{"vulnerability": "CVE-2024-44309", "sightings": [{"uuid": "8740bd5f-2265-40d3-80a8-dc1ff3705911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "exploited", "source": "https://t.me/kasperskyb2b/1513", "content": "\ud83c\udfaf \u041d\u0435\u0434\u0435\u043b\u044f \u0437\u0438\u0440\u043e\u0434\u0435\u0435\u0432 \u043d\u0430 \u0440\u0430\u0434\u0438\u043e Infosec\n\n\u041c\u0438\u043d\u0443\u0432\u0448\u0430\u044f \u043d\u0435\u0434\u0435\u043b\u044f \u043f\u0440\u0438\u043d\u0435\u0441\u043b\u0430 \u0442\u0430\u043a \u043c\u043d\u043e\u0433\u043e \u043d\u043e\u0432\u043e\u0441\u0442\u0435\u0439 \u043a\u0430\u0442\u0435\u0433\u043e\u0440\u0438\u0438  patch soon, \u0447\u0442\u043e \u043f\u0440\u0438\u0448\u043b\u043e\u0441\u044c \u0437\u0430\u0432\u0435\u0441\u0442\u0438 \u0434\u043b\u044f \u043d\u0438\u0445 \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0439 \u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442.\n\nPanOS: \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u0435 \u044d\u043a\u0440\u0430\u043d\u044b Palo Alto \u043e\u0431\u0437\u0430\u0432\u0435\u043b\u0438\u0441\u044c \u0444\u0438\u043a\u0441\u0430\u043c\u0438 \u0434\u043b\u044f CVE-2024-0012 \u0438 CVE-2024-9474, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0432 \u0441\u043e\u0447\u0435\u0442\u0430\u043d\u0438\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e \u0438 \u043f\u043e\u0432\u044b\u0448\u0430\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0435 \u0434\u043e \u0430\u0434\u043c\u0438\u043d\u0441\u043a\u0438\u0445. \u041a\u0430\u043a \u043c\u0438\u043d\u0438\u043c\u0443\u043c \u0441 18 \u043d\u043e\u044f\u0431\u0440\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u0438 \u043f\u043e \u043e\u0446\u0435\u043d\u043a\u0430\u043c Shadowserver \u043f\u043e\u0440\u0430\u0436\u0435\u043d\u043e \u043e\u043a\u043e\u043b\u043e 2000 \u041c\u0421\u042d.\n\nmacOS: \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043e \u0434\u0432\u0430 \u0437\u0438\u0440\u043e\u0434\u0435\u044f \u0432 JavascriptCore \u0438 WebKit, CVE-2024-44308, CVE-2024-44309, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0442 \u043a XSS \u0438 RCE \u043d\u0430 \u041c\u0430\u043a\u0430\u0445 \u0441 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u0430\u043c\u0438 Intel. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432\u0436\u0438\u0432\u0443\u044e \u2014 \u043a\u0430\u043a \u043e\u0431\u044b\u0447\u043d\u043e \u043d\u0435 \u0433\u043e\u0432\u043e\u0440\u044f\u0442 \u043a\u0435\u043c, \u043d\u043e \u0441\u0443\u0434\u044f \u043f\u043e \u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u043d\u043e\u0441\u0442\u044f\u043c Google TAG \u0437\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0434\u0435\u0444\u0435\u043a\u0442\u043e\u0432, \u044d\u0442\u043e \u0447\u0442\u043e-\u0442\u043e \u0438\u0437 \u0430\u0440\u0441\u0435\u043d\u0430\u043b\u0430 \u0441\u0435\u0440\u044c\u0451\u0437\u043d\u044b\u0445 APT.\n\nUbuntu: \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043e \u043f\u044f\u0442\u044c \u0434\u0435\u0444\u0435\u043a\u0442\u043e\u0432 \u0432 \u0441\u0435\u0440\u0432\u0438\u0441\u0435 needrestart, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u043d\u0430 Ubuntu-\u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u0434\u043e root \u0431\u0435\u0437 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0439 \u0437\u0430\u043b\u043e\u0433\u0438\u043d\u0435\u043d\u043d\u043e\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f. \n\u0418\u043d\u043e\u0433\u0434\u0430 needrestart \u0432\u0441\u0442\u0440\u0435\u0447\u0430\u0435\u0442\u0441\u044f \u0438 \u0432 \u0434\u0440\u0443\u0433\u0438\u0445 \u0434\u0438\u0441\u0442\u0440\u0438\u0431\u0443\u0442\u0438\u0432\u0430\u0445 Linux, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0441\u0435\u0440\u0432\u0438\u0441\u0430 \u0438 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0435\u0433\u043e \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 3.8.