{"vulnerability": "cve-2024-2920", "sightings": [{"uuid": "2bc7b225-4c12-410a-9d1d-39d2edb8697e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29201", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lla4xa5zyr2a", "content": "", "creation_timestamp": "2025-03-25T20:40:16.253756Z"}, {"uuid": "d374d2e6-2102-4596-b187-f64162c410a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29202", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lla4xaygcr24", "content": "", "creation_timestamp": "2025-03-25T20:40:17.515668Z"}, {"uuid": "46039760-1258-4d88-bd1d-bb72d408e59e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-29205", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/06b268ae-939c-4fb6-91b5-28d20ef6f609", "content": "", "creation_timestamp": "2025-05-12T06:22:54.658493Z"}, {"uuid": "05bec3cf-5643-4869-82ad-4c8c0975b90e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29201", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6952", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-29201 JumpServer Ansible Remote Code Execution POC\nURL\uff1ahttps://github.com/chokopikk/CVE-2024-29201-POC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-04-05T17:47:29.000000Z"}, {"uuid": "8c84dfb6-17c9-4f10-ba32-2c540b279ed4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29204", "type": "seen", "source": "https://t.me/true_secator/5650", "content": "\u0427\u0442\u043e \u043d\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 Ivanti, \u0442\u043e \u043d\u0438\u0436\u0435 9 \u043f\u043e CVSS \u043d\u0435 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u0441\u044f.\n\n\u041d\u0430 \u044d\u0442\u043e\u0442 \u0440\u0430\u0437 \u0432 \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0439 \u0441\u0435\u0440\u0438\u0438 Ivanti bugs - 27 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0435 Avalanche MDM, \u043a\u043e\u043d\u0435\u0447\u043d\u043e \u0436\u0435, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 \u043d\u0430 \u0431\u043e\u0440\u0442\u0443, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0438\u0435 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u043c\u0430\u043d\u0434.\n\nCVE-2024-24996 \u0438 CVE-2024-29204 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u043a \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u0443\u0447\u0438 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430\u0445 WLInfoRailService \u0438 WLAvalancheService \u0432 MDM-\u0440\u0435\u0448\u0435\u043d\u0438\u0438.\n\n\u041e\u0431\u0435, \u043a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u0435\u0442 Ivanti \u0432\u00a0\u0441\u0432\u043e\u0435\u043c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435, \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u0438 \u0438\u043c\u0435\u044e\u0442 \u043e\u0446\u0435\u043d\u043a\u0443 CVSS 9,8.\n\n\u041f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 Ivanti \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432 Avalanche \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 \u043c\u043d\u043e\u0433\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u0441 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u043c\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438.\n\n\u0412\u043e\u0441\u0435\u043c\u044c \u0438\u0437 \u043d\u0438\u0445 \u043e\u043f\u0438\u0441\u0430\u043d\u044b \u043a\u0430\u043a \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0443\u0442\u0438 \u0432 \u0432\u0435\u0431-\u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 Ivanti Avalanche.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 \u0438 \u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044f \u0433\u043e\u043d\u043a\u0438 (TOCTOU) \u0432 \u0432\u0435\u0431-\u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 \u0442\u0430\u043a\u0436\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u0430\u043d\u0434 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 System.\n\n\u0415\u0449\u0435 \u043e\u0434\u043d\u0430 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u0430\u044f \u043e\u0448\u0438\u0431\u043a\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u0443\u0447\u0438 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 WLInfoRailService \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0438 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u0430\u043d\u0434.\n\n\u0414\u0440\u0443\u0433\u0430\u044f \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u0430\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u0441\u043b\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f \u0432 WLAvalancheService \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430.