{"vulnerability": "CVE-2019-5786", "sightings": [{"uuid": "c3ef31fd-7921-4590-9f49-864958611d0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:04.000000Z"}, {"uuid": "da47fe56-d645-4f5c-a955-9a9f825a3c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://www.exploit-db.com/exploits/46812", "content": "", "creation_timestamp": "2019-05-08T00:00:00.000000Z"}, {"uuid": "2010d9e8-9cd6-4976-83e1-46b9f66a3f0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "MISP/6f1cf1f7-0199-49b7-ba3e-d301f0372930", "content": "", "creation_timestamp": "2024-11-14T06:10:02.000000Z"}, {"uuid": "395e8174-e790-4098-883f-ba092be3a0c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971558", "content": "", "creation_timestamp": "2024-12-24T20:31:06.778028Z"}, {"uuid": "febec06e-cdb0-41fd-af97-ba191b53e2cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:44.000000Z"}, {"uuid": "f1e961b9-a2ba-4f42-a000-d328bedbe1a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d", "content": "", "creation_timestamp": "2025-08-31T03:00:50.000000Z"}, {"uuid": "30b3ff5f-8f68-4e86-907f-1dfa54d2e9d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:16.000000Z"}, {"uuid": "a0cf6827-5107-4875-91b3-cf3cbd0eaa16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:24.000000Z"}, {"uuid": "9ee45ddc-3660-4337-a67f-ac47764ab0b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/N0iSeBit/230", "content": "\u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0439 \u0444\u0430\u043a\u0442, \u0432\u0447\u0435\u0440\u0430\u0448\u043d\u0435\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043b\u044f Chrome \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u043f\u0430\u0442\u0447 \u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2019-5786, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435 \u0441 \u043f\u043e\u043b\u043d\u044b\u043c \u043d\u0430\u0431\u043e\u0440\u043e\u043c, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043f\u043e\u0431\u0435\u0433 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b \u0445\u0440\u043e\u043c\u0430. \u041e \u0447\u0435\u043c \u0413\u0443\u0433\u043b \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b \u0431\u043b\u043e\u0433 \u043f\u043e\u0441\u0442 (https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.html).\n\n\u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0434\u0435\u0442\u0430\u043b\u0438: https://blog.edgespot.io/2019/02/edgespot-detects-pdf-zero-day-samples.html\n\n\u041f\u0435\u0440\u0435\u043f\u0438\u0441\u043a\u0430 \u0432 \u0442\u0440\u0435\u043a\u0435\u0440\u0435 \u0433\u0443\u0433\u043b\u0430: https://bugs.chromium.org/p/chromium/issues/detail?id=917897", "creation_timestamp": "2019-03-07T03:41:42.000000Z"}, {"uuid": "5bad00ed-8f2c-4bf9-8cd6-009c4080afff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=370", "content": "", "creation_timestamp": "2019-03-07T04:00:00.000000Z"}, {"uuid": "69d93d01-f87e-48b0-b239-b43ea8822171", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/ab4ac466-8a55-4c55-9b57-8caa60ccde14", "content": "", "creation_timestamp": "2026-02-02T12:27:44.930792Z"}, {"uuid": "fa1110fd-6e63-4bb4-933c-20f034b592f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/chrome_filereader_uaf.rb", "content": "", "creation_timestamp": "2019-05-08T16:41:01.000000Z"}, {"uuid": "cf1cd53f-6183-484a-a9c2-155cd73aa443", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "https://t.me/antichat/3911", "content": "1 \u043c\u0430\u0440\u0442\u0430 \u043f\u043e\u044f\u0432\u0438\u043b\u0441\u044f \u0440\u0435\u043b\u0438\u0437 Chromium\u2019\u0430, \u0433\u0434\u0435 \u0431\u044b\u043b \u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 use-after-free \u0443\u0432\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 FileReader - CVE-2019-5786. \nhttps://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.html?m=1\n\n6-7 \u043c\u0430\u0440\u0442\u0430 \u043f\u043e\u0434\u043d\u044f\u043b\u0441\u044f \u0445\u0430\u0439\u043f, \u043c\u043d\u043e\u0433\u0438\u0435 \u043d\u0430\u043f\u0438\u0441\u0430\u043b\u0438, \u0447\u0442\u043e in the wild \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043e\u0447\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c RCE \u0432\u043c\u0435\u0441\u0442\u0435 \u0441 sandbox escape\u2019\u043e\u043c.