{"vulnerability": "CVE-2021-2220", "sightings": [{"uuid": "521a66df-768c-471e-a0d9-b2ecb1e3b380", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/770", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aGitlab CE/EE RCE \u672a\u6388\u6743\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e POC &amp;&amp; EXP CVE-2021-22205\nURL\uff1ahttps://github.com/antx-code/CVE-2021-22205", "creation_timestamp": "2021-10-29T09:24:27.000000Z"}, {"uuid": "3fa09414-ac6b-47af-88a1-0da260230305", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/alexmakus/4086", "content": "\u0415\u0441\u043b\u0438 \u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0435\u0441\u044c ExifTool, \u0442\u043e \u0432\u0430\u043c \u0430\u043f\u0434\u0435\u0439\u0442! \n\nhttps://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.html", "creation_timestamp": "2021-05-19T08:06:32.000000Z"}, {"uuid": "aeb206a2-7c08-47e5-92c9-709f4bd1e5a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/arpsyndicate/42", "content": "#ExploitObserverAlert\n\nCVE-2021-22204\n\nDESCRIPTION: Exploit Observer has 84 entries related to CVE-2021-22204. Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image\n\nFIRST-EPSS: 0.875560000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-11-10T19:46:04.000000Z"}, {"uuid": "86c85b52-b75f-43d0-bbc6-0ec475bec093", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://t.me/arpsyndicate/1465", "content": "#ExploitObserverAlert\n\nCVE-2021-22205\n\nDESCRIPTION: Exploit Observer has 106 entries related to CVE-2021-22205. An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution.\n\nFIRST-EPSS: 0.972900000\nNVD-IS: 6.0\nNVD-ES: 3.9", "creation_timestamp": "2023-12-05T11:31:09.000000Z"}, {"uuid": "db688869-20e2-4b4d-a3ec-38a7ca1fab6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/hack_room_channel/149", "content": "CVE-2021-22204\n\nUne neutralisation incorrecte des donn\u00e9es utilisateur dans le format de fichier DjVu dans les versions 7.44 et ult\u00e9rieures d'ExifTool permet l'ex\u00e9cution de code arbitraire lors de l'analyse de l'image malveillante.\n\nhttps://github.com/LazyTitan33/CVE-2021-22204", "creation_timestamp": "2022-01-24T06:32:07.000000Z"}, {"uuid": "835cb3f7-c973-412d-842f-44f5370ca64f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/hack_room_channel/148", "content": "CVE-2021-22204\n\nImproper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image. \n\nhttps://github.com/LazyTitan33/CVE-2021-22204", "creation_timestamp": "2022-01-24T06:31:11.000000Z"}, {"uuid": "ac86f402-f741-459e-87e5-b33af2bdc002", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "Telegram/93vLFpcg-bqXgHYEZG0ljPhGBREk82AG3wnQag2InyEdVg", "content": "", "creation_timestamp": "2021-10-29T18:52:32.000000Z"}, {"uuid": "4983a08d-7088-44e8-8afd-854ac441366c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/reconshell/687", "content": "CVE-2021-22204\n\nImproper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image\n\nhttps://cve.reconshell.com/cve/CVE-2021-22204", "creation_timestamp": "2021-04-24T09:07:19.000000Z"}, {"uuid": "1c069330-1b65-4b0a-b8cc-9223c8c28562", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/true_secator/2887", "content": "\u034f\u041e\u0447\u0435\u0440\u0435\u0434\u043d\u043e\u0439 \u043f\u0440\u0438\u043c\u0435\u0440, \u043a\u043e\u0433\u0434\u0430 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u0430\u044f \u043d\u0430 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0435\u0440\u0435\u0436\u0435\u043d\u0438\u0435 \u043e\u0442 \u0443\u0433\u0440\u043e\u0437 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u0441\u0430\u043c\u0430 \u0432\u044b\u0441\u0442\u0443\u043f\u0430\u0442\u044c \u0443\u0433\u0440\u043e\u0437\u043e\u0439.\n\n\u042d\u043d\u0442\u0443\u0437\u0438\u0430\u0441\u0442\u044b \u0438\u0437 Cysource \u043d\u0435 \u043f\u043e\u043b\u0435\u043d\u0438\u043b\u0438\u0441\u044c \u0438 \u0440\u0435\u0448\u0438\u043b\u0438 \u043e\u0442\u0430\u0443\u0434\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0441\u0430\u043c VirusTotal \u0438 \u043a\u0430\u043a \u043e\u043a\u0430\u0437\u0430\u043b\u043e\u0441\u044c \u0432\u044b\u0448\u043b\u043e \u044d\u0442\u043e \u0443 \u043d\u0438\u0445 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0443\u0441\u043f\u0435\u0448\u043d\u043e. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0443 VirusTotal \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043e\u0440\u0443\u0434\u0438\u044f \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 (RCE) \u043d\u0430 \u0441\u0442\u043e\u0440\u043e\u043d\u043d\u0438\u0445 \u043c\u0430\u0448\u0438\u043d\u0430\u0445-\u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0430\u0445, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0445 \u0430\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441\u043d\u044b\u0435 \u0434\u0432\u0438\u0436\u043a\u0438.\n\n\u0411\u0430\u0433\u0443 \u043a\u043e\u043d\u0435\u0447\u043d\u043e \u043f\u043e\u0444\u0438\u043a\u0441\u0438\u043b\u0438 \u0435\u0449\u0435 13 \u0430\u043f\u0440\u0435\u043b\u044f 2021 \u0433\u043e\u0434\u0430, \u043d\u043e \u0434\u043b\u044f \u0441\u043f\u0440\u0430\u0432\u043a\u0438 \u0438\u0437-\u0437\u0430 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 RCE \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0433 \u043f\u043e\u043b\u0443\u0447\u0430\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u043c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044f\u043c \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b.\n\n\u041c\u0435\u0442\u043e\u0434 \u0430\u0442\u0430\u043a\u0438 \u0432\u043a\u043b\u044e\u0447\u0430\u043b \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0444\u0430\u0439\u043b\u0430 DjVu \u0447\u0435\u0440\u0435\u0437 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0439 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0435\u0433\u043e \u0434\u043b\u044f \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u0432 ExifTool - \u0443\u0442\u0438\u043b\u0438\u0442\u0435 \u0441 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u043c \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u043c \u043a\u043e\u0434\u043e\u043c, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439 \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f \u0438 \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043c\u0435\u0442\u0430\u0434\u0430\u043d\u043d\u044b\u0445 EXIF \u0432 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f\u0445 \u0438 PDF-\u0444\u0430\u0439\u043b\u0430\u0445.\n\n\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a CVE-2021-22204 \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u043e\u0446\u0435\u043d\u043a\u0443 7,8 \u043f\u043e CVSS \u0438 \u0440\u0430\u0441\u0441\u043c\u0430\u0442\u0440\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u044b\u0441\u043e\u043a\u043e\u0433\u043e \u0443\u0440\u043e\u0432\u043d\u044f \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438.