\n\n\u0412\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043e\u0448\u0438\u0431\u043e\u043a \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u0441 DoS, \u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441\u0440\u0435\u0434\u043d\u0435\u0439 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0445 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0438\u0437\u0432\u043b\u0435\u043a\u0430\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u0443\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u0438\u0437 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0432\u0441\u0435 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u043c\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u044f MDM (\u0432\u0435\u0440\u0441\u0438\u0438 6.3.1 \u0438 \u0432\u044b\u0448\u0435), \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0438 \u0431\u043e\u043b\u0435\u0435 \u0441\u0442\u0430\u0440\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438. 6.4.3 Avalanche \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Ivanti, \u043d\u0438 \u043e\u0434\u043d\u0430 \u0438\u0437 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u041d\u043e \u0432\u0435\u0440\u0438\u0442\u044c \u043d\u0430 \u0441\u043b\u043e\u0432\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0443 \u0441\u043e \u0441\u0442\u043e\u043b\u044c \u00ab\u0431\u0435\u0437\u0443\u043f\u0440\u0435\u0447\u043d\u043e\u0439\u00bb \u0440\u0435\u043f\u0443\u0442\u0430\u0446\u0438\u0435\u0439 \u043d\u0435 \u0441\u0442\u043e\u0438\u0442, \u0442\u0430\u043a\u043e\u0439 \u0444\u043b\u0435\u0448-\u0440\u043e\u044f\u043b\u044c \u044f\u0432\u043d\u043e \u0443\u0436\u0435 \u0432 \u0440\u0443\u043a\u0430\u0445 \u043e\u043f\u044b\u0442\u043d\u044b\u0445 \u0430\u043a\u0442\u043e\u0440\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0440\u0430\u043d\u0435\u0435 \u0443\u0436\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0438, \u0434\u043b\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043f\u0430\u0442\u0447\u0438.", "creation_timestamp": "2024-04-17T19:35:05.000000Z"}, {"uuid": "1dc98bbc-44b0-4462-ad72-309009dd8464", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29204", "type": "seen", "source": "https://t.me/ctinow/215622", "content": "https://ift.tt/9g2Grxv\nIvanti patches critical Avalanche flaw exploitable via a simple message (CVE-2024-29204)", "creation_timestamp": "2024-04-18T14:46:54.000000Z"}, {"uuid": "58f56fa8-3d29-49b7-8e11-8a27efd0253f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29204", "type": "seen", "source": "https://t.me/Russian_OSINT/4022", "content": "\u0427\u0442\u043e \u043d\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 Ivanti, \u0442\u043e \u043d\u0438\u0436\u0435 9 \u043f\u043e CVSS \u043d\u0435 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u0441\u044f.\n\n\u041d\u0430 \u044d\u0442\u043e\u0442 \u0440\u0430\u0437 \u0432 \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0439 \u0441\u0435\u0440\u0438\u0438 Ivanti bugs - 27 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0435 Avalanche MDM, \u043a\u043e\u043d\u0435\u0447\u043d\u043e \u0436\u0435, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 \u043d\u0430 \u0431\u043e\u0440\u0442\u0443, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0438\u0435 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u043c\u0430\u043d\u0434.\n\nCVE-2024-24996 \u0438 CVE-2024-29204 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u043a \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u0443\u0447\u0438 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430\u0445 WLInfoRailService \u0438 WLAvalancheService \u0432 MDM-\u0440\u0435\u0448\u0435\u043d\u0438\u0438.\n\n\u041e\u0431\u0435, \u043a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u0435\u0442 Ivanti \u0432\u00a0\u0441\u0432\u043e\u0435\u043c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435, \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u0438 \u0438\u043c\u0435\u044e\u0442 \u043e\u0446\u0435\u043d\u043a\u0443 CVSS 9,8.\n\n\u041f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 Ivanti \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432 Avalanche \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 \u043c\u043d\u043e\u0433\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u0441 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u043c\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438.