\n\n\u0415\u0441\u043b\u0438 \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u0444\u0438\u043a\u0441: https://chromium.googlesource.com/chromium/src/+/150407e8d3610ff25a45c7c46877333c4425f062, \u0442\u043e \u0432\u0438\u0434\u043d\u043e, \u0447\u0442\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d memory corruption, \u0430 \u0434\u043b\u044f \u0437\u0430\u0448\u0438\u0442\u044b \u043e\u0442 \u0432\u044b\u0445\u043e\u0434\u0430 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b \u043d\u0438\u0447\u0435\u0433\u043e \u043d\u0435 \u0441\u0434\u0435\u043b\u0430\u043d\u043e. \u042d\u0442\u043e \u0432\u0441\u0435 \u0432\u044b\u0433\u043b\u044f\u0434\u0435\u043b\u043e \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u0441\u0442\u0440\u0430\u043d\u043d\u043e \u043d\u0430 \u0444\u043e\u043d\u0435 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0432\u043e\u043b\u043d\u044b.\n\n\u0425\u043e\u0440\u043e\u0448\u043e, \u0447\u0442\u043e 7 \u043c\u0430\u0440\u0442\u0430 \u043f\u043e\u044f\u0432\u0438\u043b\u0430\u0441\u044c \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0442 Google \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u043e 2. \u041e\u0434\u043d\u0430 -  uaf \u0432 \u0445\u0440\u043e\u043c\u0438\u0443\u043c\u0435, \u0430 \u0432\u0442\u043e\u0440\u0430\u044f - null pointer dereference \u0432 Windows 7 x32:  https://security.googleblog.com/2019/03/disclosing-vulnerabilities-to-protect.html. \n\n\u041c\u043e\u0440\u0430\u043b\u044c - \u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u0443\u0439\u0442\u0435 \u0444\u0438\u043a\u0441\u044b,  \u043d\u0435 \u0432\u0441\u0435\u0433\u0434\u0430 \u0442\u0430\u043a \u0441\u0442\u0440\u0430\u0448\u043d\u0430 \u0431\u0430\u0433\u0430, \u043a\u0430\u043a \u043e \u043d\u0435\u0439 \u043f\u0438\u0448\u0443\u0442.", "creation_timestamp": "2019-03-10T14:54:59.000000Z"}, {"uuid": "20aee46e-d572-4cc1-a30d-86c3586f5837", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "published-proof-of-concept", "source": "https://t.me/antichat/4116", "content": "Exodus Intelligence \u043d\u0430\u043f\u0438\u0441\u0430\u043b\u0438 \u043a\u0440\u0443\u0442\u0443\u044e \u0441\u0442\u0430\u0442\u044c\u044e \u043f\u0440\u043e \u0430\u043d\u0430\u043b\u0438\u0437 CVE-2019-5786: \nhttps://blog.exodusintel.com/2019/02/20/cve-2019-5786-analysis-and-exploitation/\n\n\u041a\u043e\u0434 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0442\u043e\u0436\u0435 \u0435\u0441\u0442\u044c (\u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u0441 \u2014no-sandbox):\n\nhttps://github.com/exodusintel/CVE-2019-5786", "creation_timestamp": "2019-03-23T16:54:47.000000Z"}, {"uuid": "5465470b-0450-4f4b-a665-ff81cf1d1826", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/itsec_news/11", "content": "\u041f\u043e\u0434\u0431\u043e\u0440\u043a\u0430 \u043d\u043e\u0432\u043e\u0441\u0442\u0435\u0439 \u0437\u0430 6 \u043c\u0430\u0440\u0442\u0430 2019 \u0433\u043e\u0434\u0430\n\n\u26a1\ufe0f \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Google \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0435\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2019-5786) \u0432 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0435 Chrome, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0443\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0435\u0440\u0441\u0438\u0438 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442-\u043e\u0431\u043e\u0437\u0440\u0435\u0432\u0430\u0442\u0435\u043b\u044f \u0434\u043b\u044f \u0432\u0441\u0435\u0445 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0445 \u0434\u0435\u0441\u043a\u0442\u043e\u043f\u043d\u044b\u0445 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c - Microsoft Windows, Apple macOS \u0438 Linux.    \nhttps://www.securitylab.ru/news/498232.php\n\nZerodium \u043f\u0440\u0435\u0434\u043b\u0430\u0433\u0430\u0435\u0442 \u0434\u043e 500 000 \u0434\u043e\u043b\u043b\u0430\u0440\u043e\u0432 \u0437\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442\u044b \u0434\u043b\u044f Hyper-V \u0438 vSphere\nhttps://xakep.ru/2019/03/06/zerodium-hypervisors/\n\n\u0424\u0421\u0411 \u0437\u0430\u0434\u0435\u0440\u0436\u0430\u043b\u0430 \u043a\u043e\u0432\u0440\u043e\u0432\u0441\u043a\u043e\u0433\u043e \u0445\u0430\u043a\u0435\u0440\u0430, \u0432\u0437\u043b\u043e\u043c\u0430\u0432\u0448\u0435\u0433\u043e \u0441\u0430\u0439\u0442 \u0420\u0410\u041d\u0425\u0438\u0413\u0421\nhttps://progorod33.ru/news/47472\n\n\u0425\u0430\u043a\u0435\u0440\u044b \u043f\u043e\u0445\u0438\u0449\u0430\u043b\u0438 \u0434\u0430\u043d\u043d\u044b\u0435 \u043a\u0430\u0440\u0442 \u0447\u0435\u0440\u0435\u0437 \u0444\u0435\u0439\u043a\u043e\u0432\u043e\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 AvitoPay\nhttps://bankir.ru/novosti/20190306/khakery-pokhishchali-dannye-kart-cherez-feikovoe-prilozhenie-avitopay-10156510/\n\n\u26a1\ufe0f \u041f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u0434\u043b\u044f Android \u0443\u043b\u0438\u0447\u0438\u043b\u0438 \u0432 \u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0435\nhttps://life.ru/t/\u0433\u0430\u0434\u0436\u0435\u0442\u044b/1198790/populiarnyie_prilozhieniia_dlia_android_ulichili_v_shpionazhie\n\n\u0418\u0411-\u044d\u043a\u0441\u043f\u0435\u0440\u0442 \u041f\u0430\u0442\u0440\u0438\u043a \u0423\u043e\u0440\u0434\u043b (Patrick Wardle) \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043b \u0438\u043d\u043d\u043e\u0432\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0439 \u0441\u043f\u043e\u0441\u043e\u0431 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0438 \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u043a\u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e \u0438 \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442\u043e\u0432 \u043d\u0430 Mac. \nhttps://www.securitylab.ru/news/498236.php\n\n\u00ab\u041f\u0438\u0440\u0430\u0442\u0441\u043a\u0430\u044f \u043c\u0430\u0442\u0440\u0435\u0448\u043a\u0430\u00bb \u0430\u0442\u0430\u043a\u0443\u0435\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 The Pirate Bay\nhttps://www.securitylab.ru/news/498234.php", "creation_timestamp": "2019-03-06T18:07:21.000000Z"}, {"uuid": "5390c9bc-ca58-4a2e-99d6-c0b6220f0d7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "published-proof-of-concept", "source": "https://t.me/R0_Crew/1017", "content": "Analysis of a Chrome Zero Day: CVE-2019-5786\n\nhttps://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/analysis-of-a-chrome-zero-day-cve-2019-5786/\n\n#re #expdev #browser #filereader #win32 #darw1n", "creation_timestamp": "2019-04-09T01:06:32.000000Z"}, {"uuid": "0e244ea1-85db-4162-809a-7cdf4e6f389a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "https://t.me/alexmakus/2696", "content": "\u0412\u0447\u0435\u0440\u0430 Google \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043d\u0435\u0431\u043e\u043b\u044c\u0448\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043a Chrome \u0434\u043b\u044f \u0432\u0441\u0435\u0445 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c \u0441 \u0441\u043e\u0432\u0435\u0440\u0448\u0435\u043d\u043d\u043e \u043f\u0440\u043e\u0441\u0442\u044b\u043c \u0438 \u043b\u0435\u0433\u043a\u043e \u0437\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u044e\u0449\u0438\u043c\u0441\u044f \u043d\u043e\u043c\u0435\u0440\u043e\u043c \u0432\u0435\u0440\u0441\u0438\u0438 72.0.3626.121. \u041e\u043a\u0430\u0437\u0430\u043b\u043e\u0441\u044c, \u0447\u0442\u043e \u0430\u043f\u0434\u0435\u0439\u0442 \u0431\u044b\u043b \u0432\u044b\u043f\u0443\u0449\u0435\u043d \u0434\u043b\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f CVE-2019-5786, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0432\u0448\u0435\u0439 \u0441\u0430\u0439\u0442\u0430\u043c, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044f FileReader API, \u0447\u0438\u0442\u0430\u0442\u044c \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u0435 \u0438 \u0438\u0441\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u043a\u043e\u0434. \u0411\u0440\u0430\u0443\u0437\u0435\u0440 \u043a\u0440\u0430\u0439\u043d\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043a \u0430\u043f\u0434\u0435\u0439\u0442\u0443, \u0435\u0441\u043b\u0438 \u043e\u043d \u0443 \u0432\u0430\u0441 \u043f\u043e\u0447\u0435\u043c\u0443-\u0442\u043e \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043d\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u043b\u0441\u044f.