{"vulnerability": "CVE-2025-0411", "sightings": [{"uuid": "af29caf4-f224-49e8-b989-1b5a15dec09c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/10660", "content": "\ud83d\udea8CVE-2025-0411: 7-Zip Mark-of-the-Web Bypass Vulnerability\n\nhttps://darkwebinformer.com/cve-2025-0411-7-zip-mark-of-the-web-bypass-vulnerability/", "creation_timestamp": "2025-01-22T22:57:50.000000Z"}, {"uuid": "72c4fd1e-e216-4051-ab52-39057453a50b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1535", "content": "This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\n\nhttps://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC", "creation_timestamp": "2025-02-20T04:06:04.000000Z"}, {"uuid": "efe4a61a-a5e0-417e-b5e7-3413ee21bd31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/proxy_bar/2507", "content": "\u041f\u043e\u043c\u043d\u0438\u0442\u0435 \u043a\u0443\u043b\u043b-\u0441\u0442\u043e\u0440\u0438 \u043f\u0440\u043e 0day \u0432 7zip \u043a\u043e\u0433\u0434\u0430 RU \u0445\u0430\u043a\u0435\u0440\u044b \u043f\u043e\u0431\u043b\u044d\u0447\u0438\u043b\u0438 UA \u0433\u043e\u0441. \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0438 \u0447\u0435\u0440\u0435\u0437 \u043d\u0438\u0445 \u0436\u0435 \u0440\u0430\u0441\u043a\u0438\u0434\u044b\u0432\u0430\u043b\u0438 \u043c\u0430\u043b\u0432\u0430\u0440\u044c \u0432 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u0435 2024 \u0433\u043e\u0434\u0430 (SmokeLoader malware) ?\n\u0422\u0430\u043a \u0432\u043e\u0442, \u0435\u0441\u0442\u044c \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0435\u043d\u0438\u0435 ))))\n\u041d\u043e\u0432\u044b\u0439 \u0433\u043e\u0434, \u043d\u043e\u0432\u044b\u0435 \u0434\u044b\u0440\u044b - CVE-2025-0411\nREADME", "creation_timestamp": "2025-02-04T23:01:21.000000Z"}, {"uuid": "b71473e3-305c-473b-b6a7-d9c7ebfce2e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/8018", "content": "This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\n\nhttps://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC", "creation_timestamp": "2025-02-25T13:04:41.000000Z"}, {"uuid": "9225ec95-dd85-4b7b-8155-77ccc59a00ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/true_secator/6911", "content": "\ud83d\udcc2 WinRAR \u0441\u043d\u043e\u0432\u0430 \u043f\u043e\u0434 \u0443\u0434\u0430\u0440\u043e\u043c \ud83e\udd77 \u0445\u0430\u043a\u0435\u0440\u043e\u0432\n\n\u042d\u043a\u0441\u043f\u0435\u0440\u0442\u044b \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 WinRAR (CVE-2025-31334), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043e\u0431\u043e\u0439\u0442\u0438 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c \u0437\u0430\u0449\u0438\u0442\u044b Windows Mark of the Web (MotW) \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 Windows \u0431\u0435\u0437 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f. \u041d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0441\u0440\u0435\u0434\u043d\u044e\u044e \u043e\u0446\u0435\u043d\u043a\u0443 \u043f\u043e CVSS (6.8), \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0436\u0435\u0442 \u0438\u043c\u0435\u0442\u044c \u0432\u044b\u0441\u043e\u043a\u0438\u0439 \u0440\u0438\u0441\u043a \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0440\u0435\u0434\u0435 \u0438\u0437-\u0437\u0430 \u0448\u0438\u0440\u043e\u043a\u043e\u0433\u043e \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f WinRAR \u0438 \u043e\u0431\u0445\u043e\u0434\u0430 \u0432\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b Windows.\n\n\u0421\u0446\u0435\u043d\u0430\u0440\u0438\u0439 \u0430\u0442\u0430\u043a\u0438 \u043f\u0440\u0435\u0434\u0435\u043b\u044c\u043d\u043e \u043f\u0440\u043e\u0441\u0442. \u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0435\u0442 \u043d\u0430 \u043f\u0435\u0440\u0432\u044b\u0439 \u0432\u0437\u0433\u043b\u044f\u0434 \u0431\u0435\u0437\u0432\u0440\u0435\u0434\u043d\u044b\u0439 \u0430\u0440\u0445\u0438\u0432. \u0412\u043d\u0443\u0442\u0440\u0438, \u043d\u0430\u0440\u044f\u0434\u0443 \u0441 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u043c\u0438 \u0444\u0430\u0439\u043b\u0430\u043c\u0438, \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u0430 \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0441\u044b\u043b\u043a\u0430, \u0437\u0430\u043c\u0430\u0441\u043a\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043f\u043e\u0434 \u043e\u0431\u044b\u0447\u043d\u044b\u0439 \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442 \u0438\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u043d\u044f\u0435\u043c\u044b\u0439 \u0444\u0430\u0439\u043b. \u041e\u0442\u043a\u0440\u044b\u0442\u0438\u0435 \u044d\u0442\u043e\u0439 \u0441\u0441\u044b\u043b\u043a\u0438 \u0430\u043a\u0442\u0438\u0432\u0438\u0440\u0443\u0435\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0435 \u041f\u041e \u0431\u0435\u0437 \u043a\u0430\u043a\u0438\u0445-\u043b\u0438\u0431\u043e \u043f\u0440\u0438\u0437\u043d\u0430\u043a\u043e\u0432 \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438. \n\n\ud83d\udcd6 \u0412\u0435\u043a\u0442\u043e\u0440 \u0430\u0442\u0430\u043a\u0438: \u043f\u043e\u0441\u0435\u0449\u0435\u043d\u0438\u0435 \u0441\u0430\u0439\u0442\u0430 \u0441 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u043c \u0430\u0440\u0445\u0438\u0432\u043e\u043c;\n\n\ud83e\udda0 \u0414\u043e\u0441\u0442\u0430\u0432\u043a\u0430 \u043c\u0430\u043b\u0432\u0430\u0440\u0438: \u043f\u043e\u043a\u0430 \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0451\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a \u043d\u0435\u0442, \u043d\u043e \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2023-38831) \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0434\u043b\u044f \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f DarkMe \u0438 Agent Tesla.\n\n\u26d4\ufe0f\u26a0\ufe0f \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043c\u0430\u0441\u0441\u043e\u0432\u043e, \u043d\u043e \u0443\u0433\u0440\u043e\u0437\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u043d\u0430 \u0434\u043b\u044f \u0441\u0438\u0441\u0442\u0435\u043c \u0441 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u043c\u0438 \u043f\u043e\u043b\u0438\u0442\u0438\u043a\u0430\u043c\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438.\n\n\ud83d\udd27\u0427\u0442\u043e \u0434\u0435\u043b\u0430\u0442\u044c?\n\n\u2705 \u041e\u0431\u043d\u043e\u0432\u0438\u0442\u044c WinRAR \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 7.11 \u0438\u043b\u0438 \u0432\u044b\u0448\u0435;\n\u2705 \u0417\u0430\u043f\u0440\u0435\u0442\u0438\u0442\u044c \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u0435 \u0441\u0438\u043c\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u0441\u0441\u044b\u043b\u043e\u043a \u043e\u0431\u044b\u0447\u043d\u044b\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c;\n\u2705 \u041d\u0435 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u0438 \u043d\u0435 \u0440\u0430\u0441\u043f\u0430\u043a\u043e\u0432\u044b\u0432\u0430\u0442\u044c \u043f\u043e\u0434\u043e\u0437\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0430\u0440\u0445\u0438\u0432\u044b \u0438\u0437 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430.\n\n\ud83d\udca1 \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0430\u0439\u0434\u0435\u043d\u0430 \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u043e\u043c \u0422\u0430\u0439\u0445\u044d\u0439 \u0421\u0438\u043c\u0430\u043c\u0438\u043d\u044d \u0438\u0437 \ud83c\uddef\ud83c\uddf5Mitsui Bussan Secure Directions \u0438 \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 JPCERT/CC. \u042d\u0442\u043e \u0443\u0436\u0435 \u0432\u0442\u043e\u0440\u043e\u0439 MotW-\u043e\u0431\u0445\u043e\u0434 \u0437\u0430 \u0433\u043e\u0434, \u043f\u043e\u0441\u043b\u0435 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 7-Zip (CVE-2025-0411).