\n\n\u0412\u043e\u0441\u0435\u043c\u044c \u0438\u0437 \u043d\u0438\u0445 \u043e\u043f\u0438\u0441\u0430\u043d\u044b \u043a\u0430\u043a \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0443\u0442\u0438 \u0432 \u0432\u0435\u0431-\u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 Ivanti Avalanche.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 \u0438 \u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044f \u0433\u043e\u043d\u043a\u0438 (TOCTOU) \u0432 \u0432\u0435\u0431-\u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 \u0442\u0430\u043a\u0436\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u0430\u043d\u0434 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 System.\n\n\u0415\u0449\u0435 \u043e\u0434\u043d\u0430 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u0430\u044f \u043e\u0448\u0438\u0431\u043a\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u0443\u0447\u0438 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 WLInfoRailService \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0438 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u043b\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u0430\u043d\u0434.\n\n\u0414\u0440\u0443\u0433\u0430\u044f \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u0430\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u0441\u043b\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f \u0432 WLAvalancheService \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430.\n\n\u0412\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043e\u0448\u0438\u0431\u043e\u043a \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u0441 DoS, \u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441\u0440\u0435\u0434\u043d\u0435\u0439 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0445 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0438\u0437\u0432\u043b\u0435\u043a\u0430\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u0443\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u0438\u0437 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0432\u0441\u0435 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u043c\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u044f MDM (\u0432\u0435\u0440\u0441\u0438\u0438 6.3.1 \u0438 \u0432\u044b\u0448\u0435), \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0438 \u0431\u043e\u043b\u0435\u0435 \u0441\u0442\u0430\u0440\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438. 6.4.3 Avalanche \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Ivanti, \u043d\u0438 \u043e\u0434\u043d\u0430 \u0438\u0437 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u041d\u043e \u0432\u0435\u0440\u0438\u0442\u044c \u043d\u0430 \u0441\u043b\u043e\u0432\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0443 \u0441\u043e \u0441\u0442\u043e\u043b\u044c \u00ab\u0431\u0435\u0437\u0443\u043f\u0440\u0435\u0447\u043d\u043e\u0439\u00bb \u0440\u0435\u043f\u0443\u0442\u0430\u0446\u0438\u0435\u0439 \u043d\u0435 \u0441\u0442\u043e\u0438\u0442, \u0442\u0430\u043a\u043e\u0439 \u0444\u043b\u0435\u0448-\u0440\u043e\u044f\u043b\u044c \u044f\u0432\u043d\u043e \u0443\u0436\u0435 \u0432 \u0440\u0443\u043a\u0430\u0445 \u043e\u043f\u044b\u0442\u043d\u044b\u0445 \u0430\u043a\u0442\u043e\u0440\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0440\u0430\u043d\u0435\u0435 \u0443\u0436\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0438, \u0434\u043b\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043f\u0430\u0442\u0447\u0438.", "creation_timestamp": "2024-04-18T15:00:35.000000Z"}, {"uuid": "41d4ef73-b1d6-4ac6-ba0e-147c35f70dfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29201", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2254", "content": "https://github.com/jumpserver/jumpserver/security/advisories/GHSA-pjpp-cm9x-6rwj\n\nCVE-2024-29201\n#github #poc", "creation_timestamp": "2024-04-06T03:59:54.000000Z"}, {"uuid": "a1f33972-befa-4de6-9d63-c0ed0fe42381", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29204", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10362", "content": "#exploit\n1. CVE-2024-29204:\nIvanti Avalanche WLAvalancheService.exe Unauthenticated Heap-based Buffer Overflow\nhttps://www.tenable.com/security/research/tra-2024-10\n\n2. CVE-2024-24576:\nRust Library for Windows