\n\n7-zip: \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-11477 \u0432 \u0430\u043b\u0433\u043e\u0440\u0438\u0442\u043c\u0435  Zstandard decompression \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u0432 \u043a\u043e\u043d\u0442\u0435\u043a\u0441\u0442\u0435 \u0442\u0435\u043a\u0443\u0449\u0435\u0433\u043e \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430. \u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f, \u0447\u0442\u043e \u0430\u0440\u0445\u0438\u0432\u0430\u0442\u043e\u0440 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432\u043e \u043c\u043d\u043e\u0433\u0438\u0445 \u0441\u0431\u043e\u0440\u043a\u0430\u0445 Linux, \u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0434\u0435\u0444\u0435\u043a\u0442\u0430 \u0432 WinRAR \u0441\u0442\u0430\u043b\u0430 \u0442\u043e\u043f\u043e\u0432\u044b\u043c \u0432\u0435\u043a\u0442\u043e\u0440\u043e\u043c \u0430\u0442\u0430\u043a \u0432 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u0433\u043e\u0434\u0443, \u043c\u044b \u0431\u044b \u043d\u0435 \u0437\u0430\u0442\u044f\u0433\u0438\u0432\u0430\u043b\u0438 \u0441 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435\u043c.\n\nCitrix: \u0414\u0432\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u0445 \u0447\u0443\u0442\u044c \u0431\u043e\u043b\u044c\u0448\u0435 \u043d\u0435\u0434\u0435\u043b\u0438 \u043d\u0430\u0437\u0430\u0434  \u0434\u0435\u0444\u0435\u043a\u0442\u0430, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0438\u0445 \u043a RCE, CVE-2024-8068  \u0438 -8069, \u043d\u0430\u0447\u0430\u043b\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445. \u041f\u043e\u0441\u043b\u0435 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043f\u0430\u0443\u0437\u044b Citrix \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0445\u043e\u0442\u0444\u0438\u043a\u0441.\n\n\u0427\u0442\u043e\u0431\u044b \u0437\u0430\u043a\u043e\u043d\u0447\u0438\u0442\u044c \u043d\u0430 \u043c\u0435\u043d\u0435\u0435 \u043d\u0435\u0440\u0432\u043d\u043e\u0439 \u0438 \u0434\u0430\u0436\u0435 \u0433\u0434\u0435-\u0442\u043e \u043f\u043e\u0437\u0438\u0442\u0438\u0432\u043d\u043e\u0439 \u043d\u043e\u0442\u0435, Google \u043e\u0442\u0447\u0438\u0442\u0430\u043b\u0438\u0441\u044c, \u0447\u0442\u043e \u043f\u0440\u0438\u043a\u0440\u0443\u0442\u0438\u043b\u0438 \u0418\u0418 \u043a \u0444\u0430\u0437\u0437\u0438\u043d\u0433\u0443 \u0438 \u043d\u0430\u0448\u043b\u0438 26 \u0434\u0435\u0444\u0435\u043a\u0442\u043e\u0432 \u0432 \u0441\u043e\u0444\u0442\u0435 open source, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043e\u0434\u0438\u043d (\u044d\u043a\u0437\u043e\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439) \u0431\u0430\u0433 \u0432 \u043f\u0440\u0435\u043a\u0440\u0430\u0441\u043d\u043e \u043e\u0442\u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0435 OpenSSL. LLM  \u0441\u043e \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u044c\u044e \u0430\u0432\u0442\u043e\u043d\u043e\u043c\u043d\u043e\u0441\u0442\u0438 \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u0435\u0442 \u043d\u0430 \u0432\u0441\u0435\u0445 \u044d\u0442\u0430\u043f\u0430\u0445 \u2014 \u043e\u0442 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u044f \u0443\u0447\u0430\u0441\u0442\u043a\u0430 \u043a\u043e\u0434\u0430 \u0434\u043b\u044f \u0444\u0430\u0437\u0437\u0438\u043d\u0433\u0430 \u0434\u043e \u043f\u0435\u0440\u0432\u0438\u0447\u043d\u043e\u0439 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u0441\u043f\u0440\u043e\u0432\u043e\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0444\u0430\u0437\u0437\u0438\u043d\u0433\u043e\u043c \u0441\u0431\u043e\u0435\u0432.\n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2024-11-23T09:01:40.000000Z"}, {"uuid": "d867413d-9942-4562-8e3e-119440695a35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "exploited", "source": "https://t.me/cvedetector/11554", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44309 - Apple Safari Cross-Site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-44309 \nPublished : Nov. 20, 2024, 12:15 a.m. | 43\u00a0minutes ago \nDescription : A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1 and iPadOS 18.1.1, visionOS 2.1.1. Processing maliciously crafted web content may lead to a cross site scripting attack. Apple is aware of a report that this issue may have been actively exploited on Intel-based Mac systems. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-20T02:02:32.000000Z"}, {"uuid": "f9405a3b-57fa-4403-a42a-4373c3b9d401", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "exploited", "source": "Telegram/bh4tixHw8yPz_nRdcCCtC0xK-SCdLHht1i_q7SHfsW3Sdg", "content": "", "creation_timestamp": "2024-11-20T12:33:01.000000Z"}, {"uuid": "d50c7f6d-33b6-451e-ac3e-ef92a5a56288", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "exploited", "source": "https://t.me/KomunitiSiber/2893", "content": "Apple Releases Urgent Updates to Patch Actively Exploited Zero-Day Vulnerabilities\nhttps://thehackernews.com/2024/11/apple-releases-urgent-updates-to-patch.html\n\nApple has released security updates for iOS, iPadOS, macOS, visionOS, and its Safari web browser to address two zero-day flaws that have come under active exploitation in the wild.\nThe flaws are listed below -\n\nCVE-2024-44308 - A vulnerability in JavaScriptCore that could lead to arbitrary code execution when processing malicious web content\nCVE-2024-44309 - A cookie management vulnerability in", "creation_timestamp": "2024-11-20T08:30:06.000000Z"}, {"uuid": "d6920416-fc72-4b43-adfd-ffff412071aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://www.darkreading.com/cyberattacks-data-breaches/apple-patches-actively-exploited-zero-days", "content": "", "creation_timestamp": "2024-11-20T14:05:05.000000Z"}, {"uuid": "4e07d121-8cbd-4a3a-ac04-3aca255e6d4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2024-0456", "content": "", "creation_timestamp": "2024-11-20T09:00:42.000000Z"}, {"uuid": "c8eae37d-e5b8-4612-8fdd-5ff8fbe0f718", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2024-0457", "content": "", "creation_timestamp": "2024-11-20T09:01:35.000000Z"}, {"uuid": "c4adfae7-2b61-4c0a-b5ef-f4b9466e5a05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://mstdn.ca/users/rfwaveio/statuses/113533002386695018", "content": "", "creation_timestamp": "2024-11-23T15:35:39.603604Z"}, {"uuid": "427f2788-f6e0-4fb9-8519-dc8f29f24710", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:11:02.000000Z"}, {"uuid": "63b390c9-0fdb-4ffb-8a82-fd926e573998", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2024-11-21T21:10:03.000000Z"}, {"uuid": "308b0dcb-f064-43cc-8964-daf6cd2da1b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113521843358225188", "content": "", "creation_timestamp": "2024-11-21T16:17:42.415291Z"}, {"uuid": "b0ee1659-6169-466f-9586-1adb11dd3e19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2729457", "content": "", "creation_timestamp": "2024-11-21T18:34:13.187725Z"}, {"uuid": "d2fcfc0e-6a81-43b4-9e3e-5e224a39914b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:06.000000Z"}, {"uuid": "e920e26f-e75a-48d7-98f0-7b04a2c5d1d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/872e5615-108e-456d-8658-e2927f07b9cd", "content": "", "creation_timestamp": "2026-02-02T12:26:21.132531Z"}, {"uuid": "1aea57ad-2a3d-4152-a3bd-fbb79da8ce76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1427", "content": "", "creation_timestamp": "2024-11-20T04:00:00.000000Z"}, {"uuid": "a6a4095a-02a5-489d-8c64-fd9085ec60b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/872e5615-108e-456d-8658-e2927f07b9cd", "content": "", "creation_timestamp": "2026-02-02T12:26:21.132531Z"}, {"uuid": "94286649-ee6f-42a6-a59b-be0e0c82e93d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://t.me/true_secator/6450", "content": "Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u0432\u0443\u0445 0-day, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u043f\u0440\u0438 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Mac \u043d\u0430 \u0431\u0430\u0437\u0435 Intel.\n\n\u0414\u0432\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430\u0445 macOS Sequoia JavaScriptCore (CVE-2024-44308) \u0438 WebKit (CVE-2024-44309).