", "type": "seen", "source": "https://t.me/arpsyndicate/1695", "content": "#ExploitObserverAlert\n\nCVE-2023-3320\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-3320. The WP Sticky Social  plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.1. This is due to missing nonce validation in the ~/admin/views/admin.php file. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\nFIRST-EPSS: 0.007910000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2023-12-11T03:31:57.000000Z"}, {"uuid": "be9595b5-6f50-4682-aa61-252f104a6acc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33200", "type": "exploited", "source": "https://t.me/true_secator/4922", "content": "\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Arm \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043e \u043d\u0430\u043b\u0438\u0447\u0438\u0438 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0435\u0439 \u0448\u0438\u0440\u043e\u043a\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0435 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u044b \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u0430 Mali.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2023-4211 \u0438 \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438\u0437 Google TAG \u0438 Project Zero.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u044b\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c \u043a \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438 \u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438, \u043a\u0430\u043a \u043e\u0431\u044a\u044f\u0441\u043d\u044f\u0435\u0442 Arm, \u0432 \u0441\u0432\u043e\u0438\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u0445 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0439 \u043d\u0435\u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u043c\u0430\u043d\u0438\u043f\u0443\u043b\u044f\u0446\u0438\u0438 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u043f\u0430\u043c\u044f\u0442\u0438 GPU, \u0447\u0442\u043e\u0431\u044b \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0443\u0436\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0430 \u0438 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u0430 \u043d\u0430 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u043e\u0432. \u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u044f\u0434\u0440\u0430 Midgard, Bifrost, Valhall \u0438 Arm 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b GPU.\n\n\u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0432 \u043e\u0441\u043d\u043e\u0432\u043d\u043e\u043c \u0441\u043e\u0441\u0442\u043e\u044f\u0442 \u0438\u0437 \u0431\u043e\u043b\u0435\u0435 \u0441\u0442\u0430\u0440\u044b\u0445 \u043c\u043e\u0434\u0435\u043b\u0435\u0439, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0441\u0435\u0440\u0438\u0438 Midgard, Bifrost \u0438 Valhall \u0431\u044b\u043b\u0438 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u044b \u0432 2013, 2016 \u0438 2019 \u0433\u043e\u0434\u0430\u0445 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e.\n\n\u041d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0435 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u0443 Valhall (Mali-G77), \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0442\u0430\u043a\u0438\u0435 \u0434\u0435\u0432\u0430\u0439\u0441\u044b \u043a\u0430\u043a Samsung Galaxy S20/20FE, Xiaomi Redmi K30/K40, Motorola Edge 40 \u0438 OnePlus Nord 2. \n\n\u0427\u0442\u043e \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u0430 5-\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f Arm, \u0442\u043e \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u0437\u0430\u043f\u0443\u0449\u0435\u043d\u0430 \u0432 \u043c\u0430\u0435 2023 \u0433\u043e\u0434\u0430 \u0438 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u0430 \u0432 \u0432\u044b\u0441\u043e\u043a\u043e\u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u0441\u043c\u0430\u0440\u0442\u0444\u043e\u043d\u0430\u0445 \u043f\u0440\u0435\u043c\u0438\u0443\u043c-\u043a\u043b\u0430\u0441\u0441\u0430 \u0441 \u0447\u0438\u043f\u0430\u043c\u0438 Mali-G720 \u0438 Mali-G620.\n\n\u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b, \u043d\u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432 \u0442\u043e\u043c, \u043d\u0430\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0431\u044b\u0441\u0442\u0440\u043e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f\u043c \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0443\u0434\u0430\u0441\u0442\u0441\u044f \u0438\u043d\u0442\u0435\u0433\u0440\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0435\u0433\u043e \u0432 \u0441\u0432\u043e\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0446\u0435\u043f\u043e\u0447\u043a\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a \u0434\u043b\u044f \u0440\u0430\u0437\u043d\u044b\u0445 \u0432\u0435\u043d\u0434\u043e\u0440\u043e\u0432, \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043f\u043e\u043b\u0443\u0447\u0430\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u043e\u0437\u0436\u0435, \u0447\u0435\u043c \u0434\u0440\u0443\u0433\u0438\u0435, \u0447\u0442\u043e, \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e, \u0441\u043e\u0437\u0434\u0430\u0435\u0442 \u0443\u0433\u0440\u043e\u0437\u0443 \u0434\u043b\u044f \u0431\u043e\u043b\u044c\u0448\u043e\u0433\u043e \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432.