RCE\nhttps://programlife.net/2024/04/14/cve-2024-24576-rust-command-injection-vulnerability", "creation_timestamp": "2024-04-20T00:32:22.000000Z"}, {"uuid": "68be74ad-8788-4189-bde7-9f36e499fc1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29202", "type": "seen", "source": "https://t.me/CNArsenal/2309", "content": "https://xz.aliyun.com/t/14238\n\ncve-2024-29201\ncve-2024-29202\n#\u5206\u6790", "creation_timestamp": "2024-04-15T10:09:35.000000Z"}, {"uuid": "34e73c8e-a8a2-4036-89fd-27b9403d6e5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29201", "type": "seen", "source": "https://t.me/CNArsenal/2309", "content": "https://xz.aliyun.com/t/14238\n\ncve-2024-29201\ncve-2024-29202\n#\u5206\u6790", "creation_timestamp": "2024-04-15T10:09:35.000000Z"}, {"uuid": "ae8271d6-fd1a-464f-b571-c28b111448bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29201", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2480", "content": "https://github.com/jumpserver/jumpserver/security/advisories/GHSA-pjpp-cm9x-6rwj\n\nCVE-2024-29201\n#github #exploit", "creation_timestamp": "2024-05-14T00:51:57.000000Z"}, {"uuid": "23ba26aa-65b4-4eb6-b02a-66700229ab9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29202", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10328", "content": "#exploit\n1. OOB Read in Lighttpd 1.4.45 used in Intel M70KLP series firmware\nhttps://binarly-io.webflow.io/advisories/brly-2024-002\n\n2. CVE-2024-29201, CVE-2024-29202:\nJumpServer RCE\nhttps://xz.aliyun.com/t/14238", "creation_timestamp": "2024-04-14T19:20:49.000000Z"}, {"uuid": "9c74ffa3-1da9-4789-a84e-81870497c977", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29201", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10328", "content": "#exploit\n1. OOB Read in Lighttpd 1.4.45 used in Intel M70KLP series firmware\nhttps://binarly-io.webflow.io/advisories/brly-2024-002\n\n2. CVE-2024-29201, CVE-2024-29202:\nJumpServer RCE\nhttps://xz.aliyun.com/t/14238", "creation_timestamp": "2024-04-14T19:20:49.000000Z"}, {"uuid": "5d0f34da-1b70-49bd-9534-d0e55a8355c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29203", "type": "seen", "source": "https://gist.github.com/alon710/bdf9529c95cfcca7fc47d2945f8e9599", "content": "# CVE-2024-29203: CVE-2024-29203: Client-Side Cross-Site Scripting via Unsandboxed Iframes and Legacy Embed Elements in TinyMCE\n\n&gt; **CVSS Score:** 4.3\n&gt; **Published:** 2024-03-26\n&gt; **Full Report:** https://cvereports.com/reports/CVE-2024-29203\n\n## Summary\nCVE-2024-29203 identifies a cross-site scripting (XSS) vulnerability in the content ingestion and parsing mechanics of TinyMCE rich text editor. Due to a failure to enforce sandbox attributes on dynamic iframe elements and safely handle legacy embed objects, unauthenticated attackers can inject malicious elements that execute scripts within the context of the parent application session.\n\n## TL;DR\nTinyMCE versions prior to 6.8.1 failed to sandbox pasted/inserted iframes or convert risky object and embed tags, allowing attackers to execute arbitrary scripts in the application context via client-side payloads.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-79 (Improper Neutralization of Input During Web Page Generation)\n- **Attack Vector**: Network\n- **CVSS v3.1 Score**: 4.3 (Medium Severity)\n- **EPSS Score**: 0.01605 (Percentile: 82.11%)\n- **Exploit Status**: PoC / Code-level understanding available\n- **CISA KEV Status**: Not Listed\n- **Ransomware Association**: No\n\n## Affected Systems\n\n- TinyMCE Rich Text Editor\n- **TinyMCE**: &lt; 6.8.1 (Fixed in: `6.8.1`)\n- **TinyMCE**: &gt;= 6.8.2, &lt; 7.0.0 (Fixed in: `7.0.0`)\n\n## Mitigation\n\n- Upgrade TinyMCE to version 6.8.1 or newer.\n- Explicitly configure sandbox_iframes: true in TinyMCE 6.x initializers.\n- Explicitly configure convert_unsafe_embeds: true in TinyMCE 6.x initializers.\n- Upgrade to TinyMCE 7.x for secure-by-default behavior.\n\n**Remediation Steps:**\n1. Identify all web application components utilizing the TinyMCE editor interface.\n2. Update package configurations to load TinyMCE version 6.8.1 (or higher) or version 7.0.0 (or higher).\n3. Modify the initialization call tinymce.init() to include sandbox_iframes: true and convert_unsafe_embeds: true for 6.x installations.\n4. Validate the change by copying and pasting an iframe and an object tag into the editor, then inspecting the parsed output schema to ensure attributes match expectations.