\n\n\u041f\u0435\u0440\u0432\u0430\u044f \u0432 JavaScriptCore CVE-2024-44308 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u044f\u0442\u044c RCE \u0447\u0435\u0440\u0435\u0437 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u0432\u0435\u0431-\u043a\u043e\u043d\u0442\u0435\u043d\u0442, \u0430 \u0434\u0440\u0443\u0433\u0430\u044f, CVE-2024-44309, - \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043c\u0435\u0436\u0441\u0430\u0439\u0442\u043e\u0432\u043e\u0433\u043e \u0441\u043a\u0440\u0438\u043f\u0442\u0438\u043d\u0433\u0430 (CSS).\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0437\u0430\u044f\u0432\u043b\u044f\u0435\u0442, \u0447\u0442\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 macOS Sequoia 15.1.1.\n\n\u041f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0442\u0435 \u0436\u0435 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u044b \u043f\u0440\u0438\u0441\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0442 \u0438 \u0432 \u0434\u0440\u0443\u0433\u0438\u0445 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 Apple, \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0442\u0430\u043a\u0436\u0435 \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u0432 iOS 17.7.2 \u0438 iPadOS 17.7.2, iOS 18.1.1 \u0438 iPadOS 18.1.1, \u0430 \u0442\u0430\u043a\u0436\u0435 visionOS 2.1.1.\n\n\u041e\u0442\u043d\u043e\u0441\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043c\u043e\u0436\u043d\u043e \u0432\u0441\u0435 \u043f\u043e\u043d\u044f\u0442\u044c \u0431\u0435\u0437 \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u043a\u043e\u043c\u043c\u0435\u043d\u0442\u0430\u0440\u0438\u0435\u0432 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u043e\u0431\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438\u0437 Google TAG. \n\n\u0412\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0441 \u043d\u0438\u043c\u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u044b \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0438 \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u044b spyware.\n\n\u0422\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u0432 2024 \u0433\u043e\u0434\u0443 \u0447\u0438\u0441\u043b\u043e \u043d\u0443\u043b\u0435\u0439 \u0434\u043e\u0441\u0442\u0438\u0433\u043b\u043e \u043f\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044f - \u0448\u0435\u0441\u0442\u0438, \u0447\u0442\u043e \u043d\u0435\u043f\u043e\u0440\u044f\u0434\u043e\u043a \u043c\u0435\u043d\u044c\u0448\u0435 \u043f\u0440\u043e\u0448\u043b\u043e\u0433\u043e\u0434\u043d\u0435\u0439 \u0441\u0442\u0430\u0442\u0438\u0441\u0442\u0438\u043a\u0438, \u043a\u043e\u0433\u0434\u0430 \u0431\u044b\u043b\u043e \u0437\u0430\u043a\u0440\u044b\u0442\u043e 20 0-day. \n\n\u041c\u0430\u043b\u043e\u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0447\u0442\u043e \u0441\u0438\u0442\u0443\u0430\u0446\u0438\u044f \u043a\u0430\u0440\u0434\u0438\u043d\u0430\u043b\u044c\u043d\u043e \u0438\u0437\u043c\u0435\u043d\u0438\u0442\u044c\u0441\u044f, \u0435\u0441\u043b\u0438 \u043d\u0430 \u0433\u043e\u0440\u0438\u0437\u043e\u043d\u0442\u0435 \u043d\u0435 \u043d\u0430\u0440\u0438\u0441\u0443\u0435\u0442\u0441\u044f \u043d\u043e\u0432\u0430\u044f \u00ab\u0422\u0440\u0438\u0430\u043d\u0433\u0443\u043b\u044f\u0446\u0438\u044f\u00bb.\n\n\u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2024-11-20T12:34:35.000000Z"}, {"uuid": "840b4b6c-3933-4b97-ae24-168fd30a3671", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113511151778117019", "content": "", "creation_timestamp": "2024-11-19T18:58:42.262827Z"}, {"uuid": "1548c856-0d94-452c-8e99-ca423fc47dc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://thehackernews.com/2024/11/apple-releases-urgent-updates-to-patch.html", "content": "", "creation_timestamp": "2024-11-20T04:37:00.000000Z"}, {"uuid": "8411506c-4581-45e2-b4cc-550ca6274d57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:32.000000Z"}, {"uuid": "dc529d32-62b2-4c4f-8306-3ea162de88fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-44309", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/ad1ae2c4-042c-4d66-8de6-ebb2212ca611", "content": "", "creation_timestamp": "2024-11-20T05:23:51.386432Z"}]}