\nhttps://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.html", "creation_timestamp": "2019-03-07T04:42:27.000000Z"}, {"uuid": "b20881f6-9c71-4411-9b07-e212871254c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/br0wsec/77", "content": "1 \u043c\u0430\u0440\u0442\u0430 \u043f\u043e\u044f\u0432\u0438\u043b\u0441\u044f \u0440\u0435\u043b\u0438\u0437 Chromium\u2019\u0430, \u0433\u0434\u0435 \u0431\u044b\u043b \u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 use-after-free \u0443\u0432\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 FileReader - CVE-2019-5786. \nhttps://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.html?m=1\n\n6-7 \u043c\u0430\u0440\u0442\u0430 \u043f\u043e\u0434\u043d\u044f\u043b\u0441\u044f \u0445\u0430\u0439\u043f, \u043c\u043d\u043e\u0433\u0438\u0435 \u043d\u0430\u043f\u0438\u0441\u0430\u043b\u0438, \u0447\u0442\u043e in the wild \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043e\u0447\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c RCE \u0432\u043c\u0435\u0441\u0442\u0435 \u0441 sandbox escape\u2019\u043e\u043c.\n\n\u0415\u0441\u043b\u0438 \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u0444\u0438\u043a\u0441: https://chromium.googlesource.com/chromium/src/+/150407e8d3610ff25a45c7c46877333c4425f062, \u0442\u043e \u0432\u0438\u0434\u043d\u043e, \u0447\u0442\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d memory corruption, \u0430 \u0434\u043b\u044f \u0437\u0430\u0448\u0438\u0442\u044b \u043e\u0442 \u0432\u044b\u0445\u043e\u0434\u0430 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b \u043d\u0438\u0447\u0435\u0433\u043e \u043d\u0435 \u0441\u0434\u0435\u043b\u0430\u043d\u043e. \u042d\u0442\u043e \u0432\u0441\u0435 \u0432\u044b\u0433\u043b\u044f\u0434\u0435\u043b\u043e \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u0441\u0442\u0440\u0430\u043d\u043d\u043e \u043d\u0430 \u0444\u043e\u043d\u0435 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0432\u043e\u043b\u043d\u044b.\n\n\u0425\u043e\u0440\u043e\u0448\u043e, \u0447\u0442\u043e 7 \u043c\u0430\u0440\u0442\u0430 \u043f\u043e\u044f\u0432\u0438\u043b\u0430\u0441\u044c \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0442 Google \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u043e 2. \u041e\u0434\u043d\u0430 -  uaf \u0432 \u0445\u0440\u043e\u043c\u0438\u0443\u043c\u0435, \u0430 \u0432\u0442\u043e\u0440\u0430\u044f - null pointer dereference \u0432 Windows 7 x32:  https://security.googleblog.com/2019/03/disclosing-vulnerabilities-to-protect.html. \n\n\u041c\u043e\u0440\u0430\u043b\u044c - \u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u0443\u0439\u0442\u0435 \u0444\u0438\u043a\u0441\u044b,  \u043d\u0435 \u0432\u0441\u0435\u0433\u0434\u0430 \u0442\u0430\u043a \u0441\u0442\u0440\u0430\u0448\u043d\u0430 \u0431\u0430\u0433\u0430, \u043a\u0430\u043a \u043e \u043d\u0435\u0439 \u043f\u0438\u0448\u0443\u0442.", "creation_timestamp": "2019-03-10T08:53:25.000000Z"}, {"uuid": "53d5a4f8-c6cd-4deb-9153-2976a65ba36d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "published-proof-of-concept", "source": "https://t.me/br0wsec/80", "content": "Exodus Intelligence \u043d\u0430\u043f\u0438\u0441\u0430\u043b\u0438 \u043a\u0440\u0443\u0442\u0443\u044e \u0441\u0442\u0430\u0442\u044c\u044e \u043f\u0440\u043e \u0430\u043d\u0430\u043b\u0438\u0437 CVE-2019-5786: \nhttps://blog.exodusintel.com/2019/02/20/cve-2019-5786-analysis-and-exploitation/\n\n\u041a\u043e\u0434 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0442\u043e\u0436\u0435 \u0435\u0441\u0442\u044c (\u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u0441 \u2014no-sandbox):\n\nhttps://github.com/exodusintel/CVE-2019-5786", "creation_timestamp": "2019-03-23T16:16:19.000000Z"}, {"uuid": "9f42d969-92bd-4750-9f7f-87e3e660962a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/itsecalert/121", "content": "\u26a0\ufe0fChrome and Windows zero-day update, including CVE-2019-5786\n\nGoogle has issued a more detailed announcement regarding CVE-2019-5786.  This announcement includes new information about how the vulnerability was being exploited in the wild.  