\n\n\u041f\u0440\u0438\u043c\u0435\u0447\u0430\u0442\u0435\u043b\u044c\u043d\u043e \u0442\u043e, \u0447\u0442\u043e \u044d\u0442\u043e \u0443\u0436\u0435 \u0432\u0442\u043e\u0440\u043e\u0439 \u0441\u043b\u0443\u0447\u0430\u0439 \u043e\u0431\u0445\u043e\u0434\u0430 MotW \u0437\u0430 \u0433\u043e\u0434, \u043f\u043e\u0441\u043b\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 7-Zip (CVE-2025-0411).\n\n\ud83d\udc46WinRAR \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u043c 500 \u043c\u0438\u043b\u043b\u0438\u043e\u043d\u0430\u043c\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\n\u270b @Russian_OSINT", "creation_timestamp": "2025-04-04T12:36:46.000000Z"}, {"uuid": "45e06a78-fae9-4ba0-b3d1-36aabf116c0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://t.me/true_secator/6642", "content": "Trend Micro \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0435 \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 7-Zip, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043e\u0431\u043e\u0439\u0442\u0438 \u0444\u0443\u043d\u043a\u0446\u0438\u044e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Windows MoTW \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u0430\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u043f\u0440\u0438 \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0438\u0437 \u0432\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0445 \u0430\u0440\u0445\u0438\u0432\u043e\u0432.\n\n7-Zip \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0443 MotW \u0432 \u0438\u044e\u043d\u0435 2022 \u0433\u043e\u0434\u0430, \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 \u0432\u0435\u0440\u0441\u0438\u0438 22.00. \u0421 \u0442\u0435\u0445 \u043f\u043e\u0440 \u0444\u043b\u0430\u0433\u0438 MotW (\u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0435 \u0430\u043b\u044c\u0442\u0435\u0440\u043d\u0430\u0442\u0438\u0432\u043d\u044b\u0435 \u043f\u043e\u0442\u043e\u043a\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 Zone.Id) \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0434\u043e\u0431\u0430\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u043a\u043e \u0432\u0441\u0435\u043c \u0444\u0430\u0439\u043b\u0430\u043c, \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u043d\u044b\u043c \u0438\u0437 \u0437\u0430\u0433\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u0430\u0440\u0445\u0438\u0432\u043e\u0432.\n\n\u041e\u043d\u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u0443\u0435\u0442 \u041e\u0421, \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u044b \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0444\u0430\u0439\u043b\u044b \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u044b \u0438\u0437 \u043d\u0435\u043d\u0430\u0434\u0435\u0436\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432, \u0430 \u0438\u0445 \u0437\u0430\u043f\u0443\u0441\u043a \u0442\u0430\u043a\u0438\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043e\u043f\u0430\u0441\u043d\u043e\u043c\u0443 \u043f\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044e.\n\n\u041f\u0440\u0438 \u043d\u0430\u043b\u0438\u0447\u0438\u0438 \u0442\u0430\u043a\u043e\u0433\u043e \u0444\u043b\u0430\u0433\u0430 Microsoft Office \u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442 \u0438\u0445 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0435 \u0432 \u0440\u0435\u0436\u0438\u043c\u0435 \u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u0442 \u0440\u0435\u0436\u0438\u043c \u00ab\u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f\u00bb \u0438 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442 \u0432\u0441\u0435 \u043c\u0430\u043a\u0440\u043e\u0441\u044b.\n\n\u041e\u0434\u043d\u0430\u043a\u043e, \u043a\u0430\u043a \u043f\u043e\u044f\u0441\u043d\u0438\u043b\u0438 \u0432 Trend Micro, CVE-2025-0411 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043e\u0431\u043e\u0439\u0442\u0438 \u0432\u0441\u0435 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u0430\u0445 \u0441\u0432\u043e\u0438\u0445 \u0446\u0435\u043b\u0435\u0439.\n\n\u0414\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u044d\u0442\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0442\u0440\u0435\u0431\u0443\u0435\u0442\u0441\u044f \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u0441 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0446\u0435\u043b\u044c \u0434\u043e\u043b\u0436\u043d\u0430 \u043f\u043e\u0441\u0435\u0442\u0438\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0443\u044e \u0441\u0442\u0440\u0430\u043d\u0438\u0446\u0443 \u0438\u043b\u0438 \u043e\u0442\u043a\u0440\u044b\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u0444\u0430\u0439\u043b.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043e\u0431\u0443\u0441\u043b\u043e\u0432\u043b\u0435\u043d\u0430 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u044f\u043c\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u0430\u0440\u0445\u0438\u0432\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0438 \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0442\u043e\u043c\u0443, \u0447\u0442\u043e \u043f\u0440\u0438 \u0440\u0430\u0437\u0430\u0440\u0445\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0438 7-Zip \u043d\u0435 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 \u0444\u043b\u0430\u0433\u0438 MotW \u043d\u0430 \u0438\u0437\u0432\u043b\u0435\u043a\u0430\u0435\u043c\u043e\u0435 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435.\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u043b\u044f RCE \u0432 \u043a\u043e\u043d\u0442\u0435\u043a\u0441\u0442\u0435 \u0442\u0435\u043a\u0443\u0449\u0435\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f.\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 7-Zip \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438\u00a030 \u043d\u043e\u044f\u0431\u0440\u044f 2024 \u0433\u043e\u0434\u0430\u00a0\u0432\u043c\u0435\u0441\u0442\u0435 \u0441 7-Zip 24.09. \n\n\u041a\u0430\u043a \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0438 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438, 7-Zip File Manager \u043d\u0435 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u043b \u043f\u043e\u0442\u043e\u043a Zone.Identifier \u0434\u043b\u044f \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0438\u0437 \u0432\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0445 \u0430\u0440\u0445\u0438\u0432\u043e\u0432 (\u0435\u0441\u043b\u0438 \u0432\u043d\u0443\u0442\u0440\u0438 \u0434\u0440\u0443\u0433\u043e\u0433\u043e \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u0433\u043e \u0430\u0440\u0445\u0438\u0432\u0430 \u0435\u0441\u0442\u044c \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0439 \u0430\u0440\u0445\u0438\u0432).\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u0432 \u0432\u0438\u0434\u0443 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u0443 7-Zip \u0444\u0443\u043d\u043a\u0446\u0438\u0438 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f, \u043c\u043d\u043e\u0433\u0438\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043f\u043e-\u043f\u0440\u0435\u0436\u043d\u0435\u043c\u0443 \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0442 \u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0435\u0439, \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u0430\u044f \u0441\u0432\u043e\u0438 \u0445\u043e\u0441\u0442\u044b \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u043c\u0443 \u0437\u0430\u0440\u0430\u0436\u0435\u043d\u0438\u044e \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u043c \u041f\u041e.