{"vulnerability": "cve-2023-4041", "sightings": [{"uuid": "01a9d8da-b152-414e-8639-7df90acda0d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40413", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lxuyhxktljg2", "content": "", "creation_timestamp": "2025-09-02T20:49:42.285574Z"}, {"uuid": "23c33236-33c4-444a-a72f-5de550e17091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4041", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-140-06", "content": "", "creation_timestamp": "2025-05-20T10:00:00.000000Z"}, {"uuid": "869e8df9-2e39-448f-92e7-40ad869a4f40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4041", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-153-01", "content": "", "creation_timestamp": "2025-06-03T10:00:00.000000Z"}, {"uuid": "0200a305-65d2-49d2-8387-ae0092fd14ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40412", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14879", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-40412\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges.\n\ud83d\udccf Published: 2023-09-26T20:14:47.601Z\n\ud83d\udccf Modified: 2025-05-05T15:11:26.788Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/HT213938\n2. https://support.apple.com/en-us/HT213932\n3. https://support.apple.com/en-us/HT213931\n4. https://support.apple.com/en-us/HT213936\n5. https://support.apple.com/en-us/HT213937\n6. http://seclists.org/fulldisclosure/2023/Oct/5\n7. http://seclists.org/fulldisclosure/2023/Oct/10\n8. http://seclists.org/fulldisclosure/2023/Oct/6\n9. http://seclists.org/fulldisclosure/2023/Oct/8\n10. http://seclists.org/fulldisclosure/2023/Oct/9", "creation_timestamp": "2025-05-05T15:20:03.000000Z"}, {"uuid": "817c9ce7-e184-49a2-b6c6-70c74df85fab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40418", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14887", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-40418\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An authentication issue was addressed with improved state management. This issue is fixed in watchOS 10. An Apple Watch Ultra may not lock when using the Depth app.\n\ud83d\udccf Published: 2023-09-26T20:15:00.172Z\n\ud83d\udccf Modified: 2025-05-05T14:59:47.563Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/HT213937\n2. http://seclists.org/fulldisclosure/2023/Oct/9", "creation_timestamp": "2025-05-05T15:20:14.000000Z"}, {"uuid": "bda541c9-166d-455f-96c6-b665489b8531", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40419", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14886", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-40419\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to gain elevated privileges.\n\ud83d\udccf Published: 2023-09-26T20:14:57.130Z\n\ud83d\udccf Modified: 2025-05-05T14:59:53.902Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/HT213938\n2. https://support.apple.com/en-us/HT213936\n3. https://support.apple.com/en-us/HT213937\n4. http://seclists.org/fulldisclosure/2023/Oct/10\n5. http://seclists.org/fulldisclosure/2023/Oct/8\n6. http://seclists.org/fulldisclosure/2023/Oct/9", "creation_timestamp": "2025-05-05T15:20:12.000000Z"}, {"uuid": "d2bc1a07-461e-48fd-9c1a-6163dde4aae4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4041", "type": "seen", "source": "https://t.me/true_secator/7040", "content": "\u0413\u0438\u0433\u0430\u043d\u0442\u044b \u043f\u0440\u043e\u043c\u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438 Siemens, Schneider Electric \u0438 Phoenix Contact \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b\u0438 \u0441\u0432\u043e\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 ICS Patch Tuesday \u0437\u0430 \u043c\u0430\u0439 2025 \u0433\u043e\u0434\u0430.\n\n\u0411\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u043e\u043f\u0438\u0441\u0430\u043d\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b, \u043d\u043e \u0434\u043b\u044f \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u043e\u0432 \u0432 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u043b\u0438\u0448\u044c \u043c\u0435\u0440\u044b \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0439 \u0438 \u043e\u0431\u0445\u043e\u0434\u043d\u044b\u0435 \u043f\u0443\u0442\u0438.