\n\n\u041a\u0430\u043a \u043c\u044b \u043f\u043e\u043c\u043d\u0438\u043c VirusTotal, \u0432\u0445\u043e\u0434\u0438\u0442 \u0432 \u0441\u043e\u0441\u0442\u0430\u0432 \u043f\u043e\u0434\u0440\u0430\u0437\u0434\u0435\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Google Chronicle \u0438 \u043a\u0430\u0436\u0434\u044b\u0439 \u0440\u0430\u0437, \u043a\u043e\u0433\u0434\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u043b\u0438 \u0444\u0430\u0439\u043b \u0441 \u043d\u043e\u0432\u043e\u0439 \u043f\u043e\u043b\u0435\u0437\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u043e\u0439, VirusTotal \u0431\u043b\u0430\u0433\u043e\u043f\u043e\u043b\u0443\u0447\u043d\u043e \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u043b \u044d\u0442\u043e\u0442 \u0444\u0430\u0439\u043b \u0434\u0440\u0443\u0433\u0438\u043c \u0445\u043e\u0441\u0442\u0430\u043c. \u0422\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u043f\u043e\u043c\u0438\u043c\u043e \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430, \u0435\u0449\u0435 \u0438 \u0441\u0430\u043c\u0430 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0430 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u043b\u0430\u0441\u044c \u043f\u043e \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0435\u0439 \u0441\u0435\u0442\u0438 Google \u0435\u0451 \u043a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u0438 \u043f\u0430\u0440\u0442\u043d\u0451\u0440\u0430\u043c.\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u043f\u043e\u043c\u0438\u043c\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0439 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 Google, \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u043b\u0441\u044f \u0434\u043e\u0441\u0442\u0443\u043f \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u043c \u043a 50 \u0445\u043e\u0441\u0442\u0430\u043c, \u043f\u0440\u0438\u0447\u0451\u043c \u0434\u043e\u0441\u0442\u0443\u043f \u0431\u044b\u043b \u0441 \u0432\u044b\u0441\u043e\u043a\u0438\u043c\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438. \u0412\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0440\u0435\u0431\u044f\u0442\u0430 \u043d\u0435 \u0441\u043f\u0435\u0448\u0438\u043b\u0438 \u0441 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u043c \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u0435\u043c \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.", "creation_timestamp": "2022-04-26T13:58:09.000000Z"}, {"uuid": "2fd949c4-08f7-46d2-ba79-89c6034ce902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/NeKaspersky/2173", "content": "\u041c\u043d\u043e\u0433\u043e \u0448\u0443\u043c\u0430 \u0438\u0437 \u043d\u0438\u0447\u0435\u0433\u043e, \u0438\u043b\u0438 \u043a\u0430\u043a \u0432 VirusTotal RCE \u043d\u0430\u0448\u043b\u0438\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 Cysource \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438, \u0447\u0442\u043e \u0433\u0443\u0433\u043b\u043e\u0432\u0441\u043a\u0438\u0439 VirusTotal \u043c\u043e\u0433 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c RCE \u0432 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0430\u0445. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0437\u0430\u043a\u043b\u044e\u0447\u0430\u043b\u0430\u0441\u044c \u0432 \u0442\u043e\u043c, \u0447\u0442\u043e \u0440\u044f\u0434 \u0441\u0442\u043e\u0440\u043e\u043d\u043d\u0438\u0445 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b \u0443\u0441\u0442\u0430\u0440\u0435\u0432\u0448\u0443\u044e \u0432\u0435\u0440\u0441\u0438\u044e ExifTool, \u0443\u044f\u0437\u0432\u0438\u043c\u0443\u044e \u043a CVE-2021-22204 (7.8 CVSS). \u0414\u043b\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u0437\u0430\u0432\u0435\u0442\u043d\u043e\u0433\u043e reverse shell-\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0431\u044b\u043b\u043e \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u0430\u0439\u0442\u0430 \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u043d\u0430 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 DjVu-\u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442, \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0438\u0439 \u0447\u0442\u043e-\u0442\u043e \u043d\u0430\u043f\u043e\u0434\u043e\u0431\u0438\u0435 content: (metadata \"\\c${system('bash -c \\\"{echo,\u0432\u0430\u0448_\u043f\u0435\u0439\u043b\u043e\u0434_\u0432_base64 }|{base64,-d }|{bash,-i }\\\" ; clear') };\") \u0438, \u043f\u043e\u0442\u0438\u0440\u0430\u044f \u0440\u0443\u043a\u0438 \u0438 \u0437\u043b\u043e\u0431\u043d\u043e \u0441\u043c\u0435\u044f\u0441\u044c, \u043e\u0436\u0438\u0434\u0430\u0442\u044c.\n\n\u041e \u0431\u0430\u0433\u0435 \u043d\u0435\u0437\u0430\u043c\u0435\u0434\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438, \u0435\u0433\u043e \u0441\u0442\u043e\u043b\u044c \u0436\u0435 \u0431\u044b\u0441\u0442\u0440\u043e \u043f\u043e\u043f\u0440\u0430\u0432\u0438\u043b\u0438 \u0438 \u0442.\u0434, \u043d\u043e \u0441\u0443\u0442\u044c \u0441\u043b\u0435\u0433\u043a\u0430 \u0432 \u0434\u0440\u0443\u0433\u043e\u043c: \u0432\u043e-\u043f\u0435\u0440\u0432\u044b\u0445, \u043a\u0430\u043a \u043f\u043e\u043d\u044f\u0442\u043d\u043e \u0438\u0437 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u044f, \u043a\u043e\u0441\u044f\u043a \u0431\u044b\u043b \u0432\u043e\u043e\u0431\u0449\u0435 \u043d\u0435 \u0441\u043e \u0441\u0442\u043e\u0440\u043e\u043d\u044b VT, \u0432\u043e-\u0432\u0442\u043e\u0440\u044b\u0445, \u043f\u0440\u0438 \u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0439 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0435 (\u0437\u0430 \u0438\u0441\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435\u043c \u043d\u0435\u043f\u043e\u0444\u0438\u043a\u0448\u0435\u043d\u043d\u043e\u0433\u043e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0431\u0430\u0433\u0430) \u0442\u0435\u0445 \u0436\u0435 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446, \u043f\u0440\u0438 \u0432\u0441\u0435\u043c \u0436\u0435\u043b\u0430\u043d\u0438\u0438 \u043e\u0442\u0442\u0443\u0434\u0430 \u043d\u0435 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u0441\u044f \u0432\u044b\u0442\u0430\u0449\u0438\u0442\u044c \u043d\u0438\u0447\u0435\u0433\u043e \u043f\u043e\u043b\u0435\u0437\u043d\u043e\u0433\u043e. \u0412 \u043e\u0431\u0449\u0435\u043c, \u043d\u0435 \u0432\u0435\u0434\u0438\u0442\u0435\u0441\u044c \u043d\u0430 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438, \u0434\u0440\u0443\u0437\u044c\u044f.