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c 7-Zip \u0441\u043b\u0435\u0434\u0443\u0435\u0442 \u043a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u0440\u0435\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0438, \u0443\u0447\u0438\u0442\u044b\u0432\u0430\u044f, \u0447\u0442\u043e \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0443\u0436\u0435 \u043d\u0435 \u0440\u0430\u0437 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445, \u043a\u0430\u043a \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0441 CVE-2024-38213 \u0438 CVE-2024-21412.", "creation_timestamp": "2025-01-21T19:04:29.000000Z"}, {"uuid": "fe4f534c-480d-4512-a113-6ca9ac9da9c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11737", "content": "#exploit\n1. CVE-2020-10136, CVE-2024-7595:\nScanner and attack suite for hosts that forward unauthenticated packets via IPIP/GRE protocols\nhttps://github.com/GustavoHGP/ipeeyoupeewepee\n\n2. CVE-2024-55591:\nFortiOS/FortiProxy Authentication bypass in Node.js websocket module\nhttps://github.com/robomusk52/exp-cmd-add-admin-vpn-CVE-2024-55591\n\n3. CVE-2025-0411:\n7-Zip MotW Bypass\nhttps://github.com/CastroJared/7-Zip-CVE-2025-0411-POC", "creation_timestamp": "2025-01-27T11:31:38.000000Z"}, {"uuid": "8cda38aa-4791-450c-b7bf-8f27256523ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lgbb6b2hzr2x", "content": "", "creation_timestamp": "2025-01-21T16:22:29.001042Z"}, {"uuid": "7a888533-7629-4e47-9a81-71db31768a62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3lgbdmra7ho2l", "content": "", "creation_timestamp": "2025-01-21T17:06:22.887750Z"}, {"uuid": "005b89d6-fa71-4d89-bd23-c7438b0917d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/darkwebinformer.bsky.social/post/3lgeeer2ad22n", "content": "", "creation_timestamp": "2025-01-22T21:57:49.265550Z"}, {"uuid": "ce91152f-2a38-402a-9ee3-9e6799030a19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/decrypt.lol/post/3lgrnlkpwoq26", "content": "", "creation_timestamp": "2025-01-28T04:47:16.487251Z"}, {"uuid": "1c9cecd4-9888-41b8-a9c9-12cec371aa17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lhhhs3hd6f2f", "content": "", "creation_timestamp": "2025-02-05T21:02:11.166032Z"}, {"uuid": "2ef41eb3-a0eb-4224-b2ed-dbe4cdbcdbf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/mitstek.bsky.social/post/3lhkggvctvs2b", "content": "", "creation_timestamp": "2025-02-07T01:15:55.859069Z"}, {"uuid": "c8257731-2921-4aa6-95c3-baf77d3d6d24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3lhjsci676c2r", "content": "", "creation_timestamp": "2025-02-06T19:15:35.831871Z"}, {"uuid": "72f2def3-aaff-4c98-80ca-b0e3b1725911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lgew6zvcok2n", "content": "", "creation_timestamp": "2025-01-23T03:16:43.048634Z"}, {"uuid": "3af2f7e7-3f25-4081-8723-4f665c0cb0d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/virusbtn.bsky.social/post/3lhgfp6qh4k2n", "content": "", "creation_timestamp": "2025-02-05T10:52:10.900018Z"}, {"uuid": "d4d01b27-ecb7-408e-a102-810c3335e139", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-0411", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lgpgl5o7rk2w", "content": "", "creation_timestamp": "2025-01-27T07:36:27.074686Z"}, {"uuid": "11352fae-ed0f-456c-b9d1-e99f6d2c5964", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/socprime.com/post/3lhgnhr7f272g", "content": "", "creation_timestamp": "2025-02-05T13:11:03.415956Z"}, {"uuid": "9040617b-8e88-4537-b3ed-a1542f9e7c9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-846595b3-e9c03bd14b1563d8", "content": "", "creation_timestamp": "2025-01-24T07:59:36.895749Z"}, {"uuid": "f1b47eb6-4eb3-4cdd-8709-6a51768cc2cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-0411", "type": "seen", "source": "https://infosec.exchange/users/patrickcmiller/statuses/113961593796535763", "content": "", "creation_timestamp": "2025-02-07T08:12:01.852446Z"}, {"uuid": "e255d6ec-f649-46d9-95f8-549c189ac460", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/aimainainnu.bsky.social/post/3lhhr7yozv22z", "content": "", "creation_timestamp": "2025-02-05T23:51:07.461176Z"}, {"uuid": "84ad4602-240d-497b-8319-ed7a52823b78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113958093669259699", "content": "", "creation_timestamp": "2025-02-06T17:21:54.087984Z"}, {"uuid": "53a14b80-94de-4c27-ad10-785e97d8a4c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-0411", "type": "seen", "source": "https://bsky.app/profile/OpenSource.activitypub.awakari.com.ap.brid.gy/post/3lhe4yp2chmz2", "content": "", "creation_timestamp": "2025-02-04T13:11:27.370585Z"}, {"uuid": "ce43123f-5bce-490e-b191-0ee58b419e18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhkmksiklc2i", "content": "", "creation_timestamp": "2025-02-07T03:05:31.427560Z"}, {"uuid": "f9518c0b-0198-4258-a6f3-af7361ab6770", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3lhe5xpgrbu2u", "content": "", "creation_timestamp": "2025-02-04T13:28:18.310284Z"}, {"uuid": "a8a77288-7c56-4447-8890-c74dd5ff7827", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3lhe7ycnjr62y", "content": "", "creation_timestamp": "2025-02-04T14:04:25.905271Z"}, {"uuid": "a65ea9b1-edcf-4af6-9ca4-0ecc1b09d89b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3lhfbql7vdz27", "content": "", "creation_timestamp": "2025-02-05T00:08:34.520611Z"}, {"uuid": "3ff79de4-0ebc-40fe-98e9-af359bf1e091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://threatintel.cc/2025/02/05/cve-ukrainian-organizations-targeted-in.html", "content": "", "creation_timestamp": "2025-02-05T13:09:51.000000Z"}, {"uuid": "ff48363e-e966-4c5d-8fe0-92355e4572d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lhh37otp2d2c", "content": "", "creation_timestamp": "2025-02-05T17:17:04.857789Z"}, {"uuid": "fc8b593a-9e01-48f2-ac5b-0e3751ffada1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/cybersecurity.page/post/3lhfdnaijpp25", "content": "", "creation_timestamp": "2025-02-05T00:42:29.505273Z"}, {"uuid": "f1759b8c-8439-4f90-9296-ee6c1d0b518e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/helpnetsecurity.com/post/3lhec7kc6c224", "content": "", "creation_timestamp": "2025-02-04T14:44:21.669403Z"}, {"uuid": "b2442f00-7162-4e53-8977-146e1072819d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/matricedigitale.bsky.social/post/3lheccgog4c2t", "content": "", "creation_timestamp": "2025-02-04T14:45:54.109770Z"}, {"uuid": "b869204e-1cac-4afe-a9a0-85ef710ae2f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhfmspehtc2r", "content": "", "creation_timestamp": "2025-02-05T03:26:46.382551Z"}, {"uuid": "977b4cb4-e8e8-4432-b0d7-b324226c8be7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhfmvjkcj22r", "content": "", "creation_timestamp": "2025-02-05T03:28:15.275252Z"}, {"uuid": "754c6740-adfd-4766-b71a-0a6470759e81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/3282374", "content": "", "creation_timestamp": "2025-02-06T18:36:04.122659Z"}, {"uuid": "c837cf25-c613-4baa-a9c3-8e14c5b1bcac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lhfr3uukg22w", "content": "", "creation_timestamp": "2025-02-05T04:43:20.105593Z"}, {"uuid": "4c84660d-f2a9-4f95-913e-c715df8253ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lhfyulz6i22n", "content": "", "creation_timestamp": "2025-02-05T07:02:25.539905Z"}, {"uuid": "8fd7e64b-2669-4784-9786-f7177c118661", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lhef36xlks2q", "content": "", "creation_timestamp": "2025-02-04T15:35:32.458869Z"}, {"uuid": "8c710d8c-42f6-4ddb-bbcd-dd1fb1d61377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-0411", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lhfzp25virp2", "content": "", "creation_timestamp": "2025-02-05T07:17:20.865316Z"}, {"uuid": "924562c1-e321-4e82-a45a-171c2e0e042f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3lhh7oopuj525", "content": "", "creation_timestamp": "2025-02-05T18:37:02.928573Z"}, {"uuid": "6dd3791e-c7c6-46d2-a1f8-0b906f8cf658", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3lhso4qxua22e", "content": "", "creation_timestamp": "2025-02-10T07:54:45.466252Z"}, {"uuid": "88d93775-c4ab-4450-adba-59f3d08bccf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lhswtpokms2n", "content": "", "creation_timestamp": "2025-02-10T10:30:45.006355Z"}, {"uuid": "f64946d5-45da-4062-b1b2-99e2d2c59c17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://threatintel.cc/2025/02/10/xe-hacker-group-exploits-veracore.html", "content": "", "creation_timestamp": "2025-02-10T10:32:44.000000Z"}, {"uuid": "6e7d4a16-ff28-40fa-98ba-29cf00bec8ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lhufisewd22n", "content": "", "creation