\n\nSiemens \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430 18 \u043d\u043e\u0432\u044b\u0445 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0447\u0435\u0442\u044b\u0440\u0435, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043e\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u044e\u0442 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u041e\u0434\u0438\u043d \u0438\u0437 \u043d\u0438\u0445 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0432 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0435 Redfish \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u0430 BMC, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0433\u043e \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u043c\u0438 \u041f\u041a Simatic.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0431\u044b\u043b \u0440\u0430\u0441\u043a\u0440\u044b\u0442 Eclypsium \u0435\u0449\u0435 \u0432 \u043c\u0430\u0440\u0442\u0435.\n\n\u0414\u0440\u0443\u0433\u043e\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 OZW, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0434\u043b\u044f RCE \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 root, \u0438 \u0435\u0449\u0435 \u043e\u0434\u043d\u0443 \u043e\u0448\u0438\u0431\u043a\u0443, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0434\u043b\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430.\n\n\u0422\u0440\u0438 \u0438\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 root \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 Ruggedcom ROX II, \u0442\u0430\u043a\u0436\u0435 \u0431\u044b\u043b\u0438 \u043a\u043b\u0430\u0441\u0441\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u043a\u0430\u043a \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435.\n\nSiemens \u0442\u0430\u043a\u0436\u0435 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 BlastRADIUS, \u0432 \u0447\u0430\u0441\u0442\u043d\u043e\u0441\u0442\u0438, \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u044f \u0435\u0435 \u0432\u043b\u0438\u044f\u043d\u0438\u0435 \u043d\u0430 Siprotec, Sicam \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b.\n\n\u041f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u0430\u043d\u043e\u043d\u0441\u0438\u0440\u043e\u0432\u0430\u043b \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 \u0437\u0430\u0440\u044f\u0434\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 VersiCharge EV, \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 Simatic PCS neo, Desigo CC, Scalance, Sirius, Intralog \u0438 Teamcenter Visualization.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441\u0440\u0435\u0434\u043d\u0435\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438  \u0431\u044b\u043b\u0438 \u0437\u0430\u043a\u0440\u044b\u0442\u044b \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 Polarion, BACnet, MS/TP Point Pickup Module, Mendix \u0438 Ruggedcom.\n\nSchneider Electric \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0430\u0441\u044c \u0447\u0435\u0442\u044b\u0440\u044c\u043c\u044f \u043d\u043e\u0432\u044b\u043c\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u043c\u0438, \u043a\u0430\u0436\u0434\u0430\u044f \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u043f\u043e \u043e\u0434\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u0414\u0432\u0435 \u043f\u043e\u0441\u0432\u044f\u0449\u0435\u043d\u044b \u0432\u043b\u0438\u044f\u043d\u0438\u044e CVE-2023-4041, \u0431\u043e\u043b\u0435\u0435 \u0441\u0442\u0430\u0440\u043e\u0433\u043e \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430 \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a\u0430 Silicon Labs Gecko, \u043d\u0430 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b \u0434\u043e\u043c\u0430\u0448\u043d\u0435\u0439 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438 PrismaSeT Active \u0438 Wiser.\n\n\u0412 \u043e\u0434\u043d\u043e\u0439 \u0438\u0437 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u0432\u043b\u0438\u044f\u043d\u0438\u0435 CVE-2025-32433, \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u0438 Erlang/OTP SSH, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u0430\u0435\u0442 \u043c\u043d\u043e\u0433\u0438\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u043f\u043e\u043b\u043d\u043e\u0439 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438.