\n@NeKaspersky", "creation_timestamp": "2022-04-27T17:59:50.000000Z"}, {"uuid": "bbf56287-ab88-4e09-848b-02f1311b3f52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/pwnwiki_zhchannel/402", "content": "CVE-2021-22204 ExifTool\u4efb\u610f\u4ee3\u78bc\u57f7\u884c\u6f0f\u6d1e\nhttps://www.pwnwiki.org/index.php?title=CVE-2021-22204_ExifTool%E4%BB%BB%E6%84%8F%E4%BB%A3%E7%A2%BC%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9E", "creation_timestamp": "2021-05-11T09:56:55.000000Z"}, {"uuid": "9b1c4f76-c835-4f12-b86e-83897a61da40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/reverse_dungeon/515", "content": "A CTF-style walkthrough of the recent Exiftool arbitrary code execution vuln (CVE-2021-22204) - https://blog.bricked.tech/posts/exiftool/", "creation_timestamp": "2021-05-16T02:08:54.000000Z"}, {"uuid": "b987319d-1e1d-4ebb-bc98-f95e09edabe1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/3219", "content": "#Analytics\n10 most exploited vulnerabilities of the week (April 19-25)\nCVE-2021-3156 Heap-Based Buffer Overflow in Sudo\nhttps://t.me/cybersecuritytechnologies/2577\nCVE-2021-1732 Win kernel 0-day\nhttps://t.me/cybersecuritytechnologies/2679\nCVE-2021-22893 Pulse SecureVPN RCE\nhttps://t.me/cybersecuritytechnologies/3185\nCVE-2021-22204 Improper neutralization of user data in DjVu\nhttps://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800\nCVE-2021-26415 Win Installer EoP\nhttps://t.me/cybersecuritytechnologies/3186\nCVE-2021-3493 OverlayFS PE\nhttps://t.me/cybersecuritytechnologies/3164\nCVE-2021-26413 Win Installer Spoofing\nhttps://t.me/cybersecuritytechnologies/3176\nCVE-2016-7836 SKYSEA Client View Arbitrary Code Exec\nhttps://www.virusbulletin.com/virusbulletin/2020/05/vb2019-paper-apt-cases-exploiting-vulnerabilities-regionspecific-software\nCVE-2021-27905 Apache Solr SSRF\nhttps://t.me/cybersecuritytechnologies/3213", "creation_timestamp": "2021-04-26T11:02:21.000000Z"}, {"uuid": "d4ab0ea4-18ce-44e8-82a3-d62804ed8442", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/3279", "content": "#Analytics\nTop 10 Most Used Vulnerabilities of the Month (April 1-30)\n\nCVE-2020-13379 - Unauth Full-Read SSRF in Grafana\nhttps://t.me/cybersecuritytechnologies/1515\nCVE-2021-24086 - Win IPv4/6 Stack RCE/DoS Vulns\nhttps://unit42.paloaltonetworks.com/cve-2021-24074-patch-tuesday\nCVE-2021-22893 Pulse SecureVPN RCE\nhttps://t.me/cybersecuritytechnologies/3185\nCVE-2021-28310 - Win32k EoP Vulnerability\nhttps://t.me/cybersecuritytechnologies/3124\nCVE-2021-26411 - IE mshtml UAF\nhttps://t.me/cybersecuritytechnologies/2908\nCVE-2021-22204 - DjVu improper neutralization of user data\nhttps://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800\nCVE-2021-24027 - Remote exploitation of a man-in-the-disk vulnerability in WhatsApp\nhttps://t.me/cybersecuritytechnologies/3126\nCVE-2021-28316 - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability\nhttps://t.me/cybersecuritytechnologies/3156\nCVE-2021-28480/28482 - MS Exchange Server RCE\nhttps://www.tenable.com/blog/cve-2021-28480-cve-2021-28481-cve-2021-28482-cve-2021-28483-four-critical-microsoft-exchange", "creation_timestamp": "2024-04-30T17:11:44.000000Z"}, {"uuid": "6293612a-587a-4a6b-b704-3f1c64c24491", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/3506", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (may 1-31)\nCVE-2021-31166 - HTTP Stack RCE\nhttps://t.me/cybersecuritytechnologies/3388\nCVE-2021-21551 -Dell BIOS Driver PE\nhttps://t.me/cybersecuritytechnologies/3293\nCVE-2021-30747 -Covert channel in Apple M1\nhttps://t.me/cybersecuritytechnologies/3472\nCVE-2021-22204 -DjVu vuln\nhttps://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800\nCVE-2021-28482 -MS Exchange RCE\nhttps://t.me/cybersecuritytechnologies/3286\nCVE-2021-21974 -VMware\u00a0ESXi heap-overflow\nhttps://t.me/cybersecuritytechnologies/3460\nCVE-2021-29447 -WordPress XXE\nhttps://t.me/cybersecuritytechnologies/3142\nCVE-2021-21985 - vSphere Client RCE\nhttps://t.me/cybersecuritytechnologies/3493\nCVE-2021-32471 -ACE in TuringMachine\nhttps://t.me/cybersecuritytechnologies/3364\nCVE-2021-3490 -Linux Kernel eBPF\nhttps://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/commit/?id=049c4e13714ecbca567b4d5f6d563f05d431c80e", "creation_timestamp": "2024-09-28T16:48:46.000000Z"}, {"uuid": "68cffde1-18ed-40e5-8a01-10a918df0d3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/CyberSecurityTechnologies/4602", "content": "#Threat_Research\n1. GitLab CE CVE-2021-22205 in the wild\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild\n]-&gt; PoC: https://github.com/CsEnox/Gitlab-Exiftool-RCE\n2. PHP-FPM (PHP's FastCGI server) Local Root Vulnerability (NGINX, Apache)\nhttps://www.ambionics.io/blog/php-fpm-local-root", "creation_timestamp": "2021-10-30T13:21:01.000000Z"}, {"uuid": "d125b93a-f84b-4e88-9c51-f23ae95e3c98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4701", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (Oct 1-31)\nCVE-2021-41773 - Apache 2.4.49 Path Traversal\nhttps://t.me/cybersecuritytechnologies/4454\nCVE-2021-26084 - Confluence Server Webwork OGNL Inj\nhttps://t.me/cybersecuritytechnologies/4202\nCVE-2021-42013 - Apache 2.4.50 Path Traversal\nhttps://t.me/cybersecuritytechnologies/4475\nCVE-2021-22205 - GitLab CE/EE RCE\nhttps://t.me/cybersecuritytechnologies/4602\nCVE-2021-40449 - UaF in the NtGdiResetDC function of the Win32k driver\nhttps://t.me/cybersecuritytechnologies/4535\nCVE-2021-40438 - SSRF in Apache2 mod_proxy\nhttps://t.me/cybersecuritytechnologies/4529\nCVE-2021-30858 - UaF in WebKit\nhttps://t.me/cybersecuritytechnologies/4545\nCVE-2021-30883 - iOS IOMFB vulnerability\nhttps://t.me/cybersecuritytechnologies/4497\nCVE-2021-30892 - Shrootless Vulnerability in MacOS\nhttps://t.me/cybersecuritytechnologies/4623\nCVE-2022-1337 - \"View Source\"\nhttps://mobile.twitter.com/megab0t_/status/1452848917205458945\nPoC: JavaScript:https://#%0aalert('xss')", "creation_timestamp": "2021-11-08T11:07:01.000000Z"}, {"uuid": "2244944e-6f2f-43c8-bd37-b74e86b5d7d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/4889", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (Nov 1-30)\nCVE-2021-22205 - GitLab CE/EE RCE\nhttps://t.me/cybersecuritytechnologies/4602\nCVE-2021-30883 - iOS IOMFB Vuln\nhttps://t.me/cybersecuritytechnologies/4497\nCVE-2021-3064 - Memory Corruption in PAN-OS GlobalProtect Portal/Gateway Interfaces\nhttps://t.me/cybersecuritytechnologies/4724\nCVE-2021-41379 - Windows Installer LPE\nhttps://t.me/cybersecuritytechnologies/4813\nCVE-2021-42321 - MS Exchange Post-Auth RCE\nhttps://t.me/cybersecuritytechnologies/4809\nCVE-2021-40539 - Zoho ManageEngine Auth. Bypass\nhttps://t.me/cybersecuritytechnologies/4718\nCVE-2021-41277 - MetaBase Arbitrary File Read\nhttps://t.me/cybersecuritytechnologies/4802\nCVE-2021-43267 - Remote Kernel Heap Overflow in TIPC\nhttps://t.me/cybersecuritytechnologies/4678\nCVE-2021-42574 - Unicode Bidirectional override vuln\nhttps://github.com/js-on/CVE-2021-42574\nhttps://github.com/pierDipi/unicode-control-characters-action\nCVE-2021-24084 - Windows MDM