_timestamp": "2025-02-11T00:25:44.993064Z"}, {"uuid": "fc7f865a-4fda-42ea-ae9f-f2763a0c23b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/patrickcmiller.bsky.social/post/3lhwoinnnh424", "content": "", "creation_timestamp": "2025-02-11T22:12:02.542006Z"}, {"uuid": "9c680327-7ec7-4169-9237-9d5ea7547e63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-0411", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-62c66bd7-322bae59be1922b8", "content": "", "creation_timestamp": "2025-02-13T11:01:52.351785Z"}, {"uuid": "34dc2892-044b-4d7c-8c43-9d5ca59e04b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/r-redteamsec.bsky.social/post/3lihqu6cbgf2v", "content": "", "creation_timestamp": "2025-02-18T17:09:31.951700Z"}, {"uuid": "cd41f2da-97fc-44db-a319-2173ac57d150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6c3abe9e-5757-4507-9c07-09b53fa26903", "content": "", "creation_timestamp": "2026-02-02T12:26:15.132189Z"}, {"uuid": "7fe4ab4a-35c3-4072-99e7-aa6321550cde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62443", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/VeilVulp/RscScan\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-10T15:51:26.000000Z"}, {"uuid": "8d8194f2-a718-4970-b399-e63e3f8ad0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://t.me/true_secator/7145", "content": "\u0420\u0435\u0441\u0435\u0440\u0447\u0435\u0440\u044b \u0438\u0437 \u041b\u0430\u0431\u043e\u0440\u0430\u0442\u043e\u0440\u0438\u0438 \u041a\u0430\u0441\u043f\u0435\u0440\u0441\u043a\u043e\u0433\u043e \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0438 \u043e\u0442\u0447\u0435\u0442 \u0441 \u043e\u0431\u0437\u043e\u0440\u043e\u043c \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 APT \u0438 \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e \u043c\u043e\u0442\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a \u043d\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0435 \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u044f\u0442\u0438\u044f \u0438 \u043e\u0431\u044a\u0435\u043a\u0442\u044b \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u0445 \u0432 \u043f\u0435\u0440\u0432\u043e\u043c \u043a\u0432\u0430\u0440\u0442\u0430\u043b\u0435 2025 \u0433\u043e\u0434\u0430.\n\n\u041d\u0435 \u0432\u0434\u0430\u0432\u0430\u044f\u0441\u044c \u0432 \u0434\u0435\u0442\u0430\u043b\u0438, \u0432\u044b\u0434\u0435\u043b\u0438\u043c \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0435 \u043e\u0442\u043c\u0435\u0447\u0435\u043d\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u043f\u043e \u0438\u0442\u043e\u0433\u0430\u043c \u043a\u0432\u0430\u0440\u0442\u0430\u043b\u0430 \u0442\u0440\u0435\u043d\u0434\u044b.\n\n\u041d\u0430 \u043a\u043e\u0440\u0435\u0439\u0441\u043a\u043e\u043c \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u0440\u0438\u0441\u043a\u0438 \u0430\u0442\u0430\u043a \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a. \u041d\u0430 \u044d\u0442\u043e\u0442 \u0440\u0430\u0437 \u0446\u0435\u043b\u044c\u044e \u0441\u0442\u0430\u043b \u043c\u0435\u0441\u0442\u043d\u044b\u0439 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a VPN-\u0440\u0435\u0448\u0435\u043d\u0438\u044f.\n\n\u041f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u043b\u0430 \u043a\u0430\u043a \u043c\u0438\u043d\u0438\u043c\u0443\u043c \u043e\u0434\u043d\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0430\u044f \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f - \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u043f\u043e\u043b\u0443\u043f\u0440\u043e\u0432\u043e\u0434\u043d\u0438\u043a\u043e\u0432\u043e\u0439 \u043f\u0440\u043e\u0434\u0443\u043a\u0446\u0438\u0438.\n\n\u0412 \u0434\u0432\u0443\u0445 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u0445 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043b\u0438\u0441\u044c 0-day \u0432 \u0445\u043e\u0434\u0435 \u0430\u0442\u0430\u043a \u043d\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 - \u043e\u0434\u0438\u043d \u043a\u0430\u0441\u0430\u043b\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 7-Zip, \u0430 \u0434\u0440\u0443\u0433\u043e\u0439 - 0-click \u0432 MS Windows.\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a \u043e\u0442\u043a\u0430\u0437\u0430\u043b\u0441\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0445\u043e\u0442\u044f \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u043e\u0442\u0441\u043b\u0435\u0436\u0435\u043d\u0430 \u0432 \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u0438\u0445 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u0445, \u0441\u0430\u043c\u0430\u044f \u0440\u0430\u043d\u043d\u044f\u044f \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u0430 \u0432 2017 \u0433\u043e\u0434\u0443.\n\n\u0422\u0435\u0445\u043d\u0438\u043a\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u043e\u0432-\u043f\u043e\u043b\u0438\u0433\u043b\u043e\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0441\u043e\u0437\u0434\u0430\u044e\u0442\u0441\u044f \u0438\u0437 \u0434\u0430\u043d\u043d\u044b\u0445 \u0440\u0430\u0437\u043d\u044b\u0445 \u0444\u043e\u0440\u043c\u0430\u0442\u043e\u0432 \u0442\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u0447\u0442\u043e \u0438\u0445 \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0438\u0440\u0443\u044e\u0442 \u0440\u0430\u0437\u043d\u044b\u0435 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u0435 \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0430\u0442\u043e\u0440\u044b, \u0432\u043d\u0435\u0437\u0430\u043f\u043d\u043e \u0441\u0442\u0430\u043b\u0430 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u043e\u0439 \u0441\u0440\u0435\u0434\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Proofpoint \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u043e\u0431 \u043e\u0434\u043d\u043e\u0439 \u0442\u0430\u043a\u043e\u0439 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0441 \u0443\u0447\u0430\u0441\u0442\u0438\u0435\u043c \u043f\u043e\u043b\u0438\u0433\u043b\u043e\u0442\u043e\u0432 PDF/HTA \u0438 PDF/ZIP, \u0432 \u0442\u043e \u0432\u0440\u0435\u043c\u044f \u043a\u0430\u043a \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u044b \u041b\u041a \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0438 \u043e \u0434\u0440\u0443\u0433\u043e\u0439 - \u0443\u0447\u0430\u0441\u0442\u0438\u0435\u043c \u043f\u043e\u043b\u0438\u0433\u043b\u043e\u0442\u0430 PE/ZIP.\n\n\u0415\u0449\u0435 \u043e\u0434\u043d\u0430 \u0438\u0441\u0442\u043e\u0440\u0438\u044f - \u044d\u0442\u043e \u0441\u043b\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0442\u043e\u0434\u044b \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043d\u0430 \u044d\u0442\u0430\u043f\u0430\u0445 \u0431\u043e\u043a\u043e\u0432\u043e\u0433\u043e \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u044f. \u041f\u043e\u0434\u0447\u0435\u0440\u043a\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c \u043f\u0435\u0440\u0438\u043c\u0435\u0442\u0440 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u044f\u0442\u0438\u0439 \u043d\u0430 \u043f\u0440\u0435\u0434\u043c\u0435\u0442 \u043f\u0440\u0438\u0437\u043d\u0430\u043a\u043e\u0432 \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438.\n\n\u041d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u043c \u043e\u0437\u043d\u0430\u043a\u043e\u043c\u0438\u0442\u044c\u0441\u044f \u0432\u0441\u0435\u043c, \u043a\u0442\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u0443\u0435\u0442\u0441\u044f APT-\u0442\u0435\u043c\u0430\u0442\u0438\u043a\u043e\u0439.