The Chrome exploit was combined with a Windows 7 zero-day that remains unpatched.  The Windows vulnerability permits local privilege escalation.\n\nGoogle believes that security additions in Windows 10 makes attacks against the newer OS unrealistic, if not impossible:\n\n\"We strongly believe this vulnerability may only be exploitable on Windows 7 due to recent exploit mitigations added in newer versions of Windows. To date, we have only observed active exploitation against Windows 7 32-bit systems.\"\n\nAs it's likely that no patch will be available for the Windows 7 vulnerability for some time, Google's only mitigation advice is to upgrade to Windows 10:\n\n\"As mitigation advice for this vulnerability users should consider upgrading to Windows 10 if they are still running an older version of Windows, and to apply Windows patches from Microsoft when they become available. We will update this post when they are available.\"\n\nNo IOCs or alternative mitigations have been disclosed.\n\n(Severity: \ud83d\udd38high)\n\nAnnouncement: https://security.googleblog.com/2019/03/disclosing-vulnerabilities-to-protect.html\n\n#alert #severityHigh #vulnerability #browser #chrome #windows #rce #uaf #privilegeEscalation #exploitedNow #zeroDay #CVE20195786", "creation_timestamp": "2019-03-08T05:38:46.000000Z"}, {"uuid": "15714bd9-a7a0-4b07-b578-1f5e90c48f24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "https://t.me/ctinow/8740", "content": "Chrome 72.0.3626.121 for Linux, Windows, and macOS released. Fixes CVE-2019-5786: Use-after-free in FileReader. Not much else of interest.\nhttps://t.co/f39cPdue8B http://twitter.com/BleepinComputer/status/1101606240566824961", "creation_timestamp": "2019-03-01T23:16:24.000000Z"}, {"uuid": "07aac412-69df-4dc4-8923-dc10e8b0fc7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/thehackernews/213", "content": "\u26a0\ufe0f Important \u2014 Update your Google Chrome immediately to patch a new high-severity 0-day RCE vulnerability (CVE-2019-5786) that hackers are actively exploiting in the wild\n\nhttps://thehackernews.com/2019/03/update-google-chrome-hack.html\n\nPatched Chrome version 72.0.3626.121 has been released for Windows, macOS, Linux", "creation_timestamp": "2019-03-06T10:58:20.000000Z"}, {"uuid": "7b06bc93-47da-45dc-91b6-63746081cc1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/itsecalert/120", "content": "\u26a0\ufe0fChrome/Chromium zero-day RCE (CVE-2019-5786), actively exploited in the wild. Affected Versions: &lt; 72.0.3626.121\n\nInformation is beginning to circulate regarding CVE-2019-5786, a use-after-free (UAF) vulnerability in Chrome's FileReader API.  The Chrome security team has indicated that it is being actively exploited in the wild.  Details are limited, but the vulnerability is believed to permit remote code execution (RCE).\n\nSome news sources have conflated this with another, less severe issue spotted by EdgeSpot relating to PDF files.  Both EdgeSpot and Google have indicated that the issues are unrelated.\n\nCVE-2019-5786 has been patched in Chrome version 72.0.3626.121, currently available on the stable channel.  Other Chromium-based browsers, such as Vivaldi, may or may not be affected.\n\n(Severity: \ud83d\udd38high)\n\nAdditional information:\n\n- Announcement from Google: https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.html\n- Chromium bug (not yet public): https://bugs.chromium.org/p/chromium/issues/detail?id=936448\n- Tweet from a Chrome security engineer: https://twitter.com/justinschuh/status/1103087046661267456\n- Patch: https://github.com/chromium/chromium/blob/ba9748e78ec7e9c0d594e7edf7b2c07ea2a90449/third_party/blink/renderer/platform/wtf/typed_arrays/array_buffer_builder.h#L63-L67\n- Patch review: https://chromium-review.googlesource.com/c/1492873 and https://chromium-review.googlesource.com/c/1495209\n- Technical explanation: https://news.ycombinator.com/item?id=19325083\n- Sophos: https://nakedsecurity.sophos.com/2019/03/06/serious-chrome-zero-day-google-says-update-right-this-minute/\n- Forbes (conflates CVE-2019-5786 and the PDF issue reported by