\n\nSchneider \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0438\u043b\u0430, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u043b\u0438\u044f\u0435\u0442 \u043d\u0430 \u0435\u0435 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b Galaxy data center UPS.\n\n\u0412 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u043c \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0438 Schneider \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043c\u043e\u0436\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0432 \u041f\u041b\u041a Modicon.\n\nPhoenix Contact\u00a0\u0443\u0432\u0435\u0434\u043e\u043c\u0438\u043b\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432, \u0447\u0442\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u0435\u0435 \u0448\u0438\u043d\u043d\u044b\u0445 \u0441\u043e\u0435\u0434\u0438\u043d\u0438\u0442\u0435\u043b\u0435\u0439 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b DoS-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0432 \u0445\u043e\u0434\u0435 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u0435\u0442\u0438.\n\n\u041d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0447\u0442\u043e\u0431\u044b \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u0441\u0431\u043e\u0439, \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0432 \u0431\u043e\u043b\u044c\u0448\u043e\u0435 \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u043e \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043d\u0430 \u043f\u043e\u0440\u0442 80.", "creation_timestamp": "2025-05-16T17:00:08.000000Z"}, {"uuid": "f0d86631-6091-44c4-aacc-82840c0c7f65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40415", "type": "published-proof-of-concept", "source": "https://t.me/poxek/4051", "content": "ChatGPT \u043f\u043e\u043c\u043e\u0433 \u0437\u0430\u0440\u0430\u0431\u043e\u0442\u0430\u0442\u044c $28 000 \u043d\u0430 0-day.\n\n\u0411\u0430\u0437\u043e\u0432\u044b\u0439 XXE-\u043f\u0435\u0439\u043b\u043e\u0430\u0434 \u0432\u044b\u0433\u043b\u044f\u0434\u0438\u0442 \u043a\u0430\u043a-\u0442\u043e \u0442\u0430\u043a\n\n ]&gt;\n&amp;xxe;\n\n\u041c\u043e\u0436\u043d\u043e \u0437\u0430\u043b\u0438\u0442\u044c \u0444\u0430\u0439\u043b \u0441 \u0442\u0430\u043a\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u044b\u043c \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440 \u0438, \u0435\u0441\u043b\u0438 \u0443 \u043b\u0438\u0431\u044b, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0435\u0433\u043e \u0440\u0430\u0441\u043f\u0430\u0440\u0441\u0438\u0442, \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0443\u0449\u043d\u043e\u0441\u0442\u0435\u0439, \u043d\u0430 \u0432\u044b\u0445\u043e\u0434\u0435 \u043c\u044b \u043f\u043e\u043b\u0443\u0447\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 /etc/passwd.\n\n\u042d\u0442\u043e \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a, \u043d\u043e \u043d\u0435 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u043e\u0432. \u0415\u0441\u043b\u0438 \u0432\u044b \u043e\u0442\u043a\u0440\u043e\u0435\u0442\u0435 \u043d\u0435\u0447\u0442\u043e \u043f\u043e\u0434\u043e\u0431\u043d\u043e\u0435 \u0443 \u0441\u0435\u0431\u044f \u0432 Chrome, \u0442\u043e \u043d\u0438\u0447\u0435\u0433\u043e \u043d\u0435 \u0441\u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442, \u0442.\u043a. \u0432 \u043d\u0435\u043c external entities \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u044b \u043f\u043e \u0434\u0435\u0444\u043e\u043b\u0442\u0443.\n\n\u041d\u043e \u0432\u044b\u044f\u0441\u043d\u0438\u043b\u0441\u044f \u0437\u0430\u0431\u0430\u0432\u043d\u044b\u0439 \u0444\u0430\u043a\u0442. \n\n\u041f\u043e\u043c\u0438\u043c\u043e XML, \u0441\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u044b\u0435 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u044b \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u044e\u0442 \u0435\u0449\u0435 \u043c\u043d\u043e\u0433\u043e \u0444\u043e\u0440\u043c\u0430\u0442\u043e\u0432, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, XSL. \u042d\u0442\u043e \u0441\u0442\u0430\u0440\u0430\u044f \u0441\u043f\u0435\u043a\u0430, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043d\u0430\u0434\u0441\u0442\u0440\u043e\u0439\u043a\u043e\u0439 \u043d\u0430\u0434 XML \u0441\u043e \u0441\u0432\u043e\u0438\u043c\u0438 \u0434\u0438\u0440\u0435\u043a\u0442\u0438\u0432\u0430\u043c\u0438.