\n\n\u0424\u0430\u043a\u0442\u0443\u0440\u043d\u043e \u0432 \u043d\u043e\u0432\u043e\u043c \u043e\u0431\u0437\u043e\u0440\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b:\n\n- \u0430\u0442\u0430\u043a\u0438 SalmonSlalom, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u044b\u0435 \u043d\u0430 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u0410\u0437\u0438\u0430\u0442\u0441\u043a\u043e-\u0422\u0438\u0445\u043e\u043e\u043a\u0435\u0430\u043d\u0441\u043a\u043e\u043c \u0440\u0435\u0433\u0438\u043e\u043d\u0435 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0444\u0438\u0448\u0438\u043d\u0433\u0430 \u0438 FatalRAT;\n\n- \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u043f\u043e \u0434\u043e\u0441\u0442\u0430\u0432\u043a\u0435 VIP Keylogger, \u043e\u0440\u0438\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043d\u0430 \u0438\u043d\u0436\u0438\u043d\u0438\u0440\u0438\u043d\u0433\u043e\u0432\u044b\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0432 \u0410\u0437\u0438\u0430\u0442\u0441\u043a\u043e-\u0422\u0438\u0445\u043e\u043e\u043a\u0435\u0430\u043d\u0441\u043a\u043e\u043c \u0440\u0435\u0433\u0438\u043e\u043d\u0435;\n\n- \u043d\u043e\u0432\u0435\u0439\u0448\u0430\u044f \u0432\u0438\u043a\u0442\u0438\u043c\u043e\u043b\u043e\u0433\u0438\u044f \u0438 \u0430\u0440\u0441\u0435\u043d\u0430\u043b SideWinder;\n\n- \u0444\u0438\u0448\u0438\u043d\u0433\u043e\u0432\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f Squid Werewolf \u0441 \u0444\u0438\u043d\u0430\u043b\u044c\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u043e\u0439 - VeilShell;\n\n- \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u043e\u0439 \u0441 \u041a\u0438\u0442\u0430\u0435\u043c APT PlushDaemon, \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043f\u0440\u043e\u0432\u0435\u0440\u043d\u0443\u0442\u044c \u0430\u0442\u0430\u043a\u0443 \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a \u044e\u0436\u043d\u043e\u043a\u043e\u0440\u0435\u0439\u0441\u043a\u043e\u0433\u043e VPN IPany;\n\n- \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u044b Juniper \u0438 VPN-\u0448\u043b\u044e\u0437\u044b \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c J-magic;\n\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 Shadowpad \u0434\u043b\u044f \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0440\u0430\u043d\u0435\u0435 \u043d\u0435 \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0441\u0435\u043c\u0435\u0439\u0441\u0442\u0432\u0430 ransomware;\n\n- \u043d\u043e\u0432\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u0430\u0442\u0430\u043a \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c RevivalStone, \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u0433\u0440\u0443\u043f\u043f\u043e\u0439 Winnti;\n\n- \u043d\u043e\u0432\u044b\u0435 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u043a\u0438\u0442\u0430\u0439\u0441\u043a\u043e\u0439 APT Lotus Blossom \u043d\u0430 \u0424\u0438\u043b\u0438\u043f\u043f\u0438\u043d\u0430\u0445, \u0432\u043e \u0412\u044c\u0435\u0442\u043d\u0430\u043c\u0435, \u0413\u043e\u043d\u043a\u043e\u043d\u0433\u0435 \u0438 \u0422\u0430\u0439\u0432\u0430\u043d\u0435 \u0441 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u043c \u0431\u044d\u043a\u0434\u043e\u0440\u043e\u043c Sagerunex;\n\n- TTPs \u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u043e\u0433\u043e \u043a\u0438\u0442\u0430\u0439\u0441\u043a\u043e\u044f\u0437\u044b\u0447\u043d\u043e\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 Earth Alux;\n\n- \u0443\u0434\u0430\u0440\u044b \u043f\u043e \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u043c \u043d\u0430\u0443\u0447\u043d\u043e-\u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u043c \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u044f\u0442\u0438\u044f\u043c, \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u043d\u0438\u043c\u0430\u0435\u043c\u044b\u0435 Sticky Werewolf;\n\n- \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u0438 \u043a\u0438\u0431\u0435\u0440\u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430 Rezet (Rare Wolf) \u043d\u0430 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u043c, \u0431\u0435\u043b\u043e\u0440\u0443\u0441\u0441\u043a\u043e\u043c \u0438 \u0443\u043a\u0440\u0430\u0438\u043d\u0441\u043a\u043e\u043c \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f\u0445;\n\n- \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0435 CVE-2025-0411 \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e\u00a0SmokeLoader\u00a0\u0432 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u043e\u0439 \u043d\u0430 \u0443\u043a\u0440\u0430\u0438\u043d\u0441\u043a\u0438\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438;\n\n- \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0441\u043e \u0441\u0442\u043e\u0440\u043e\u043d\u044b \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0438 Mythic Likho;\n\n- \u043d\u043e\u0432\u044b\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 \u0433\u0440\u0443\u043f\u043f\u044b ReaverBits;\n\n- \u0440\u0430\u0437\u043e\u0431\u043b\u0430\u0447\u0435\u043d\u0438\u0435 \u0440\u0430\u043d\u0435\u0435 \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e\u0439 APT-\u0433\u0440\u0443\u043f\u043f\u044b \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Telemancon;\n\n- \u0440\u0430\u0437\u0431\u043e\u0440 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0430\u0440\u0438\u044f \u0438 \u0432\u043e\u043b\u043d\u044b \u043d\u043e\u0432\u044b\u0445 \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u0430\u0442\u0430\u043a Head Mare;\n\n- \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0438\u043d\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u043f\u043e\u0434\u0433\u0440\u0443\u043f\u043f\u043e\u0439 Seashell Blizzard \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 BadPilot;\n\n- \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c GoGo Exfiltration;\n\n- \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u043e\u0432\u043e\u0439 APT-\u0430\u0442\u0430\u043a\u0438 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c NGC4020;\n\n- \u043f\u0440\u0435\u043f\u0430\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u043e\u0432\u043e\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0435\u0433\u043e \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 Desert Dexter;\n\n- \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c UNK_CraftyCamel;\n\n- \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a\u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c MintsLoader, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 ZDI-CAN-25373;\n\n- IOC \u0438 TTPs \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u044b-\u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044f Ghost (Cring).\n\n\u0412 \u043e\u0431\u0449\u0435\u043c, \u043f\u043e\u043b\u043d\u0430\u044f \u0432\u0435\u0440\u0441\u0438\u044f \u043e\u0442\u0431\u043e\u0440\u043d\u043e\u0439 \u0430\u043d\u0430\u043b\u0438\u0442\u0438\u043a\u0438 - \u0437\u0434\u0435\u0441\u044c.", "creation_timestamp": "2025-06-19T18:19:27.000000Z"}, {"uuid": "64d69d57-7089-452e-9056-ef937f341dcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/55224", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/byteReaper77/CVE-2025-39913\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-12T21:58:39.000000Z"}, {"uuid": "0cb46cec-ad59-474e-8eb3-765ea3432de5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/55222", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/byteReaper77/CVE-2025-39913-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-12T21:47:23.000000Z"}, {"uuid": "ba12dffd-7fc7-439b-8589-1a01642d5dec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/28440", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1a\u7ed5\u8fc7\n\u63cf\u8ff0\uff1a7-Zip Mark-of-the-Web\u7ed5\u8fc7\u6f0f\u6d1ePoC(CVE-2025-0411)\nURL\uff1ahttps://github.com/dongdongcan/transformer_learning\n\n\u6807\u7b7e\uff1a#\u7ed5\u8fc7", "creation_timestamp": "2025-04-01T12:28:12.000000Z"}, {"uuid": "5f6557e3-ff30-40ae-9224-a892312ddb4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3046", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0411\n\ud83d\udd39 Description: 7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the handling of archived files. When extracting files from a crafted archive that bears the Mark-of-the-Web, 7-Zip does not propagate the Mark-of-the-Web to the extracted files. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current user. Was ZDI-CAN-25456.