LPE\nhttps://t.me/cybersecuritytechnologies/4850", "creation_timestamp": "2021-12-03T11:00:35.000000Z"}, {"uuid": "50f4f5de-303f-4452-8d91-59e610bb4897", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/club31337/719", "content": "https://github.com/Al1ex/CVE-2021-22205", "creation_timestamp": "2024-11-09T02:11:49.000000Z"}, {"uuid": "58f08749-b953-4d18-b3d0-d75e7b087993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "Telegram/8KrClztxOpt43Dn04vWbNfDSJz2auxqrQryTcHMCR_fwseY", "content": "", "creation_timestamp": "2026-05-14T15:00:07.000000Z"}, {"uuid": "060b00cc-7eec-41aa-873b-edec66f48506", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "MISP/e5b7acd7-edb8-4bf3-99c3-8706ff3a9a71", "content": "", "creation_timestamp": "2021-10-01T09:39:06.000000Z"}, {"uuid": "a9e5a75f-8a7b-49aa-8ddd-ca577be58d36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2021-11-20T09:53:52.000000Z"}, {"uuid": "bcff1ac7-787c-4d78-a3bd-aa58fa4180db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2021-11-20T09:53:52.000000Z"}, {"uuid": "3e59f821-d6e4-4db5-80a0-c3edc9b52848", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/d3fd7e8e-c7ec-41ca-87fe-462bb29963a6", "content": "", "creation_timestamp": "2024-05-31T09:39:04.000000Z"}, {"uuid": "c2bfeaf9-d7e0-43ac-b9b9-d9cd864ca3cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-22205.yaml", "content": "", "creation_timestamp": "2023-04-27T09:58:59.000000Z"}, {"uuid": "b523ec9b-ee2b-45a4-90bc-1469e43e037c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "e31545cb-3ee7-4430-b6a7-f9ed445fa42f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "d7ea1640-f2cd-462c-8c87-c2de1de7dff2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:09:52.000000Z"}, {"uuid": "eb0d25c6-28d2-4a4d-a0c8-b6b1fea2bc25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:09:52.000000Z"}, {"uuid": "4780422f-f4cc-4cf8-bc30-9670f3eb3a76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://bsky.app/profile/kooteksec.bsky.social/post/3lqhsbnof2c22", "content": "", "creation_timestamp": "2025-05-31T12:56:38.469185Z"}, {"uuid": "09ef0b05-5b38-46f8-bb85-fb533273360f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/gitlab_exif_rce.rb", "content": "", "creation_timestamp": "2021-11-03T21:17:46.000000Z"}, {"uuid": "970f4356-797e-49dd-9eaf-2ade7188ac08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:12:44.000000Z"}, {"uuid": "f8c5dfa3-c592-4999-9046-fbefbd8ef851", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d", "content": "", "creation_timestamp": "2025-08-31T03:01:37.000000Z"}, {"uuid": "4cdfab56-ac97-4dfe-a4a8-2287f9992332", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/gitlab_exif_rce.rb", "content": "", "creation_timestamp": "2021-11-03T21:17:46.000000Z"}, {"uuid": "0727b3e1-9846-4086-a67b-778d925553dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/fileformat/exiftool_djvu_ant_perl_injection.rb", "content": "", "creation_timestamp": "2021-05-11T21:49:48.000000Z"}, {"uuid": "6127728e-e853-4ff4-9d81-c582cd471a52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://bsky.app/profile/allsafeus.bsky.social/post/3me3yusbert2d", "content": "", "creation_timestamp": "2026-02-05T08:46:31.783657Z"}, {"uuid": "202e8ac3-3e86-40a0-b959-70e4d98a3e94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=687", "content": "", "creation_timestamp": "2021-11-04T04:00:00.000000Z"}, {"uuid": "e37d130c-abec-49d4-b0b9-6d4685b24991", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/8e7dd4c0-9908-429a-a781-e195ccbba047", "content": "", "creation_timestamp": "2026-02-02T12:28:43.264221Z"}, {"uuid": "8074fd7f-dd8f-45b3-9145-f335fb6c3c76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/774", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 \u79fb\u9664\u4e86\u5bf9djvumake &amp; djvulibre\u7684\u4f9d\u8d56\uff0c\u53ef\u5728win\u5e73\u53f0\u4f7f\u7528\nURL\uff1ahttps://github.com/whwlsfb/CVE-2021-22205", "creation_timestamp": "2021-10-30T03:05:15.000000Z"}, {"uuid": "ae360089-5d81-46c2-bb4b-fe139bd4c1fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/780", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205\u6f0f\u6d1e\u68c0\u6d4b\nURL\uff1ahttps://github.com/Seals6/CVE-2021-22205", "creation_timestamp": "2021-10-31T04:19:23.000000Z"}, {"uuid": "e7f98974-3bbf-460a-a22f-c68a756a175a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1207", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 \u7684\u6279\u91cf\u68c0\u6d4b\u811a\u672c\nURL\uff1ahttps://github.com/gardenWhy/Gitlab-CVE-2021-22205", "creation_timestamp": "2021-12-22T04:33:05.000000Z"}, {"uuid": "2495a4aa-0acd-4548-aaa2-0e362701db88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2747", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1agetshell\n\u63cf\u8ff0\uff1aCVE-2021-22205 \u68c0\u6d4b\u811a\u672c,\u652f\u6301getshell\u548c\u547d\u4ee4\u6267\u884c\nURL\uff1ahttps://github.com/keven1z/CVE-2021-22205\n\n\u6807\u7b7e\uff1a#getshell", "creation_timestamp": "2022-07-20T17:50:06.000000Z"}, {"uuid": "333661fb-5c31-42ab-8102-16b077c9d5af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "Telegram/d-rVDZTUKUG3IYUJ4BAdDnIieq971JGpK_Ia99hM3eRIwok", "content": "", "creation_timestamp": "2025-10-28T09:00:04.000000Z"}, {"uuid": "7ad73bea-0f3d-4aed-9757-a877754874b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "Telegram/PHoJQGmgGzsQrC8Gnxfc8pLZD55xgKQzGqHQgQ7hPSbJXl0", "content": "", "creation_timestamp": "2025-11-19T15:00:09.000000Z"}, {"uuid": "0ae0b746-588a-4f73-b178-1624cdfa5e64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/cKure/5126", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 RCE on exiftool (CVE-2021-22204).", "creation_timestamp": "2021-05-02T07:56:58.000000Z"}, {"uuid": "1c577dbd-aa78-467c-b3db-c7425e988e60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/cKure/5329", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 ExifTool CVE-2021-22204 - Arbitrary Code Execution.\n\nhttps://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.html", "creation_timestamp": "2021-05-14T22:54:08.000000Z"}, {"uuid": "1b868d31-940e-41ac-b6e1-63b1263a6033", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/bh_cat/23", "content": "\u042f \u043f\u0440\u0438\u043d\u044f\u043b \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u0434\u043e\u0431\u0430\u0432\u0438\u0442\u044c \u043d\u043e\u0432\u044b\u0439 \u0440\u0430\u0437\u0434\u0435\u043b \u043d\u0430 \u0441\u0432\u043e\u0435\u043c \u043a\u0430\u043d\u0430\u043b\u0435. \u0418\u0441\u0445\u043e\u0434\u044f \u0438\u0437 \u043c\u043e\u0435\u0433\u043e \u043e\u043f\u044b\u0442\u0430, \u044f \u0447\u0430\u0441\u0442\u043e \u0441\u0442\u0430\u043b\u043a\u0438\u0432\u0430\u044e\u0441\u044c \u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438 \u0432 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0438, \u0438 \u0447\u0430\u0441\u0442\u043e \u043f\u0440\u0438\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u0438\u0441\u043a\u0430\u0442\u044c \u0434\u043b\u044f \u043d\u0438\u0445 POC \u0438\u043b\u0438 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u044f \u043c\u043e\u0434\u0443\u043b\u0435\u0439, \u0447\u0442\u043e\u0431\u044b \u0441\u043e\u0437\u0434\u0430\u0432\u0430\u0442\u044c \u043f\u043e\u0434 \u043d\u0438\u0445 \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442\u044b.