{"uuid": "9bf28850-e3ae-4967-9f7b-98210e7a2331", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-47246", "type": "exploited", "source": "https://t.me/itARMYofUkraine2022_INT/27656", "content": "\u041a\u0440\u0438\u0442\u0438\u0447\u043d\u0430 \u0432\u0440\u0430\u0437\u043b\u0438\u0432\u0456\u0441\u0442\u044c \"\u0434\u043d\u044f \u043d\u0443\u043b\u044c\" \u0437\u043d\u0430\u0439\u0434\u0435\u043d\u0430 \u0443 SysAid, \u0456\u0434\u0435\u043d\u0442\u0438\u0444\u0456\u043a\u043e\u0432\u0430\u043d\u0430 \u044f\u043a CVE-2023-47246, \u0431\u0443\u043b\u0430 \u0432\u0438\u043a\u043e\u0440\u0438\u0441\u0442\u0430\u043d\u0430 \u043a\u0456\u0431\u0435\u0440\u0437\u043b\u043e\u0447\u0438\u043d\u0446\u044f\u043c\u0438, \u043f\u043e\u0432\u2019\u044f\u0437\u0430\u043d\u0438\u043c\u0438 \u0437 \u0432\u0456\u0440\u0443\u0441\u043e\u043c-\u0432\u0438\u043c\u0430\u0433\u0430\u0447\u0435\u043c CLOP. \u0426\u044f \u0431\u0435\u0437\u043f\u0435\u043a\u043e\u0432\u0430 \u0448\u043f\u0430\u0440\u0438\u043d\u0430 \u0434\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u0430 \u0432\u0438\u043a\u043e\u043d\u0430\u043d\u043d\u044f \u0434\u043e\u0432\u0456\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0443. Microsoft \u0432\u0438\u044f\u0432\u0438\u0432 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0456 SysAid \u0432\u0436\u0435 \u0432\u0438\u043f\u0443\u0441\u0442\u0438\u0432 \u0432\u0438\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044f. \u041a\u043e\u0440\u0438\u0441\u0442\u0443\u0432\u0430\u0447\u0430\u043c, \u0449\u043e \u0437\u0430\u0437\u043d\u0430\u043b\u0438 \u0432\u043f\u043b\u0438\u0432\u0443, \u0440\u0430\u0434\u0438\u043c\u043e \u043d\u0435\u0433\u0430\u0439\u043d\u043e \u043e\u043d\u043e\u0432\u0438\u0442\u0438\u0441\u044f \u0434\u043e \u0432\u0435\u0440\u0441\u0456\u0457 23.3.36 \u0442\u0430 \u0441\u043b\u0456\u0434\u0443\u0432\u0430\u0442\u0438 \u0432\u043a\u0430\u0437\u0456\u0432\u043a\u0430\u043c SysAid \u0434\u043b\u044f \u0437\u0430\u0445\u0438\u0441\u0442\u0443 \u0441\u0432\u043e\u0457\u0445 \u0441\u0438\u0441\u0442\u0435\u043c. \n\n\u0411\u0443\u0434\u044c\u0442\u0435 \u043f\u0438\u043b\u044c\u043d\u0456! \u0414\u0456\u043b\u0456\u0442\u044c\u0441\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430\u043c\u0438 \u0439 \u0434\u043e\u0441\u0432\u0456\u0434\u043e\u043c \u0437 \u0437\u0430\u043f\u043e\u0431\u0456\u0433\u0430\u043d\u043d\u044f \u043a\u0456\u0431\u0435\u0440\u0437\u0430\u0433\u0440\u043e\u0437 \u0443 \u043d\u0430\u0448\u043e\u043c\u0443 \u0447\u0430\u0442\u0456.\n\u2014\nA critical \"zero-day\" vulnerability in SysAid identified as CVE-2023-47246 was exploited by cybercriminals linked to the CLOP ransomware. This security gap allowed the execution of arbitrary code. Microsoft detected the issue, and SysAid has already released a fix. Users affected are advised to immediately update to version 23.3.36 and follow SysAid's instructions to protect their systems.\n\nStay alert! Share problems and experiences with preventing cyber threats in our chat.", "creation_timestamp": "2023-11-13T18:03:16.000000Z"}