\n\n\u041e \u043d\u0435\u043c \u0438 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0442\u0430\u043c \u0442\u043e\u0436\u0435 \u043c\u043e\u0436\u043d\u043e \u043e\u0431\u044a\u044f\u0432\u043b\u044f\u0442\u044c \u0432\u043d\u0435\u0448\u043d\u0438\u0435 \u0441\u0443\u0449\u043d\u043e\u0441\u0442\u0438, \u043f\u043e\u0447\u0435\u043c\u0443-\u0442\u043e \u0432\u0441\u0435 \u0437\u0430\u0431\u044b\u043b\u0438, \u043d\u043e \u043d\u0430\u043f\u043e\u043c\u043d\u0438\u043b ChatGPT. \u041e\u043d \u043f\u043e\u0434\u0441\u043a\u0430\u0437\u0430\u043b, \u0447\u0442\u043e \u044d\u0442\u043e \u043c\u043e\u0436\u043d\u043e \u0434\u0435\u043b\u0430\u0442\u044c \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0434\u0438\u0440\u0435\u043a\u0442\u0438\u0432\u044b, \u0432\u0440\u043e\u0434\u0435\n\n\u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0434\u0433\u0440\u0443\u0437\u0438\u0442 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435, \u0432\u043e\u043f\u0440\u0435\u043a\u0438 \u0432\u0441\u0435\u043c \u0437\u0430\u043f\u0440\u0435\u0442\u0430\u043c.\n\n\u041f\u043e\u044d\u0442\u043e\u043c\u0443 \u043f\u043e\u043b\u043d\u0430\u044f \u0446\u0435\u043f\u043e\u0447\u043a\u0430 \u0432\u044b\u0433\u043b\u044f\u0434\u0438\u0442 \u0442\u0430\u043a:\n1. \u0421\u043e\u0437\u0434\u0430\u0435\u043c XSL \u043f\u0435\u0439\u043b\u043e\u0430\u0434 \u0441 \u0444\u0443\u043d\u043a\u0446\u0438\u0435\u0439 document()\n2. \u0418\u043c\u043f\u043e\u0440\u0442\u0438\u0440\u0443\u0435\u043c \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u043d\u043e\u0435 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 \u043a\u0430\u043a \u0432\u043d\u0435\u0448\u043d\u044e\u044e \u0441\u0443\u0449\u043d\u043e\u0441\u0442\u044c \u0432 XML\n3. \u0413\u043e\u0442\u043e\u0432\u044b\u0439 XML-\u043f\u0435\u0439\u043b\u043e\u0430\u0434 \u0432\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u043c \u0432 SVG-\u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0443 \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c \u043f\u043e \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u044e ;)\n\n\ud83d\udcb0 \u0412\u044b\u043f\u043b\u0430\u0442\u044b\nApple (CVE-2023-40415): $25 000\nGoogle (CVE-2023-4357): $3 000", "creation_timestamp": "2024-05-22T17:39:21.000000Z"}, {"uuid": "ef8805fc-5c47-45d1-883d-43306abf82c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40411", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18644", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-40411\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: This issue was addressed with improved data protection. This issue is fixed in macOS Sonoma 14. An app may be able to access user-sensitive data.\n\ud83d\udccf Published: 2024-01-10T22:03:21.172Z\n\ud83d\udccf Modified: 2025-06-17T17:02:13.115Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/HT213940", "creation_timestamp": "2025-06-17T17:42:25.000000Z"}, {"uuid": "6e2f13ea-3893-468a-9c06-01086d193322", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40412", "type": "seen", "source": "https://t.me/cibsecurity/71069", "content": "\u203c CVE-2023-40412 \u203c\n\nThe issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-27T18:36:09.000000Z"}, {"uuid": "5c7e672b-a6f5-4af3-80c3-165c022f2237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40417", "type": "seen", "source": "https://t.me/cibsecurity/71116", "content": "\u203c CVE-2023-40417 \u203c\n\nA window management issue was addressed with improved state management. This issue is fixed in Safari 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Visiting a website that frames malicious content may lead to UI spoofing.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-27T18:48:56.000000Z"}, {"uuid": "a58ffee5-97a3-4c5e-bf84-b9d3373a9fe9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40413", "type": "seen", "source": "https://t.me/cibsecurity/72831", "content": "\u203c CVE-2023-40413 \u203c\n\nThe issue was addressed with improved handling of caches. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Monterey 12.7.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. An app may be able to read sensitive location information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-25T22:39:16.000000Z"}, {"uuid": "bbeff45e-9f2d-4c42-b1a0-dbe31db4cb38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40419", "type": "seen", "source": "https://t.me/cibsecurity/71129", "content": "\u203c CVE-2023-40419 \u203c\n\nThe issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to gain elevated privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-27T18:49:10.000000Z"}, {"uuid": "a3797888-4f69-45bc-ac60-86d7dba1bd54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40414", "type": "seen", "source": "https://t.me/ctinow/166219", "content": "https://ift.tt/jYsBPLM\nCVE-2023-40414", "creation_timestamp": "2024-01-10T23:26:48.000000Z"}, {"uuid": "9d07025e-7af8-4ee7-9ae3-69d49fd10c50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40414", "type": "seen", "source": "https://t.me/ctinow/170798", "content": "https://ift.tt/J4j1mde\nCVE-2023-40414 | Apple macOS WebKit use after free", "creation_timestamp": "2024-01-21T10:41:35.000000Z"}, {"uuid": "d95c3188-91e6-44d5-a920-8bf725947790", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40411", "type": "seen", "source": "https://t.me/ctinow/170786", "content": "https://ift.tt/MQntOve\nCVE-2023-40411 | Apple macOS FileProvider Privilege Escalation", "creation_timestamp": "2024-01-21T09:36:28.000000Z"}, {"uuid": "1786ef34-b333-47ba-940f-39d42955588e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40414", "type": "seen", "source": "https://t.me/ctinow/175748", "content": "https://ift.tt/HgqleYw\nCVE-2023-40414 | Apple tvOS Web Contents use after free", "creation_timestamp": "2024-01-30T08:41:32.000000Z"}, {"uuid": "6c62ab29-8d20-4dec-bfad-3cebf9913de4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40414", "type": "seen", "source": "https://t.me/ctinow/175747", "content": "https://ift.tt/Ti9hjHF\nCVE-2023-40414 | Apple watchOS Web Contents use after free", "creation_timestamp": "2024-01-30T08:41:31.000000Z"}, {"uuid": "56b843d6-1141-40e1-b76b-280fec3ea3cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40414", "type": "seen", "source": "https://t.me/ctinow/175746", "content": "https://ift.tt/WFbSmNG\nCVE-2023-40414 | Apple iOS/iPadOS Web Contents use after free", "creation_timestamp": "2024-01-30T08:41:29.000000Z"}, {"uuid": "7e064f14-1d95-4306-be12-986a0d75d216", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40411", "type": "seen", "source": "https://t.me/ctinow/166218", "content": "https://ift.tt/6TmZsIF\nCVE-2023-40411", "creation_timestamp": "2024-01-10T23:26:47.000000Z"}, {"uuid": "54b0e8e4-4c10-4ac7-bb58-39b7913a255d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4041", "type": "seen", "source": "https://t.me/cibsecurity/69045", "content": "\u203c CVE-2023-4041 \u203c\n\nBuffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Out-of-bounds Write, Download of Code Without Integrity Check vulnerability in Silicon Labs Gecko Bootloader on ARM (Firmware Update File Parser modules) allows Code Injection, Authentication Bypass.This issue affects \"Standalone\" and \"Application\" versions of Gecko Bootloader.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-23T12:17:21.000000Z"}, {"uuid": "801c13a1-09d0-49b7-acce-5179badb48cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40415", "type": "published-proof-of-concept", "source": "https://t.me/S_E_Reborn/4775", "content": "ChatGPT \u043f\u043e\u043c\u043e\u0433 \u0437\u0430\u0440\u0430\u0431\u043e\u0442\u0430\u0442\u044c $28 000 \u043d\u0430 0-day.\n\n\u0411\u0430\u0437\u043e\u0432\u044b\u0439 XXE-\u043f\u0435\u0439\u043b\u043e\u0430\u0434 \u0432\u044b\u0433\u043b\u044f\u0434\u0438\u0442 \u043a\u0430\u043a-\u0442\u043e \u0442\u0430\u043a\n\n ]&gt;\n&amp;xxe;\n\n\u041c\u043e\u0436\u043d\u043e \u0437\u0430\u043b\u0438\u0442\u044c \u0444\u0430\u0439\u043b \u0441 \u0442\u0430\u043a\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u044b\u043c \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440 \u0438, \u0435\u0441\u043b\u0438 \u0443 \u043b\u0438\u0431\u044b, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0435\u0433\u043e \u0440\u0430\u0441\u043f\u0430\u0440\u0441\u0438\u0442, \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0443\u0449\u043d\u043e\u0441\u0442\u0435\u0439, \u043d\u0430 \u0432\u044b\u0445\u043e\u0434\u0435 \u043c\u044b \u043f\u043e\u043b\u0443\u0447\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 /etc/passwd.