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0434\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0435\u0439 \u0440\u0430\u0431\u043e\u0442\u044b\n\n\u2694\ufe0f GitLab CE/EE Preauth RCE (CVE-2021-22205)\n\n\u0411\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432 GitLab CE/EE, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0430\u044f \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438, \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 11.9. GitLab \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u043b \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f, \u043f\u0435\u0440\u0435\u0434\u0430\u0432\u0430\u0435\u043c\u044b\u0435 \u0432 \u043f\u0430\u0440\u0441\u0435\u0440 \u0444\u0430\u0439\u043b\u043e\u0432, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u043b\u043e \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u0430\u043d\u0434.\n\n\u2757\ufe0fAffect Versions:\n&gt;=11.9, &lt;13.8.8\n&gt;=13.9, &lt;13.9.6\n&gt;=13.10, &lt;13.10.3\n\n\ud83c\udf10 Source:\nhttps://github.com/inspiringz/CVE-2021-22205\n\n#gitlab #poc", "creation_timestamp": "2023-09-14T05:57:06.000000Z"}, {"uuid": "3a2a60b6-a37d-4f9b-9944-09932b669ce8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/m1swarr1or/91", "content": "\u041e\u0443, \u043c\u0430\u0439. \u0422\u0430\u043a \u0445\u043e\u0447\u0435\u0442\u0441\u044f \u0438\u0445 \u044d\u043d\u0442\u0435\u0440\u043f\u0440\u0430\u0439\u0437 \u0430\u043f\u0438)) \n\n\u041f\u043e\u043b\u043e\u043c\u0430\u043b\u0438 \u0432\u0435\u0441\u044c\u043c\u0430 \u0437\u0430\u0431\u0430\u0432\u043d\u043e, CVE-2021-22204 \u043d\u0430 rce \u0447\u0435\u0440\u0435\u0437 djvu \u0444\u043e\u0440\u043c\u0430\u0442 \u0432 exiftool. \u041f\u043e\u0445\u043e\u0436\u0435, \u0447\u0442\u043e \u0442\u043e\u0442\u0430\u043b \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u0442 exiftool \u043d\u0430 \u0441\u0432\u043e\u0438\u0445 \u0445\u043e\u0441\u0442\u0430\u0445, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0447\u0435\u043b\u044b \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u0440\u0435\u0432\u0435\u0440\u0441 \u0448\u0435\u043b\u043b \u0447\u0435\u0440\u0435\u0437 \u0432\u043e\u0442 \u0442\u0430\u043a\u043e\u0439 \u0444\u0430\u0439\u043b, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u0440\u043e\u0441\u0442\u043e \u0437\u0430\u0433\u0440\u0443\u0437\u0438\u043b\u0438 \u043d\u0430 \u0430\u043d\u0430\u043b\u0438\u0437.\n\ncontent: (metadata \"\\c${system('bash -c \\\"{echo,BASE64-ENCODED-COMMAND-TO-BE-EXECUTED }|{base64,-d }|{bash,-i }\\\" ; clear') };\")", "creation_timestamp": "2022-04-25T22:15:20.000000Z"}, {"uuid": "cf61ce71-1851-4ae6-aecd-114ac8ed3c98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/eaglecyberwashere/50", "content": "https://github.com/inspiringz/CVE-2021-22205.git\nCVE-2021-4191: Gitlab Unauthenticated AddUser to Administrator", "creation_timestamp": "2022-12-07T05:53:04.000000Z"}, {"uuid": "c2934bb5-7212-41af-a1f0-9cd15d5d0a4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22206", "type": "published-proof-of-concept", "source": "Telegram/y05H4-_P1KLtkSHjqQtp4ZDwySlctPqv_jV-Y0q3vbrnY2M", "content": "", "creation_timestamp": "2021-05-07T17:47:14.000000Z"}, {"uuid": "b50cd12d-e22a-449f-8251-c47fc3968c7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22208", "type": "published-proof-of-concept", "source": "Telegram/05khXnxFzeAY9j-Rfzxxud6U0klD1LI2QhjmlXFahoVqc2I", "content": "", "creation_timestamp": "2021-05-07T17:47:20.000000Z"}, {"uuid": "cbcf92ea-04d3-4457-b8c5-64b66c50eff6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22201", "type": "published-proof-of-concept", "source": "https://t.me/HackerOne/3071", "content": "CVE-2021\u201322201: Arbitrary file read on Gitlab\n https://tradahacking.vn/cve-2021-22201-arbitrary-file-read-on-gitlab-d84d77cd83e3", "creation_timestamp": "2021-07-05T10:31:36.000000Z"}, {"uuid": "ea83da2e-7be7-41dd-bf49-0ba0f892122f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22201", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/3538", "content": "#exploit\n1. CVE-2021-30724:\nCVMServer Vulnerability in macOS, iPadOS and iOS\nhttps://www.trendmicro.com/en_us/research/21/f/CVE-2021-30724_CVMServer_Vulnerability_in_macOS_and_iOS.html\n\n2. CVE-2021-22201:\nArbitrary file read on Gitlab\nhttps://tradahacking.vn/cve-2021-22201-arbitrary-file-read-on-gitlab-d84d77cd83e3", "creation_timestamp": "2022-07-04T22:13:31.000000Z"}, {"uuid": "6d7b93bc-0070-4ded-98af-1f37a669b701", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422", "content": "", "creation_timestamp": "2021-11-08T08:58:17.000000Z"}, {"uuid": "d6fead70-b239-4b8f-9e07-566f54139f86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d", "content": "", "creation_timestamp": "2025-08-31T03:00:59.000000Z"}, {"uuid": "2d3fdb5c-0018-4b0a-bf83-8f71104d1fc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/8e7dd4c0-9908-429a-a781-e195ccbba047", "content": "", "creation_timestamp": "2026-02-02T12:28:43.264221Z"}, {"uuid": "a2d9a438-12fe-42ce-b3ab-f0f76264e0db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/810", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aAutomated Gitlab RCE via CVE-2021-22205\nURL\uff1ahttps://github.com/X1pe0/Automated-Gitlab-RCE", "creation_timestamp": "2021-11-05T16:51:47.000000Z"}, {"uuid": "9d310998-8790-42b3-b11b-afb88da9bfc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/803", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205&amp; GitLab CE/EE RCE\nURL\uff1ahttps://github.com/devdanqtuan/CVE-2021-22205", "creation_timestamp": "2021-11-04T09:06:20.000000Z"}, {"uuid": "1d867889-9a90-4597-8450-7161bed84d3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/cKure/7805", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 GitLab CE CVE-2021-22205 in the wild.\n\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild/", "creation_timestamp": "2021-10-28T05:18:25.000000Z"}, {"uuid": "9ce05adf-4dc1-4c73-9c64-0754f41aae55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/gitlab_cve_2021_22205", "content": "", "creation_timestamp": "2021-11-05T16:34:58.000000Z"}, {"uuid": "f9f91f81-f962-402b-818f-3af293b8857c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1448", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aA complete PoC for CVE-2021-22204 exiftool RCE \nURL\uff1ahttps://github.com/0xBruno/CVE-2021-22204", "creation_timestamp": "2022-01-30T03:13:33.000000Z"}, {"uuid": "120540f2-e2f2-4120-893d-09e5155f8b26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44931", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aGitLabRCECVE-2021-22205Tool\nURL\uff1ahttps://github.com/whiex/GitLabRCECVE-2021-22205Tool\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-07-22T07:48:08.000000Z"}, {"uuid": "28c27d9b-e047-42d9-82f8-73cad1f5ceef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/882", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aA CVE-2021-22205 Gitlab RCE POC written in