{"vulnerability": "cve-2025-27520", "sightings": [{"uuid": "c735f712-c51e-4018-a115-eb7485054a6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114280346981280788", "content": "", "creation_timestamp": "2025-04-04T15:15:09.351658Z"}, {"uuid": "494a4294-5b90-4b25-99b8-087badde735b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114280346981280788", "content": "", "creation_timestamp": "2025-04-04T15:15:09.366670Z"}, {"uuid": "935b9066-63f4-4287-adc9-24d81a6b10cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3llyqu3qz7y2s", "content": "", "creation_timestamp": "2025-04-04T15:40:19.638327Z"}, {"uuid": "044ac9b8-21cc-428e-b782-30a81113b577", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llys3o3a7t2o", "content": "", "creation_timestamp": "2025-04-04T16:02:29.100121Z"}, {"uuid": "2745b1de-fe35-4bf5-9de7-e9a3a6a49edb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114280948811681067", "content": "", "creation_timestamp": "2025-04-04T17:48:13.162499Z"}, {"uuid": "3eb3abe2-ad3e-4717-a412-b0c4af63cea9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114280948811681067", "content": "", "creation_timestamp": "2025-04-04T17:48:13.164913Z"}, {"uuid": "f173bd70-a13b-4b58-9859-519a57f421cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lmbgibuaei2j", "content": "", "creation_timestamp": "2025-04-08T02:28:43.625179Z"}, {"uuid": "ce9bc15b-bded-47f3-aab0-3f7dba32ae47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3lmbylkeghs2j", "content": "", "creation_timestamp": "2025-04-08T07:52:42.899311Z"}, {"uuid": "ddf75cdf-f183-4731-81f2-bb3f1525eed9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lmzyvzgmb52y", "content": "", "creation_timestamp": "2025-04-17T21:02:38.171267Z"}, {"uuid": "1e2bdeb9-af3a-4782-a92e-9a6f92b01c17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/nopfx.bsky.social/post/3lmqtyiicms2o", "content": "", "creation_timestamp": "2025-04-14T05:39:56.643340Z"}, {"uuid": "29c774f6-8c7b-4e80-b739-80bacce26853", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/checkmarxzero.bsky.social/post/3lmk64q62zn2e", "content": "", "creation_timestamp": "2025-04-11T13:53:04.821217Z"}, {"uuid": "015def09-b910-43c8-999f-f9f81a050d29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/darrenpmeyer.bsky.social/post/3lmk6dtxhwb2r", "content": "", "creation_timestamp": "2025-04-11T13:57:02.727805Z"}, {"uuid": "56cce8d2-943e-4622-bdd7-affc2f9777f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/hackread.bsky.social/post/3lmkkofyulc2y", "content": "", "creation_timestamp": "2025-04-11T17:37:43.589540Z"}, {"uuid": "a51da857-f72c-497b-ad04-50201be71d58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3lmlmhbyafv2o", "content": "", "creation_timestamp": "2025-04-12T03:42:10.949788Z"}, {"uuid": "4488074e-6867-4c6f-b542-c245b4861f63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lmnmvmuh622x", "content": "", "creation_timestamp": "2025-04-12T22:55:30.972422Z"}, {"uuid": "1a25b081-c148-4908-a253-a02c58590d5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:04.000000Z"}, {"uuid": "3d3393ea-917d-458b-804d-310c0bb7aa05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://bsky.app/profile/rajsamani.bsky.social/post/3lncqwcd6q22k", "content": "", "creation_timestamp": "2025-04-21T08:33:26.030901Z"}, {"uuid": "d9080457-1a2c-4bc9-a394-9477edbcd230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/bentoml_rce_cve_2025_27520.rb", "content": "", "creation_timestamp": "2025-04-16T13:31:17.000000Z"}, {"uuid": "11286e81-e3c9-4547-b7b5-ecb9a9c45a77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea", "content": "", "creation_timestamp": "2025-09-10T07:00:37.000000Z"}, {"uuid": "9a8e3333-0d8b-4ef2-86bf-b1820a580163", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea", "content": "", "creation_timestamp": "2025-08-09T17:25:37.000000Z"}, {"uuid": "2c49d0fe-9c90-4153-b61a-b99dad5637dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10476", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27520\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: BentoML is a Python library for building online serving systems optimized for AI apps and model inference. A Remote Code Execution (RCE) vulnerability caused by insecure deserialization has been identified in the latest version (v1.4.2) of BentoML. It allows any unauthenticated user to execute arbitrary code on the server. It exists an unsafe code segment in serde.py. This vulnerability is fixed in 1.4.3.