\n\ud83d\udccf Published: 2025-01-25T04:28:24.270Z\n\ud83d\udccf Modified: 2025-01-25T05:02:52.677Z\n\ud83d\udd17 References:\n1. https://www.zerodayinitiative.com/advisories/ZDI-25-045/", "creation_timestamp": "2025-01-25T05:05:02.000000Z"}, {"uuid": "c199f0b7-a4b0-4c3b-bc6f-5038fa266e69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/GithubRedTeam/54899", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/DanielMadsenDK/ServiceNow-CVE-2025-11449-CVE-2025-11450-Mitigation-Script\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-10T09:43:33.000000Z"}, {"uuid": "6553577f-7f1a-46f5-a1e8-2e98d6356f0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/37632", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Laertharaz/Anydesk-Exploit-CVE-2025-12654-RCE-Builder\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-21T16:56:05.000000Z"}, {"uuid": "138d0e67-ec48-4767-8882-17adf83e88b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/CyberBulletin/2183", "content": "\u26a1PoC for 7-Zip CVE-2025-0411 Lets Attackers Bypass MotW and Run Malicious Code.\n\n#CyberBulletin", "creation_timestamp": "2025-01-27T11:24:57.000000Z"}, {"uuid": "c50c77cb-90de-4a96-a242-df87af6a1d7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/56511", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/absholi7ly/CVE-2025-23048-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-22T12:46:30.000000Z"}, {"uuid": "0effe9be-b465-4cd7-be98-e008125ae148", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/56917", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/vinodwick/CVE-2025-4334\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-25T16:14:44.000000Z"}, {"uuid": "b6687f2b-80b3-4b11-85db-c1a27770ebc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/48140", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Yuri08loveElaina/CVE-2025-7771\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-08-18T08:29:07.000000Z"}, {"uuid": "c2300a94-6e50-469e-8ab6-617dd7d79ebd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/O3NuM9Mq4SCXqBgDe5Z0H8KyVT7NeMwDEztuFj2IIEQAA90", "content": "", "creation_timestamp": "2025-05-12T11:00:06.000000Z"}, {"uuid": "271005b6-9ecd-464b-aa87-7559dfbd96f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/TPeaEM6NaXKWwgs1mT6T-gcnpMCV083T71LKIUpgH9lpeS8", "content": "", "creation_timestamp": "2025-01-27T16:00:08.000000Z"}, {"uuid": "a4bf2081-bb21-481a-b37f-597284e5a685", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/crjmNdUYsD6DpqvodtiKy_qbrsdRtp6ZTVoog67DVqb9Ygo", "content": "", "creation_timestamp": "2025-01-25T22:00:05.000000Z"}, {"uuid": "5e64655b-7a4f-4a7e-8fe1-f472df3db50e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/sU-jNaPMtLGhQJIUlK_Y1eVeodJiHQnKe9p9PX30oKjDADc", "content": "", "creation_timestamp": "2025-01-29T12:30:50.000000Z"}, {"uuid": "8ecc0772-2a99-4d4e-bd60-cdf4151fd4e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/LFpoEM9eSrg0V-bZHU6UJxgJkowiCMvQ0O3_eT2zDqz1id4", "content": "", "creation_timestamp": "2025-01-23T08:00:10.000000Z"}, {"uuid": "a676bea8-8616-4d7e-a166-4eae9c56f696", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/We5qLd4-6UPtIUT7W6-TeCp_P2qSszbcs1NtNGOPQxpj47I", "content": "", "creation_timestamp": "2025-01-22T22:00:06.000000Z"}, {"uuid": "ad8f1c39-e807-468a-b58d-3bf2bad35a9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/hAVQ-Pb7A_5-yEZquiU1FjvUD3-4Vfjl-7Sw5eoBjL_eDTA", "content": "", "creation_timestamp": "2025-03-14T04:00:06.000000Z"}, {"uuid": "40ece066-f15f-489e-ad3d-31e888e67f1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/ctinow/230324", "content": "CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks\nhttps://ift.tt/seUyGli", "creation_timestamp": "2025-02-04T09:54:16.000000Z"}, {"uuid": "ff2e08b9-e0a0-458c-b504-d7098cc960d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/ctinow/230323", "content": "CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks\nhttps://ift.tt/seUyGli", "creation_timestamp": "2025-02-04T08:09:48.000000Z"}, {"uuid": "47f9a10f-c65a-488b-a8d8-019aa8a8a152", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://t.me/thehackernews/6283", "content": "\ud83d\udd10 Russian cybercriminals are exploiting new 7-Zip vulnerability (CVE-2025-0411) to target Ukrainian organizations.\n\nThis flaw bypasses Windows' MotW protections, allowing remote code execution via malicious archives.\n\nLearn more about the exploit: https://thehackernews.com/2025/02/russian-cybercrime-groups-exploiting-7.html", "creation_timestamp": "2025-02-04T13:30:09.000000Z"}, {"uuid": "9780d30f-f604-473f-bb7a-779351ccb6f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/whalers.ir/post/3lglhsohkph27", "content": "", "creation_timestamp": "2025-01-25T17:47:55.078720Z"}, {"uuid": "6d62c985-30d2-43e8-b9b3-11f430abbe75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhgps42vc22h", "content": "", "creation_timestamp": "2025-02-05T13:52:40.681687Z"}, {"uuid": "e955413a-f9ff-400c-9494-3e8e162dcafd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/topickapp.bsky.social/post/3lgfaaoo7sr2o", "content": "", "creation_timestamp": "2025-01-23T06:16:37.117960Z"}, {"uuid": "798d3020-f71e-46ed-a0e3-79d3ce483e68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhjafwp6m22t", "content": "", "creation_timestamp": "2025-02-06T13:55:27.141891Z"}, {"uuid": "3d70ab2e-e6bd-4849-93a0-651193f8f05f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lhjnigysgd2b", "content": "", "creation_timestamp": "2025-02-06T17:49:29.231925Z"}, {"uuid": "d9af02ac-e85d-4e8d-abdd-2e48977b7cbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/780thmibdecyber.bsky.social/post/3lhe3wdembs2t", "content": "", "creation_timestamp": "2025-02-04T12:51:47.062539Z"}, {"uuid": "6e69ac5b-02dc-42cf-93c5-6c16e776fd9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://infosec.exchange/users/kaito834/statuses/113893187796498016", "content": "", "creation_timestamp": "2025-01-26T06:15:28.637133Z"}, {"uuid": "7417c1df-4dbd-46c2-867d-1e55e820fe60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-0411", "type": "seen", "source": "https://bsky.app/profile/cti-news.bsky.social/post/3lhdishu62k2d", "content": "", "creation_timestamp": "2025-02-04T07:09:34.070604Z"}, {"uuid": "c686eff4-aec4-4b33-8446-89009acbae90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lheieptegg23", "content": "", "creation_timestamp": "2025-02-04T16:34:33.004914Z"}, {"uuid": "4438b66f-0aad-4ec7-aa65-fcc0dbfb058f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113946626704804091", "content": "", "creation_timestamp": "2025-02-04T16:45:42.071212Z"}, {"uuid": "9cf740bf-13a6-4347-ac42-36ff6fa14aaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://threatintel.cc/2025/02/04/hackers-exploiting-zip-zeroday-vulnerability.html", "content": "", "creation_timestamp": "2025-02-04T11:38:40.000000Z"}, {"uuid": "ae11cb7f-170c-4bd5-8cda-456a4e45ec9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://thehackernews.com/2025/02/russian-cybercrime-groups-exploiting-7.html", "content": "", "creation_timestamp": "2025-02-04T11:28:00.000000Z"}, {"uuid": "0d028649-4d55-4ede-b79a-2b48bcd063cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lgdpy23hpe2j", "content": "", "creation_timestamp": "2025-01-22T15:52:46.685711Z"}, {"uuid": "ce7e55fa-5a44-44ce-a779-35412faf7a01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3lge44qvudf2s", "content": "", "creation_timestamp": "2025-01-22T19:30:09.150491Z"}, {"uuid": "6384b46f-b207-4e4f-bf2a-cb2dce86779e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3lhenolhcgm26", "content": "", "creation_timestamp": "2025-02-04T18:09:32.432402Z"}, {"uuid": "48c64e45-5fd7-4d25-9b94-fefe7136bf8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://infosec.exchange/users/kaito834/statuses/113966600504903405", "content": "", "creation_timestamp": "2025-02-08T05:25:17.685359Z"}, {"uuid": "499aaad2-ebc9-4074-b5f3-0f552dd26fdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhnpca2wcc2m", "content": "", "creation_timestamp": "2025-02-08T08:32:30.064901Z"}, {"uuid": "7a27d41e-160e-4d9e-b204-98b50e54d2d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "MISP/72704237-fe6e-45df-9d6f-f12f9cb65dfc", "content": "", "creation_timestamp": "2025-02-08T17:57:57.000000Z"}, {"uuid": "57a318be-9f2e-46b2-b584-452e2fb7c261", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3lim6ta6br42w", "content": "", "creation_timestamp": "2025-02-20T11:30:11.861518Z"}, {"uuid": "cc123601-b5ef-4d7c-b713-c28f809c4ead", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:11:05.000000Z"}, {"uuid": "2a755e0a-6c77-4a6b-8d30-bb79ebce0702", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-80e54043-db8f11a3e9621a39", "content": "", "creation_timestamp": "2025-03-08T21:28:19.261171Z"}, {"uuid": "a915b885-ce8f-4363-b7bf-4fa2db9ae992", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "MISP/72704237-fe6e-45df-9d6f-f12f9cb65dfc", "content": "", "creation_timestamp": "2025-07-03T21:34:21.000000Z"}, {"uuid": "cff6fa87-daa0-4500-b347-30718ddc2817", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://infosec.exchange/users/AdvisoryICS/statuses/114792937915469277", "content": "", "creation_timestamp": "2025-07-04T03:53:48.065435Z"}, {"uuid": "471985cc-f54f-4c24-a40c-216971aecbc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/advisoryics.bsky.social/post/3lt4e24btqs2p", "content": "", "creation_timestamp": "2025-07-04T03:58:06.100200Z"}, {"uuid": "4fb194cc-1d82-477d-9baf-af60d47cd6a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-09T13:26:57.000000Z"}, {"uuid": "926ade65-926d-4763-988e-987a7c7b3bb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://vulnerability.circl.lu/comment/ffe0aeca-4687-4168-a295-b0334927e4c5", "content": "", "creation_timestamp": "2025-01-23T07:14:02.895881Z"}, {"uuid": "ccc4bef8-55fc-49cc-8743-b76238bd4952", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61903", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/joaonevess/chain-reaction\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T10:51:26.000000Z"}, {"uuid": "8f7de3cc-1eec-48a8-9a2a-9da7ef670716", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61940", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/rubensuxo-eh/react2shell-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-06T16:21:52.000000Z"}, {"uuid": "56c08774-0990-4f6a-b9b2-76bf536fa6a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/38855", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Quelvara/Anydesk-Exploit-CVE-2025-12654-RCE-Builder\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-06-01T06:51:40.000000Z"}, {"uuid": "f3fd90de-9a59-430f-8750-f9758b73eccc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25592", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/On1onss/CVE-2025-30208-LFI\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-27T12:50:25.000000Z"}, {"uuid": "450f6aba-2e9e-43c1-85ad-46e6b0400645", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29665", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Kirbirls/Anydesk-Exploit-CVE-2025-12654-RCE-Builder\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-04T13:30:21.000000Z"}, {"uuid": "368a0210-f397-4968-bd0d-f9a97bece45f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29939", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/ThoristKaw/Anydesk-Exploit-CVE-2025-12654-RCE-Builder\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-05T18:03:01.000000Z"}, {"uuid": "cf5fb370-a557-4385-a8fc-bba1bdf566a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29929", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Balajih4kr/cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-05T17:14:59.000000Z"}, {"uuid": "d7a60426-67c2-4c22-a534-40452687afbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/56554", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Smarttfoxx/CVE-2025-60791\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-22T21:08:13.000000Z"}, {"uuid": "87e988af-4eee-46c5-8d52-c8031c186bbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/56287", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/eGkritsis/CVE-2025-61303\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-20T22:27:06.000000Z"}, {"uuid": "072de299-e0e0-4074-a789-f75573a4e54e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/11168", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-01-22T15:10:32.000000Z"}, {"uuid": "ef65eeea-c87f-4d83-8d4f-235a58b196ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/18687", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/dpextreme/7-Zip-CVE-2025-0411-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-13T19:55:33.000000Z"}, {"uuid": "54e836e4-f33a-40db-b352-6301509f9fe9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/59025", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/JGoyd/Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-09T22:19:47.000000Z"}, {"uuid": "ff09c214-b622-4e4e-94de-b24896f7a43f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44202", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/absholi7ly/CVE-2025-27210_NodeJS_Path_Traversal_Exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-16T05:35:35.000000Z"}, {"uuid": "d66ece6a-0e14-409b-84d9-33981a5fb83f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3412", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0411\n\ud83d\udd25 CVSS Score: 6.9 (CVSS_V3)\n\ud83d\udd39 Description: 7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the handling of archived files. When extracting files from a crafted archive that bears the Mark-of-the-Web, 7-Zip does not propagate the Mark-of-the-Web to the extracted files. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current user. Was ZDI-CAN-25456.\n\ud83d\udccf Published: 2025-01-25T06:30:24Z\n\ud83d\udccf Modified: 2025-01-29T21:31:24Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2025-0411\n2. https://www.vicarius.io/vsociety/posts/cve-2025-0411-7-zip-mitigation-vulnerability\n3. https://www.vicarius.io/vsociety/posts/cve-2025-0411-detection-7-zip-vulnerability\n4. https://www.zerodayinitiative.com/advisories/ZDI-25-045\n5. http://www.openwall.com/lists/oss-security/2025/01/24/6", "creation_timestamp": "2025-01-29T22:11:01.000000Z"}, {"uuid": "140d3580-856d-4e38-8ff8-831b7cec61ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24678", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/kOaDT/poc-cve-2025-29927\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-26T00:14:57.000000Z"}, {"uuid": "4973def9-7b3d-4113-94c0-48a0a36f1181", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51520", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/techcorp/CVE-2025-8088-Exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-14T07:08:26.000000Z"}, {"uuid": "3f04054d-2230-4350-9c47-7504bc41c60b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29619", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/h3st4k3r/CVE-2025-30065\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-04T08:52:34.000000Z"}, {"uuid": "b0187a48-cb13-4cd1-9839-292956226199", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61010", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/mrk336/Silent-WebStorm-Fortinet-s-Hidden-Exploits\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-28T06:37:52.000000Z"}, {"uuid": "1227b0c8-798e-4c28-80bb-d5ae13053a3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/56754", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Theethat-Thamwasin/CVE-2025-56399\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-24T11:07:57.000000Z"}, {"uuid": "b1139982-1a00-4274-8452-a5257f588ca5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/56360", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Kartiowmn/Office-Exploit-Cve2025-Xml-Doc-Docx-Rce-Builder-Fud\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-21T11:32:40.000000Z"}, {"uuid": "d8965650-5b57-430a-91ca-8a85291fc27a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/56358", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Kartiowmn/Phantom-Registy-Exploit-Cve2025-20682-Runtime-Fud-Lnk\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-21T11:28:26.000000Z"}, {"uuid": "b6014273-9922-4f18-81a3-d4eeed02a82d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/orderofsixangles/2511", "content": "7-Zip