Golang\nURL\uff1ahttps://github.com/pizza-power/Golang-CVE-2021-22205-POC", "creation_timestamp": "2021-11-25T12:52:22.000000Z"}, {"uuid": "d2bb7def-b571-4b66-b565-ae01ca21ad05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/881", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 on Docker\nURL\uff1ahttps://github.com/pierDipi/unicode-control-characters-action", "creation_timestamp": "2021-11-25T12:01:35.000000Z"}, {"uuid": "9a84414c-2682-45d6-8c56-431af0307f4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/tech_b0lt_Genona/2887", "content": "\u0412\u0441\u0451 \u0437\u0430\u0431\u044b\u0432\u0430\u043b \u043d\u0430\u043f\u0438\u0441\u0430\u0442\u044c. \u0422\u0443\u0442 GitLab'\u044b, \u0442\u043e\u0440\u0447\u0430\u0449\u0438\u0435 \u043d\u0430\u0440\u0443\u0436\u0443, \u043f\u043e\u043f\u0430\u043b\u0438 \u043f\u043e\u0434 \u0440\u0430\u0437\u0434\u0430\u0447\u0443. \u042f \u0432 \u0430\u043f\u0440\u0435\u043b\u0435 \u0441\u044e\u0434\u0430 \u043f\u0438\u0441\u0430\u043b \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u043d\u0430\u0434\u043e \u0431\u044b \u0441\u0440\u043e\u0447\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u044f\u0442\u044c GitLab \u0438 \u0432\u043e\u0442 \u0442\u0435\u043f\u0435\u0440\u044c \u0443\u0436\u0435 \u043d\u0430\u0434\u043e \u0441\u043e\u0432\u0441\u0435\u043c \u0442\u043e\u0447\u043d\u043e \u0438\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u044f\u0442\u044c, \u043f\u043e\u0442\u043e\u043c\u0443 \u0447\u0442\u043e \u0432\u0441\u0451 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u043e \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e.\n\nGitLab CE CVE-2021-22205 in the wild\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild\n\n\u0427\u0435\u043a\u0430\u043b\u043a\u0438 \u0438 PoC'\u0438 (\u0422\u042b\u0421\u042f\u0427\u0418!11!! \u0438\u0445)\nhttps://github.com/Al1ex/CVE-2021-22205\nhttps://github.com/mr-r3bot/Gitlab-CVE-2021-22205\nhttps://github.com/r0eXpeR/CVE-2021-22205\nhttps://github.com/RedTeamWing/CVE-2021-22205\n\n\u0417\u0430 \u043d\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u043d\u0438\u0435 \u0441\u043f\u0430\u0441\u0438\u0431\u043e @codediggers", "creation_timestamp": "2021-11-05T15:45:45.000000Z"}, {"uuid": "077ff1d8-7c5b-4c76-8502-05ad12f1e66a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/habr_com_news/717", "content": "\u200b\u0425\u0430\u043a\u0435\u0440\u044b \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442 RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c GitLab\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e \u043f\u0440\u043e\u043f\u0430\u0442\u0447\u0435\u043d\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 (RCE) \u0432 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0435 GitLab \u043f\u043e-\u043f\u0440\u0435\u0436\u043d\u0435\u043c\u0443 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438, \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u0430\u044f \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0431\u043e\u043b\u044c\u0448\u043e\u0435 \u0447\u0438\u0441\u043b\u043e \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 \u0441\u0435\u0440\u0432\u0438\u0441\u0430. \u042d\u0442\u0430 \u0434\u044b\u0440\u0430, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0430\u044f \u043a\u043e\u0434 CVE-2021-22205, \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0441\u044f \u043a \u043d\u0435\u0432\u0435\u0440\u043d\u043e\u0439 \u0432\u0430\u043b\u0438\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0439, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0438\u0439\u0441\u044f \u0432 \u043d\u0438\u0445 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434. \u0423\u0433\u0440\u043e\u0437\u0435 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u043a\u0430\u043a \u0432\u0435\u0440\u0441\u0438\u0438 GitLab Enterprise Edition (EE), \u0442\u0430\u043a \u0438 GitLab Community Edition (CE), \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 11.9. \u0417\u0430\u043f\u043b\u0430\u0442\u043a\u0443 \u0436\u0435 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 14 \u0430\u043f\u0440\u0435\u043b\u044f 2021 \u0433\u043e\u0434\u0430 \u0434\u043b\u044f \u0432\u0435\u0440\u0441\u0438\u0439 13.8.8, 13.9.6 \u0438 13.10.3.", "creation_timestamp": "2021-11-03T12:31:19.000000Z"}, {"uuid": "1101ed02-acb9-4491-95e0-8bf57e245e28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "published-proof-of-concept", "source": "https://t.me/ptswarm/37", "content": "ExifTool CVE-2021-22204 - Arbitrary Code Execution discovered by @vakzz.\n\nThe story of finding an ImageTragick-esque vulnerability, originally in gitlab. Go down the rabbit hole of image parsing with perl!\n\nContents:\n \u2022 Background\n \u2022 The Bug\n \u2022 Additional Formats\n \u2022 Bonus Formats\n \u2022 References\n\nhttps://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.html", "creation_timestamp": "2021-05-17T19:44:30.000000Z"}, {"uuid": "293e0c3c-3653-4389-adc7-4b33c9c0c7d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/hacker_trick/375", "content": "#CVE-2021-22205 RCE\n\nhttps://github.com/c0okB/CVE-2021-22205", "creation_timestamp": "2021-11-01T15:05:32.000000Z"}, {"uuid": "b1dc7878-5e8c-4489-83b0-d467c055b0f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/hacker_trick/355", "content": "#CVE-2021-22205 Unauthorized RCE\nhttps://github.com/r0eXpeR/CVE-2021-22205\n\n#CVE-2021-22205&amp; GitLab CE/EE RCE\nhttps://github.com/Al1ex/CVE-2021-22205", "creation_timestamp": "2021-10-29T07:57:34.000000Z"}, {"uuid": "c565c6be-2f0d-47b2-9a3d-dc477f76e6a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/hacker_trick/354", "content": "Pocsuite3 For #CVE-2021-22205\n\nhttps://github.com/RedTeamWing/CVE-2021-22205", "creation_timestamp": "2021-10-28T09:55:15.000000Z"}, {"uuid": "5d170e9f-cb85-429e-904d-d308c83f7a20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "Telegram/oKZsZThJgpyAP79euNwjoNprJoXrtWwpypWHm-rouwqZfQ", "content": "", "creation_timestamp": "2021-11-01T18:07:47.000000Z"}, {"uuid": "d4248482-b5fb-475b-9743-ea378630e75a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "Telegram/xUIvYnIgkC2ndd3njCc7_o2__yPhPQAzlbTehvhGlo-kjw", "content": "", "creation_timestamp": "2021-11-16T02:31:22.000000Z"}, {"uuid": "8955b034-f754-47e1-a843-e2152cf40d6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://t.me/reconshell/705", "content": "CVE-2021-22204\n\nImproper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image\n\nhttps://cve.reconshell.com/cve/CVE-2021-22204", "creation_timestamp": "2021-05-16T17:27:59.000000Z"}, {"uuid": "50992036-4bf1-4258-81ab-93fa8c477233", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22209", "type": "published-proof-of-concept", "source": "Telegram/lwfPj4RZ_szCI3gHcO5PMKIzJcXmg7_7slqlvK8mQL269u4", "content": "", "creation_timestamp": "2021-05-07T17:47:28.000000Z"}, {"uuid": "ae962cd1-88e5-4ed7-9e59-c5efd40b1dbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/thehackernews/1628", "content": "WARNING: A critical unauthenticated remote code execution flaw (CVE-2021-22205) affecting #GitLab CE is being actively exploited in the wild.