\n\ud83d\udccf Published: 2025-04-04T14:28:51.574Z\n\ud83d\udccf Modified: 2025-04-04T14:51:45.561Z\n\ud83d\udd17 References:\n1. https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc\n2. https://github.com/bentoml/BentoML/commit/b35f4f4fcc53a8c3fe8ed9c18a013fe0a728e194", "creation_timestamp": "2025-04-04T15:37:02.000000Z"}, {"uuid": "ffc61687-6291-4b1c-b107-abd7fcbe414e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://t.me/cvedetector/22131", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27520 - BentoML Remote Code Execution (RCE) via Insecure Deserialization\", \n  \"Content\": \"CVE ID : CVE-2025-27520 \nPublished : April 4, 2025, 3:15 p.m. | 41\u00a0minutes ago \nDescription : BentoML is a Python library for building online serving systems optimized for AI apps and model inference. A Remote Code Execution (RCE) vulnerability caused by insecure deserialization has been identified in the latest version (v1.4.2) of BentoML. It allows any unauthenticated user to execute arbitrary code on the server. It exists an unsafe code segment in serde.py. This vulnerability is fixed in 1.4.3. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-04T18:01:15.000000Z"}, {"uuid": "d984591e-586d-4631-aadd-937bd29c634f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/52650", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aay 09 \u2014 CVE-2025-27520 (BentoML-style insecure deserialization) \u2014 Local Docker lab\nURL\uff1ahttps://github.com/amalpvatayam67/day09-bentoml-deser-lab\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-22T12:59:47.000000Z"}, {"uuid": "e8cecd74-347c-4dde-b605-2d51fe74cfce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "published-proof-of-concept", "source": "Telegram/MguaS5r-EyylvOlTVZ1yTvUY5Xb2heobFtfXT1V_kSngV2U", "content": "", "creation_timestamp": "2025-09-22T21:00:04.000000Z"}, {"uuid": "45ebdb5b-ea77-4f7e-b9bd-825e7d15721c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-27520", "type": "published-proof-of-concept", "source": "https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc", "content": "", "creation_timestamp": "2025-04-04T00:59:47.000000Z"}, {"uuid": "b7427cf6-f3d2-457a-a407-9a8d15ff940a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27520", "type": "seen", "source": "https://t.me/true_secator/6951", "content": "\u041f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u043c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0442\u044c \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0442\u0440\u0435\u043d\u0434\u043e\u0432\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u043d\u0438\u043c\u0438 \u0443\u0433\u0440\u043e\u0437\u044b:\n\n1. \u0412 \u041f\u041e Apache Roller\u00a0\u0441 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u043c \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u043c \u043a\u043e\u0434\u043e\u043c \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 Java \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2025-24859 \u0438 \u0438\u043c\u0435\u0435\u0442 CVSS 10,0. \n\n\u041e\u043d\u0430 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 Roller \u0434\u043e 6.1.4 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0438 \u0431\u044b\u043b\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c \u0425\u0430\u0439\u043d\u0438\u043d\u0433\u043e\u043c \u041c\u044d\u043d\u043e\u043c.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0442\u0435\u043c, \u0447\u0442\u043e \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0435 \u0441\u0435\u0430\u043d\u0441\u044b \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u043d\u0435 \u0430\u043d\u043d\u0443\u043b\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0434\u043e\u043b\u0436\u043d\u044b\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u043f\u043e\u0441\u043b\u0435 \u0441\u043c\u0435\u043d\u044b \u043f\u0430\u0440\u043e\u043b\u044f.\n\n\u0423\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0442\u044c \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044e \u0447\u0435\u0440\u0435\u0437 \u0441\u0442\u0430\u0440\u044b\u0435 \u0441\u0435\u0430\u043d\u0441\u044b \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0441\u043c\u0435\u043d\u044b \u043f\u0430\u0440\u043e\u043b\u044f.\n\n2. SSD Disclosure \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0430 RCE-\u043e\u0448\u0438\u0431\u043a\u0443\u00a0\u0432 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u0430\u0445 Calix Gigacenter.