EdgeSpot): https://www.forbes.com/sites/daveywinder/2019/03/07/google-confirms-serious-chrome-security-problem-heres-how-to-fix-it/\n\n#alert #severityHigh #vulnerability #browser #chrome #rce #uaf #CVE20195786", "creation_timestamp": "2019-03-07T18:04:36.000000Z"}, {"uuid": "99d603de-104e-4c9b-90e2-722d39af85a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "seen", "source": "Telegram/P_55f7pUPwNGZYKZLITK3vBvWiQOl5osYzrDkDElL9CvSnMR", "content": "", "creation_timestamp": "2025-02-06T02:39:17.000000Z"}, {"uuid": "6294018a-672c-4aef-ba89-893b39a052ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/secinfosex/33", "content": "\u26a0\ufe0f\u041e\u0431\u043d\u043e\u0432\u043b\u044f\u0439\u0442\u0435 Google Chrome \u0434\u043e 80.0.3987.122\n\nCVE-2020-6418: type confusion vulnerability in V8, Google Chrome\u2019s open-source JavaScript and WebAssembly engine. It was discovered and reported by Cl\u00e9ment Lecigne, security engineer of Google\u2019s Threat Analysis Group (TAG). Last year, Lecigne was credited with finding and reporting CVE-2019-5786, a use-after-free vulnerability in Google Chrome that was also exploited in the wild.\n\nhttps://www.tenable.com/blog/cve-2020-6418-google-chrome-type-confusion-vulnerability-exploited-in-the-wild\n\nhttps://bugs.chromium.org/p/chromium/issues/detail?id=1053604\n\n#chrome #exploit #in_the_wild", "creation_timestamp": "2020-02-26T02:58:18.000000Z"}, {"uuid": "98cc5602-c9ed-48ae-ae67-6dee3eb6a4f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/SecLabNews/4419", "content": "\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Google \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0435\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2019-5786) \u0432 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0435 Chrome, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0443\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0435\u0440\u0441\u0438\u0438 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442-\u043e\u0431\u043e\u0437\u0440\u0435\u0432\u0430\u0442\u0435\u043b\u044f \u0434\u043b\u044f \u0432\u0441\u0435\u0445 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0445 \u0434\u0435\u0441\u043a\u0442\u043e\u043f\u043d\u044b\u0445 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c - Microsoft Windows, Apple macOS \u0438 Linux.    \n\u0412 Google Chrome \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f 0Day-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c", "creation_timestamp": "2019-03-06T11:57:04.000000Z"}, {"uuid": "bea149e7-5899-4630-ae99-a7a6d4dbd56a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-5786", "type": "exploited", "source": "https://t.me/SecLabNews/4435", "content": "Google \u0440\u0430\u0441\u043a\u0440\u044b\u043b\u0430 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043e\u0431 \u0430\u0442\u0430\u043a\u0430\u0445, \u0432 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0440\u0430\u043d\u0435\u0435 \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2019-5786) \u0432 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0435 Chrome, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u0443\u044e \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 \u0441 \u0432\u044b\u043f\u0443\u0441\u043a\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Chrome 72.0.3626.121 \u0434\u043b\u044f Windows, Mac \u0438 Linux. \u041a\u0430\u043a \u043e\u043a\u0430\u0437\u0430\u043b\u043e\u0441\u044c, \u043d\u0430\u0440\u044f\u0434\u0443 \u0441 \u0432\u044b\u0448\u0435\u043e\u0437\u043d\u0430\u0447\u0435\u043d\u043d\u044b\u043c \u0431\u0430\u0433\u043e\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f \u0432 \u041e\u0421 Windows 7 \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u0438 \u043f\u0435\u0440\u0435\u0445\u0432\u0430\u0442\u0430 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u043d\u0430\u0434 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c\u0438 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u043c\u0438.    \nGoogle \u0440\u0430\u0441\u043a\u0440\u044b\u043b\u0430 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u043e 0Day-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Windows 7", "creation_timestamp": "2019-03-09T10:18:16.000000Z"}]}