\n\nDetails: https://thehackernews.com/2021/11/alert-hackers-exploiting-gitlab.html", "creation_timestamp": "2021-11-02T11:06:01.000000Z"}, {"uuid": "1c969e95-b5e4-445a-94c0-b55fc117e133", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/canyoupwnme/6759", "content": "GitLab CE CVE-2021-22205 in the wild\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild/", "creation_timestamp": "2021-10-29T01:48:01.000000Z"}, {"uuid": "069b16fd-8573-48d9-9cab-78b871933056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971092", "content": "", "creation_timestamp": "2024-12-24T20:24:08.149753Z"}, {"uuid": "19d560e4-79ff-47c4-95f2-250e03342863", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971175", "content": "", "creation_timestamp": "2024-12-24T20:25:23.273429Z"}, {"uuid": "05e6867d-1d52-46ff-893a-10b3d440892a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:34.000000Z"}, {"uuid": "0434f595-59ef-4ebc-9b5a-6f75142aedfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:34.000000Z"}, {"uuid": "edd2f633-5032-49dd-b4d0-dae7200897af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/55d4bde7-37fe-41ed-9329-04b2602082a8", "content": "", "creation_timestamp": "2026-02-02T12:28:32.701024Z"}, {"uuid": "b0aacda8-2478-47c7-b603-f01f4e9a7684", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22204", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/55d4bde7-37fe-41ed-9329-04b2602082a8", "content": "", "creation_timestamp": "2026-02-02T12:28:32.701024Z"}, {"uuid": "7542528d-6a4d-4494-85e7-0524b4e7640d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/880", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 on Docker\nURL\uff1ahttps://github.com/ahmad4fifz/CVE-2021-22205", "creation_timestamp": "2021-11-25T09:59:28.000000Z"}, {"uuid": "65edbc31-a4af-4d2b-808d-75ef6f7de75d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/767", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205&amp; GitLab CE/EE RCE\nURL\uff1ahttps://github.com/Al1ex/CVE-2021-22205", "creation_timestamp": "2021-10-29T04:35:21.000000Z"}, {"uuid": "2404a779-f223-434b-bba4-136a7bcc54bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/763", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 Exploit\nURL\uff1ahttps://github.com/r0eXpeR/CVE-2021-22205", "creation_timestamp": "2021-10-28T14:05:09.000000Z"}, {"uuid": "6d11fe0c-1690-434e-86f4-c953541a78f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/759", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aPocsuite3 For CVE-2021-22205\nURL\uff1ahttps://github.com/RedTeamWing/CVE-2021-22205", "creation_timestamp": "2021-10-28T06:33:48.000000Z"}, {"uuid": "276f35ba-a8e3-4647-82e2-85ba00d3f0f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/783", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 RCE \nURL\uff1ahttps://github.com/c0okB/CVE-2021-22205", "creation_timestamp": "2021-10-31T14:38:47.000000Z"}, {"uuid": "ea460cce-e3cd-4378-9efd-763480fdc201", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/785", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205-getshell\nURL\uff1ahttps://github.com/shang159/CVE-2021-22205-getshell", "creation_timestamp": "2021-11-01T06:09:29.000000Z"}, {"uuid": "bcd0066c-377e-4ba0-a0c0-6366de557316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/811", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aExploit for GitLab CVE-2021-22205 Unauthenticated Remote Code Execution\nURL\uff1ahttps://github.com/runsel/GitLab-CVE-2021-22205-", "creation_timestamp": "2021-11-05T17:00:31.000000Z"}, {"uuid": "79c3c777-7ada-41a4-81b3-b226f3d2c238", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/cKure/7906", "content": "\u25a0\u25a1\u25a1\u25a1\u25a1 Attackers are actively exploiting an \u201cold\u201d vulnerability (CVE-2021-22205) to take over on-premise GitLab servers, Rapid7 researcher Jacob Baines warns. The additional bad news is that at least half of the 60,000 internet-facing GitLab installations the company detects are not patched against this issue.\u00a0", "creation_timestamp": "2021-11-04T18:24:21.000000Z"}, {"uuid": "9590dffb-f57a-4824-9474-fe0b797ced8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/itsec_news/3119", "content": "\u200b\u26a1\ufe0f\u041b\u0430\u0431\u043e\u0440\u0430\u0442\u043e\u0440\u043d\u044b\u0435 \u043a\u0440\u044b\u0441\u044b \u0430\u0442\u0430\u043a\u0443\u044e\u0442 GitLab: \u0445\u0430\u043a\u0435\u0440\u044b \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u044f\u044e\u0442 \u043a\u0440\u0438\u043f\u0442\u043e- \u0438 \u043f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u043e\u043c \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 LABRAT.\n\n\ud83d\udcac \u041a\u0430\u043a \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 Sysdig \u0432 \u0441\u0432\u043e\u0451\u043c \u0432\u0447\u0435\u0440\u0430\u0448\u043d\u0435\u043c \u043e\u0442\u0447\u0451\u0442\u0435 , \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u0430\u043c\u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0431\u044b\u043b\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u043d\u043e\u0432\u0430\u044f \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e \u043c\u043e\u0442\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u044f \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c LABRAT, \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c GitLab \u0434\u0432\u0443\u0445\u043b\u0435\u0442\u043d\u0435\u0439 \u0434\u0430\u0432\u043d\u043e\u0441\u0442\u0438 \u0432 \u0446\u0435\u043b\u044f\u0445 \u043a\u0440\u0438\u043f\u0442\u043e\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430 \u0438 \u043f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430.\n\n\u00ab\u0425\u0430\u043a\u0435\u0440\u044b \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u043b\u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b, \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 \u0441\u0438\u0433\u043d\u0430\u0442\u0443\u0440\u0430\u0445, \u0441\u043b\u043e\u0436\u043d\u044b\u0435 \u0438 \u0441\u043a\u0440\u044b\u0442\u043d\u044b\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u044b, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0438 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043e\u0431\u0445\u043e\u0434\u0438\u043b\u0438 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u044b, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0440\u0443\u0442\u043a\u0438\u0442\u044b \u043d\u0430 \u0431\u0430\u0437\u0435 \u044f\u0434\u0440\u0430 \u0434\u043b\u044f \u0441\u043e\u043a\u0440\u044b\u0442\u0438\u044f \u0441\u0432\u043e\u0435\u0433\u043e \u043f\u0440\u0438\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f\u00bb, \u2014 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438.