\n\n\u0423\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0432\u044b\u0441\u0442\u0430\u0432\u043b\u044f\u044e\u0442 \u0441\u0432\u043e\u0439 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f CPE \u0432 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043d\u0430 \u043f\u043e\u0440\u0442\u0443 TCP 6998 \u0438 \u043d\u0435 \u043e\u0431\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u044e\u0442 \u0434\u043e\u043b\u0436\u043d\u044b\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0432\u0445\u043e\u0434\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435. \n\n\u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u043c\u043e\u0434\u0435\u043b\u0438 \u0431\u044b\u043b\u0438 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d\u044b \u0442\u0440\u0435\u0442\u044c\u0435\u0439 \u0441\u0442\u043e\u0440\u043e\u043d\u043e\u0439 \u043f\u043e\u0434 \u0431\u0440\u0435\u043d\u0434\u043e\u043c Calix \u0438 \u0442\u0435\u043f\u0435\u0440\u044c EoL.\n\n3. Checkmarx \u0438\u0437\u0443\u0447\u0430\u0435\u0442\u00a0\u043d\u0435\u0434\u0430\u0432\u043d\u044e\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c RCE \u0441 \u0440\u0435\u0439\u0442\u0438\u043d\u0433\u043e\u043c 9,8 (CVE-2025-27520) \u0432 BentoML, \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0435 Python \u0434\u043b\u044f \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441\u043e \u0441\u043b\u0443\u0436\u0431\u0430\u043c\u0438 \u0418\u0418.\n\n\u0427\u0438\u0441\u043b\u043e \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0432\u0435\u0440\u0441\u0438\u0439 \u043d\u0430\u043c\u043d\u043e\u0433\u043e \u043c\u0435\u043d\u044c\u0448\u0435, \u0447\u0435\u043c \u0443\u043a\u0430\u0437\u0430\u043d\u043e \u0432 \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e\u043c \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0438, \u043d\u043e \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043d\u0435 \u0443\u043c\u0435\u043d\u044c\u0448\u0430\u0435\u0442: \u043e\u043d\u0430 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0437\u0430\u0445\u0432\u0430\u0442\u0438\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u044b, \u043e\u0431\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u044e\u0449\u0438\u0435 \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0435 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u0418\u0418.\n\n4. Coinspect \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u0435\u0442 \u043e\u0431\u00a0\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u0445 \u0432 \u043a\u043e\u0448\u0435\u043b\u044c\u043a\u0430\u0445 Stellar Freighter, Frontier Wallet \u0438 Coin98, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0434\u043b\u044f \u0441\u043a\u0440\u044b\u0442\u043e\u0439 \u043a\u0440\u0430\u0436\u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439.\n\n5. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Praetorian \u0430\u0434\u0430\u043f\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u0432 \u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0438 \u0441\u0440\u0435\u0434 DICOM \u043d\u0430 \u0431\u0430\u0437\u0435 Windows, \u0434\u043b\u044f \u0440\u0430\u0431\u043e\u0442\u044b \u0432 Linux. C\u0432\u043e\u0439 PoC \u043e\u043d\u0438 \u043d\u0430\u0437\u0432\u0430\u043b\u0438 \u0430\u0442\u0430\u043a\u043e\u0439 ELFDICOM.\n\n6. \u0423\u0447\u0430\u0441\u0442\u043d\u0438\u043a Red Team, \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0439 \u043a\u0430\u043a Vari.sh, \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043e Doppelganger, \u043d\u043e\u0432\u043e\u043c \u043c\u0435\u0442\u043e\u0434\u0435\u00a0(\u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0435), \u043f\u0440\u0435\u0434\u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u043d\u043e\u043c \u0434\u043b\u044f \u043a\u043b\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f LSASS \u0438 \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u044f \u0441\u0435\u043a\u0440\u0435\u0442\u043e\u0432 \u0431\u0435\u0437 \u0441\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0439 \u043d\u0430 \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b\u0435.\n\n7. Quarkslab \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u043d\u0435\u0434\u0430\u0432\u043d\u0435\u0433\u043e \u0430\u0443\u0434\u0438\u0442\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0430\u0442\u043e\u0440\u0430 PHP, \u0432\u044b\u044f\u0432\u0438\u0432 \u043f\u0440\u0438 \u044d\u0442\u043e\u043c 17 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438.\n\n8. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Positive Technologies \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0438 \u0430\u043f\u0440\u0435\u043b\u044c\u0441\u043a\u0443\u044e \u043f\u043e\u0434\u0431\u043e\u0440\u043a\u0443 c \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u043e\u043f\u0430\u0441\u043d\u044b\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043a\u0443\u0434\u0430 \u0432\u043e\u0448\u043b\u0438 11 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0432 Microsoft, VMware \u0438 Apache.", "creation_timestamp": "2025-04-15T19:52:12.000000Z"}]}