\n\n\u041f\u043e\u043c\u0438\u043c\u043e \u043f\u0440\u043e\u0447\u0435\u0433\u043e \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430 Arm \u0440\u0430\u0441\u043a\u0440\u044b\u043b \u0434\u0432\u0435 \u0434\u0440\u0443\u0433\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2023-33200 \u0438 CVE-2023-34970, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0442\u0430\u043a\u0436\u0435 \u0432\u043b\u0438\u044f\u044e\u0442 \u043d\u0430 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u0443 Valhall \u0438 Arm 5th Gen GPU.", "creation_timestamp": "2023-10-03T18:49:51.000000Z"}, {"uuid": "aeda6bc0-ae84-4aa3-9aba-ea05bc886a47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/182545", "content": "https://ift.tt/A7xjYlk\nCVE-2023-33201 | Oracle Utilties Application Framework up to 4.5.0.1.3 General information disclosure", "creation_timestamp": "2024-02-10T13:11:14.000000Z"}, {"uuid": "d82ae7df-2d4d-44b4-898a-f2b5dd04a27b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/180711", "content": "https://ift.tt/BMxAjha\nCVE-2023-33201 | Oracle Communications Service Catalog and Design 7.4.2.8.0 PSR Designer information disclosure", "creation_timestamp": "2024-02-07T14:11:23.000000Z"}, {"uuid": "ea31ea34-1608-4565-8ca5-46fbacc8e111", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181112", "content": "https://ift.tt/8OpjAlx\nCVE-2023-33201 | Oracle Communications Cloud Native Core Network Repository Function Install/Upgrade information disclosure", "creation_timestamp": "2024-02-08T03:02:08.000000Z"}, {"uuid": "33c35638-09b5-4995-98e3-4a53d5e5a9cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/180709", "content": "https://ift.tt/bGUC60J\nCVE-2023-33201 | Oracle Communications Messaging Server 8.1.0.24.0 Security information disclosure", "creation_timestamp": "2024-02-07T14:11:20.000000Z"}, {"uuid": "3dcb0fed-e528-447b-9402-d640779f37c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181941", "content": "https://ift.tt/qTH13YJ\nCVE-2023-33201 | Oracle WebCenter Portal 12.2.1.4.0 Security Framework information disclosure", "creation_timestamp": "2024-02-09T10:21:56.000000Z"}, {"uuid": "b43bd160-0cda-438b-ac20-74058cb87794", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33202", "type": "seen", "source": "https://t.me/ctinow/173513", "content": "https://ift.tt/7JMsIVU\nCVE-2023-33202 Bouncy Castle Vulnerability in NetApp Products", "creation_timestamp": "2024-01-25T15:26:17.000000Z"}, {"uuid": "a6c2d6ae-9a19-4d4e-8b5e-5ee1eb3790ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181746", "content": "https://ift.tt/pPBG7JL\nCVE-2023-33201 | Oracle Financial Services Revenue Management and Billing up to 6.0.0 Infrastructure information disclosure", "creation_timestamp": "2024-02-09T01:21:39.000000Z"}, {"uuid": "1547a14c-3b82-431d-8f29-58bd9c343405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181738", "content": "https://ift.tt/dVMsv07\nCVE-2023-33201 | Oracle Financial Services Lending and Leasing up to 14.7.0 Internal Operations information disclosure", "creation_timestamp": "2024-02-09T00:51:13.000000Z"}, {"uuid": "cd700b93-1aad-497e-8b2c-df98688f6ce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181940", "content": "https://ift.tt/6lyJ0an\nCVE-2023-33201 | Oracle Managed File Transfer 12.2.1.4.0 MFT Runtime Server information disclosure", "creation_timestamp": "2024-02-09T10:21:55.000000Z"}, {"uuid": "aee4aefd-fed1-4f1c-bc9d-6b52284de64f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181715", "content": "https://ift.tt/3q9ekNb\nCVE-2023-33201 | Oracle Banking Extensibility Workbench up to 14.7.0 Infrastructure information disclosure", "creation_timestamp": "2024-02-09T00:16:30.000000Z"}, {"uuid": "b3eb17a7-65bd-4773-b2cd-cdb6b0e18572", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181709", "content": "https://ift.tt/XgOHnvj\nCVE-2023-33201 | Oracle Banking Corporate Lending Process Management up to 14.7.0 Base information disclosure", "creation_timestamp": "2024-02-08T23:46:22.000000Z"}, {"uuid": "57facb82-cf2e-4a33-b539-5725ebd75d5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181253", "content": "https://ift.tt/62WZa08\nCVE-2023-33201 | Oracle Enterprise Manager Base Platform 13.5.0.0 OCI Framework information disclosure", "creation_timestamp": "2024-02-08T10:11:37.000000Z"}, {"uuid": "23b42a6e-d19f-4f95-b803-50a97544f6b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/cibsecurity/65945", "content": "\u203c CVE-2023-33201 \u203c\n\nBouncy Castle For Java before 1.74 is affected by an LDAP injection vulnerability. The vulnerability only affects applications that use an LDAP CertStore from Bouncy Castle to validate X.509 certificates. During the certificate validation process, Bouncy Castle inserts the certificate's Subject Name into an LDAP search filter without any escaping, which leads to an LDAP injection vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-05T07:24:05.000000Z"}, {"uuid": "a117e784-b1b4-479d-ac61-a90c04276306", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181716", "content": "https://ift.tt/tXd0pEW\nCVE-2023-33201 | Oracle Banking Virtual Account Management up to 14.7.0 Common Core information disclosure", "creation_timestamp": "2024-02-09T00:16:31.000000Z"}, {"uuid": "c3e5dcc9-e5e7-47d6-b616-2746166f0d4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33209", "type": "seen", "source": "https://t.me/ctinow/167853", "content": "https://ift.tt/TnVc2LG\nCVE-2023-33209 | CrawlSpider SEO Change Monitor Plugin up to 1.2 on WordPress sql injection", "creation_timestamp": "2024-01-13T15:21:56.000000Z"}, {"uuid": "a4133083-3267-4974-a763-e6c862377869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3320", "type": "seen", "source": "https://t.me/cibsecurity/65353", "content": "\u203c CVE-2023-3320 \u203c\n\nThe WP Sticky Social plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.1. This is due to missing nonce validation in the ~/admin/views/admin.php file. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-20T07:59:41.000000Z"}, {"uuid": "ca9f108e-faa6-4439-b85d-22cb1237d2b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "Telegram/RfTGg8vUSrTOLkdtujYVvLWm77KzWfIbncFgZxMk7p_wdtg", "content": "", "creation_timestamp": "2023-08-23T03:33:23.000000Z"}]}