\n\n\u041f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0441\u0434\u0430\u0432\u0430\u0442\u044c \u0432 \u0430\u0440\u0435\u043d\u0434\u0443 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0445\u043e\u0441\u0442 \u0432 \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0442\u044c, \u0447\u0442\u043e\u0431\u044b \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043d\u0435\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u043f\u0440\u043e\u043f\u0443\u0441\u043a\u043d\u0443\u044e \u0441\u043f\u043e\u0441\u043e\u0431\u043d\u043e\u0441\u0442\u044c. \u041a\u0440\u0438\u043f\u0442\u043e\u0434\u0436\u0435\u043a\u0438\u043d\u0433 \u043f\u043e\u0434\u0440\u0430\u0437\u0443\u043c\u0435\u0432\u0430\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0445 \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432 \u0434\u043b\u044f \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u043a\u0440\u0438\u043f\u0442\u043e\u0432\u0430\u043b\u044e\u0442\u044b.\n\n\u041e\u0442\u043b\u0438\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u044c\u044e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u043a\u043e\u043c\u043f\u0438\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0431\u0438\u043d\u0430\u0440\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u043d\u0430 Go \u0438 .NET \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f. LABRAT \u0442\u0430\u043a\u0436\u0435 \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u0443\u0435\u0442 \u043a\u0430\u043a \u0431\u044d\u043a\u0434\u043e\u0440 \u043d\u0430 \u0438\u043d\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445, \u0447\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u043e\u043b\u043e\u0436\u0438\u0442\u044c \u043f\u0443\u0442\u044c \u0434\u043b\u044f \u043f\u043e\u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0445 \u0430\u0442\u0430\u043a, \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430.\n\n\u0410\u0442\u0430\u043a\u0430 \u043d\u0430\u0447\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0441 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2021-22205 \u0441 \u043e\u0446\u0435\u043d\u043a\u043e\u0439 CVSS 10 \u0431\u0430\u043b\u043b\u043e\u0432. \u041a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0437\u0430\u043c\u0435\u0442\u0438\u0442\u044c \u043f\u043e \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0443, \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u0432 2021 \u0433\u043e\u0434\u0443 \u0438 \u0432\u0441\u043a\u043e\u0440\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 GitLab. \u041e\u0434\u043d\u0430\u043a\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u043d\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u043b\u0438 \u0441\u0432\u043e\u0438 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u0441\u0442\u0430\u0432 \u043d\u043e\u0432\u044b\u043c\u0438 \u0436\u0435\u0440\u0442\u0432\u0430\u043c\u0438 \u0445\u0430\u043a\u0435\u0440\u043e\u0432.\n\n\u0423\u0441\u043f\u0435\u0448\u043d\u043e\u0435 \u043f\u0440\u043e\u043d\u0438\u043a\u043d\u043e\u0432\u0435\u043d\u0438\u0435 \u0441\u043e\u043f\u0440\u043e\u0432\u043e\u0436\u0434\u0430\u0435\u0442\u0441\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0435\u043c \u0441\u043a\u0440\u0438\u043f\u0442\u0430-\u0434\u0440\u043e\u043f\u043f\u0435\u0440\u0430 \u043e\u0442 C2-\u0441\u0435\u0440\u0432\u0435\u0440\u0430. \u0414\u0440\u043e\u043f\u043f\u0435\u0440 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442 \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u0441\u0442\u0432\u043e \u0432 \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442 \u0431\u043e\u043a\u043e\u0432\u043e\u0435 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u0435 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0443\u0447\u0451\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 SSH, \u043d\u0430\u0439\u0434\u0435\u043d\u043d\u044b\u0445 \u0442\u0430\u043c \u0436\u0435, \u0438 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0435\u0442 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0431\u0438\u043d\u0430\u0440\u043d\u0438\u043a\u0438 \u0438\u0437 \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u043e\u0433\u043e \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f GitLab.\n\n\u0421\u0435\u0440\u0432\u0438\u0441 TryCloudflare \u0442\u0430\u043a\u0436\u0435 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0432\u0430\u0436\u043d\u044b\u043c \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u043e\u043c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438. \u041e\u043d \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043a\u0440\u044b\u0442\u044b\u0445 \u043a\u0430\u043d\u0430\u043b\u043e\u0432 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0445\u043e\u0441\u0442\u043e\u0432.\n\n\u041d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0445 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u0432 \u0434\u0430\u043d\u043d\u043e\u0439 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0443\u0442\u0438\u043b\u0438\u0442\u0443 \u00abgsocket\u00bb \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0431\u0438\u043d\u0430\u0440\u043d\u0438\u043a\u0438 \u0434\u043b\u044f \u043a\u0440\u0438\u043f\u0442\u043e\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430 \u0438 \u043f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430 \u0447\u0435\u0440\u0435\u0437 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0438\u0441\u044b IPRoyal \u0438 ProxyLite. \u041f\u0440\u043e\u0446\u0435\u0441\u0441 \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u0441\u043a\u0440\u044b\u0442 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0440\u0443\u0442\u043a\u0438\u0442\u0430 \u044f\u0434\u0440\u0430 \u00abhiding-cryptominers-linux-rootkit\u00bb.\n\n\u0422\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u0445\u0430\u043a\u0435\u0440\u044b \u0432\u0435\u0441\u044c\u043c\u0430 \u0438\u0437\u043e\u0449\u0440\u0435\u043d\u043d\u043e \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0441\u0442\u0430\u0440\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e GitLab \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0442\u0438\u0432\u043e\u043f\u0440\u0430\u0432\u043d\u044b\u0445 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0439 \u0441 \u0446\u0435\u043b\u044c\u044e \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e\u0439 \u043d\u0430\u0436\u0438\u0432\u044b. \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043f\u0440\u0438\u0437\u0432\u0430\u043b\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u043d\u0435\u0437\u0430\u043c\u0435\u0434\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b GitLab \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u0432\u0435\u0440\u0441\u0438\u0439, \u0435\u0441\u043b\u0438 \u043e\u043d\u0438 \u043f\u043e \u043a\u0430\u043a\u043e\u0439-\u0442\u043e \u043f\u0440\u0438\u0447\u0438\u043d\u0435 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u044d\u0442\u043e\u0433\u043e \u043d\u0435 \u0441\u0434\u0435\u043b\u0430\u043b\u0438.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2023-08-18T13:53:12.000000Z"}]}