\n\n\u042d\u0442\u043e \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a, \u043d\u043e \u043d\u0435 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u043e\u0432. \u0415\u0441\u043b\u0438 \u0432\u044b \u043e\u0442\u043a\u0440\u043e\u0435\u0442\u0435 \u043d\u0435\u0447\u0442\u043e \u043f\u043e\u0434\u043e\u0431\u043d\u043e\u0435 \u0443 \u0441\u0435\u0431\u044f \u0432 Chrome, \u0442\u043e \u043d\u0438\u0447\u0435\u0433\u043e \u043d\u0435 \u0441\u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442, \u0442.\u043a. \u0432 \u043d\u0435\u043c external entities \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u044b \u043f\u043e \u0434\u0435\u0444\u043e\u043b\u0442\u0443.\n\n\u041d\u043e \u0432\u044b\u044f\u0441\u043d\u0438\u043b\u0441\u044f \u0437\u0430\u0431\u0430\u0432\u043d\u044b\u0439 \u0444\u0430\u043a\u0442. \n\n\u041f\u043e\u043c\u0438\u043c\u043e XML, \u0441\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u044b\u0435 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u044b \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u044e\u0442 \u0435\u0449\u0435 \u043c\u043d\u043e\u0433\u043e \u0444\u043e\u0440\u043c\u0430\u0442\u043e\u0432, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, XSL. \u042d\u0442\u043e \u0441\u0442\u0430\u0440\u0430\u044f \u0441\u043f\u0435\u043a\u0430, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043d\u0430\u0434\u0441\u0442\u0440\u043e\u0439\u043a\u043e\u0439 \u043d\u0430\u0434 XML \u0441\u043e \u0441\u0432\u043e\u0438\u043c\u0438 \u0434\u0438\u0440\u0435\u043a\u0442\u0438\u0432\u0430\u043c\u0438.\n\n\u041e \u043d\u0435\u043c \u0438 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0442\u0430\u043c \u0442\u043e\u0436\u0435 \u043c\u043e\u0436\u043d\u043e \u043e\u0431\u044a\u044f\u0432\u043b\u044f\u0442\u044c \u0432\u043d\u0435\u0448\u043d\u0438\u0435 \u0441\u0443\u0449\u043d\u043e\u0441\u0442\u0438, \u043f\u043e\u0447\u0435\u043c\u0443-\u0442\u043e \u0432\u0441\u0435 \u0437\u0430\u0431\u044b\u043b\u0438, \u043d\u043e \u043d\u0430\u043f\u043e\u043c\u043d\u0438\u043b ChatGPT. \u041e\u043d \u043f\u043e\u0434\u0441\u043a\u0430\u0437\u0430\u043b, \u0447\u0442\u043e \u044d\u0442\u043e \u043c\u043e\u0436\u043d\u043e \u0434\u0435\u043b\u0430\u0442\u044c \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0434\u0438\u0440\u0435\u043a\u0442\u0438\u0432\u044b, \u0432\u0440\u043e\u0434\u0435\n\n\u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0434\u0433\u0440\u0443\u0437\u0438\u0442 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435, \u0432\u043e\u043f\u0440\u0435\u043a\u0438 \u0432\u0441\u0435\u043c \u0437\u0430\u043f\u0440\u0435\u0442\u0430\u043c.\n\n\u041f\u043e\u044d\u0442\u043e\u043c\u0443 \u043f\u043e\u043b\u043d\u0430\u044f \u0446\u0435\u043f\u043e\u0447\u043a\u0430 \u0432\u044b\u0433\u043b\u044f\u0434\u0438\u0442 \u0442\u0430\u043a:\n1. \u0421\u043e\u0437\u0434\u0430\u0435\u043c XSL \u043f\u0435\u0439\u043b\u043e\u0430\u0434 \u0441 \u0444\u0443\u043d\u043a\u0446\u0438\u0435\u0439 document()\n2. \u0418\u043c\u043f\u043e\u0440\u0442\u0438\u0440\u0443\u0435\u043c \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u043d\u043e\u0435 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 \u043a\u0430\u043a \u0432\u043d\u0435\u0448\u043d\u044e\u044e \u0441\u0443\u0449\u043d\u043e\u0441\u0442\u044c \u0432 XML\n3. \u0413\u043e\u0442\u043e\u0432\u044b\u0439 XML-\u043f\u0435\u0439\u043b\u043e\u0430\u0434 \u0432\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u043c \u0432 SVG-\u043a\u0430\u0440\u0442\u0438\u043d\u043a\u0443 \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c \u043f\u043e \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u044e ;)\n\n\ud83d\udcb0 \u0412\u044b\u043f\u043b\u0430\u0442\u044b\nApple (CVE-2023-40415): $25 000\nGoogle (CVE-2023-4357): $3 000", "creation_timestamp": "2024-05-22T21:25:13.000000Z"}]}