\n\n## References\n\n- [NVD CVE-2024-29203 Detail](https://nvd.nist.gov/vuln/detail/CVE-2024-29203)\n- [CVE.org Authority Record](https://www.cve.org/CVERecord?id=CVE-2024-29203)\n- [GitHub Security Advisory GHSA-438c-3975-5x3f](https://github.com/tinymce/tinymce/security/advisories/GHSA-438c-3975-5x3f)\n- [Fix Commit in GitHub Repository](https://github.com/tinymce/tinymce/commit/bcdea2ad14e3c2cea40743fb48c63bba067ae6d1)\n- [TinyMCE 6.8.1 Release Notes](https://www.tiny.cloud/docs/tinymce/6/6.8.1-release-notes/#new-convert_unsafe_embeds-option-that-controls-whether-object-and-embed-elements-will-be-converted-to-more-restrictive-alternatives-namely-img-for-image-mime-types-video-for-video-mime-types-audio-audio-mime-types-or-iframe-for-other-or-unspecified-mime-types)\n- [TinyMCE 7.0 Release Notes](https://www.tiny.cloud/docs/tinymce/7/7.0-release-notes/#sandbox_iframes-editor-option-is-now-defaulted-to-true)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2024-29203) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-09T16:41:36.000000Z"}, {"uuid": "7a0cfc80-810b-4df0-bc89-d6225d7aa6fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29203", "type": "seen", "source": "https://gist.github.com/alon710/8327e427344b759299d1377846fdfcd3", "content": "# CVE-2024-29203: CVE-2024-29203: Client-Side Cross-Site Scripting via Unsandboxed Iframes and Legacy Embed Elements in TinyMCE\n\n&gt; **CVSS Score:** 4.3\n&gt; **Published:** 2024-03-26\n&gt; **Full Report:** https://cvereports.com/reports/CVE-2024-29203\n\n## Summary\nCVE-2024-29203 identifies a cross-site scripting (XSS) vulnerability in the content ingestion and parsing mechanics of TinyMCE rich text editor. Due to a failure to enforce sandbox attributes on dynamic iframe elements and safely handle legacy embed objects, unauthenticated attackers can inject malicious elements that execute scripts within the context of the parent application session.\n\n## TL;DR\nTinyMCE versions prior to 6.8.1 failed to sandbox pasted/inserted iframes or convert risky object and embed tags, allowing attackers to execute arbitrary scripts in the application context via client-side payloads.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-79 (Improper Neutralization of Input During Web Page Generation)\n- **Attack Vector**: Network\n- **CVSS v3.1 Score**: 4.3 (Medium Severity)\n- **EPSS Score**: 0.01605 (Percentile: 82.11%)\n- **Exploit Status**: PoC / Code-level understanding available\n- **CISA KEV Status**: Not Listed\n- **Ransomware Association**: No\n\n## Affected Systems\n\n- TinyMCE Rich Text Editor\n- **TinyMCE**: &lt; 6.8.1 (Fixed in: `6.8.1`)\n- **TinyMCE**: &gt;= 6.8.2, &lt; 7.0.0 (Fixed in: `7.0.0`)\n\n## Mitigation\n\n- Upgrade TinyMCE to version 6.8.1 or newer.\n- Explicitly configure sandbox_iframes: true in TinyMCE 6.x initializers.\n- Explicitly configure convert_unsafe_embeds: true in TinyMCE 6.x initializers.\n- Upgrade to TinyMCE 7.x for secure-by-default behavior.\n\n**Remediation Steps:**\n1. Identify all web application components utilizing the TinyMCE editor interface.\n2. Update package configurations to load TinyMCE version 6.8.1 (or higher) or version 7.0.0 (or higher).\n3. Modify the initialization call tinymce.init() to include sandbox_iframes: true and convert_unsafe_embeds: true for 6.x installations.\n4. Validate the change by copying and pasting an iframe and an object tag into the editor, then inspecting the parsed output schema to ensure attributes match expectations.\n\n## References\n\n- [NVD CVE-2024-29203 Detail](https://nvd.nist.gov/vuln/detail/CVE-2024-29203)\n- [CVE.org Authority Record](https://www.cve.org/CVERecord?id=CVE-2024-29203)\n- [GitHub Security Advisory GHSA-438c-3975-5x3f](https://github.com/tinymce/tinymce/security/advisories/GHSA-438c-3975-5x3f)\n- [Fix Commit in GitHub Repository](https://github.com/tinymce/tinymce/commit/bcdea2ad14e3c2cea40743fb48c63bba067ae6d1)\n- [TinyMCE 6.8.1 Release Notes](https://www.tiny.cloud/docs/tinymce/6/6.8.1-release-notes/#new-convert_unsafe_embeds-option-that-controls-whether-object-and-embed-elements-will-be-converted-to-more-restrictive-alternatives-namely-img-for-image-mime-types-video-for-video-mime-types-audio-audio-mime-types-or-iframe-for-other-or-unspecified-mime-types)\n- [TinyMCE 7.0 Release Notes](https://www.tiny.cloud/docs/tinymce/7/7.0-release-notes/#sandbox_iframes-editor-option-is-now-defaulted-to-true)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2024-29203) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-09T16:51:31.000000Z"}, {"uuid": "48100bbe-9c20-4584-96df-25e3ef295b48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-29200", "type": "published-proof-of-concept", "source": "https://github.com/kimai/kimai/security/advisories/GHSA-cj3c-5xpm-cx94", "content": "", "creation_timestamp": "2024-03-27T21:58:18.000000Z"}]}