Mark-of-the-Web Bypass Vulnerability [CVE-2025-0411] - POC\n\nhttps://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC", "creation_timestamp": "2025-01-23T04:32:34.000000Z"}, {"uuid": "0e20cdd3-aa47-4145-adb3-1a739e529850", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/11632", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a7-Zip Mark-of-the-Web\u7ed5\u8fc7\u6f0f\u6d1ePoC(CVE-2025-0411)\nURL\uff1ahttps://github.com/iSee857/CVE-2025-0411-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-01-27T07:35:59.000000Z"}, {"uuid": "55af1c6d-8704-4a91-902f-7b3f96f925b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29866", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/SetKursma/Phantom-Registy-Exploit-CVE2025-20682-Runtime-FUD-LNK\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-05T10:32:36.000000Z"}, {"uuid": "52861daf-680c-4bfd-98f0-3c6b2724c252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/30091", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Kariaoston/Lnk-Exploit-FileBinder-Certificate-Spoofer-Reg-Doc-Cve-Rce\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-06T10:49:49.000000Z"}, {"uuid": "b8987256-4699-4686-9d8c-af8c0cb5165d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/53260", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/umxr286/ExploitScript\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-27T07:06:16.000000Z"}, {"uuid": "019c786a-57f1-414a-a4eb-be451d85ab72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/itsec_news/5850", "content": "\u200b\u26a1\ufe0f0day \u0432 WinZip: \u0432\u0438\u0440\u0443\u0441\u044b \u0442\u0435\u043f\u0435\u0440\u044c \u043f\u0440\u043e\u0445\u043e\u0434\u044f\u0442 \u0431\u0435\u0437 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f\n\n\ud83d\udcac \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0432 \u043e\u0431\u043b\u0430\u0441\u0442\u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432\u044b\u044f\u0432\u0438\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e 0day- \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u043e\u0439 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0435 WinZip, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u0432\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u044b\u0439 \u0432 Windows \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c \u0437\u0430\u0449\u0438\u0442\u044b Mark-of-the-Web. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0435\u0440\u0441\u0438\u0438 \u0434\u043e 29.0 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0441\u043a\u0440\u044b\u0442\u043e\u043c\u0443 \u0437\u0430\u043f\u0443\u0441\u043a\u0443 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u043d\u0430 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u0435 \u0436\u0435\u0440\u0442\u0432\u044b \u0431\u0435\u0437 \u043a\u0430\u043a\u0438\u0445-\u043b\u0438\u0431\u043e \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0439 \u0441\u043e \u0441\u0442\u043e\u0440\u043e\u043d\u044b \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b.\n\n\u041c\u0435\u0445\u0430\u043d\u0438\u0437\u043c Mark-of-the-Web \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043f\u043e\u043c\u0435\u0447\u0430\u0435\u0442 \u0444\u0430\u0439\u043b\u044b, \u0437\u0430\u0433\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0435 \u0438\u0437 \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430, \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0442\u0435\u0433\u043e\u043c, \u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u044f \u043a\u043e\u0442\u043e\u0440\u043e\u043c\u0443 \u043f\u0440\u0438 \u0438\u0445 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0438 \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0430\u044e\u0442\u0441\u044f \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u044f \u043e \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438. \u041e\u0434\u043d\u0430\u043a\u043e \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0441 WinZip \u044d\u0442\u043e\u0442 \u0442\u0435\u0433 \u043d\u0435 \u0441\u043e\u0445\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u043f\u0440\u0438 \u0440\u0430\u0441\u043f\u0430\u043a\u043e\u0432\u043a\u0435 \u0430\u0440\u0445\u0438\u0432\u0430. \u042d\u0442\u043e \u043e\u0437\u043d\u0430\u0447\u0430\u0435\u0442, \u0447\u0442\u043e \u0434\u0430\u0436\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u044b, \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0438\u0435 \u043c\u0430\u043a\u0440\u043e\u0441\u044b, \u043c\u043e\u0433\u0443\u0442 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0442\u044c\u0441\u044f \u0431\u0435\u0441\u0448\u0443\u043c\u043d\u043e, \u0431\u0443\u0434\u0442\u043e \u0431\u044b \u043e\u043d\u0438 \u0431\u044b\u043b\u0438 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u044b \u0438\u0437 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0433\u043e \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0430.\n\n\u0421\u0446\u0435\u043d\u0430\u0440\u0438\u0439 \u0430\u0442\u0430\u043a\u0438 \u0432\u044b\u0433\u043b\u044f\u0434\u0438\u0442 \u043f\u0440\u043e\u0441\u0442\u043e: \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u0441\u043e\u0437\u0434\u0430\u0451\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u0444\u0430\u0439\u043b, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442 Word \u0441 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u043c\u0438 \u043c\u0430\u043a\u0440\u043e\u0441\u0430\u043c\u0438, \u0443\u043f\u0430\u043a\u043e\u0432\u044b\u0432\u0430\u0435\u0442 \u0435\u0433\u043e \u0432 ZIP-\u0430\u0440\u0445\u0438\u0432 \u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 \u0447\u0435\u0440\u0435\u0437 \u0444\u0438\u0448\u0438\u043d\u0433\u043e\u0432\u044b\u0435 \u043f\u0438\u0441\u044c\u043c\u0430 \u0438\u043b\u0438 \u0437\u0430\u0440\u0430\u0436\u0451\u043d\u043d\u044b\u0435 \u0441\u0430\u0439\u0442\u044b. \u0415\u0441\u043b\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0438\u0437\u0432\u043b\u0435\u0447\u0451\u0442 \u0442\u0430\u043a\u043e\u0439 \u0430\u0440\u0445\u0438\u0432 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e WinZip, \u0444\u0430\u0439\u043b \u043e\u043a\u0430\u0436\u0435\u0442\u0441\u044f \u0432\u043d\u0435 \u0437\u043e\u043d\u044b \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u043d\u044b\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432 Windows \u0438 \u0441\u043c\u043e\u0436\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c\u0441\u044f \u0431\u0435\u0437 \u043e\u043f\u043e\u0432\u0435\u0449\u0435\u043d\u0438\u0439.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2025-33028 \u0438 \u043e\u0446\u0435\u043d\u043a\u0443 7.8 \u0431\u0430\u043b\u043b\u043e\u0432 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS. \u042d\u043a\u0441\u043f\u0435\u0440\u0442\u044b \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442, \u0447\u0442\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u043c\u043e\u0436\u043d\u043e \u0431\u0435\u0437 \u043e\u0441\u043e\u0431\u044b\u0445 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0437\u043d\u0430\u043d\u0438\u0439, \u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430, \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0438 \u043a\u0440\u0430\u0436\u0443 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u041e\u0441\u043e\u0431\u0443\u044e \u0442\u0440\u0435\u0432\u043e\u0433\u0443 \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442 \u0442\u043e\u0442 \u0444\u0430\u043a\u0442, \u0447\u0442\u043e \u043d\u0430\u0439\u0434\u0435\u043d\u043d\u044b\u0439 \u0431\u0430\u0433 \u043e\u043a\u0430\u0437\u0430\u043b\u0441\u044f \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0435\u0439 \u0431\u043e\u043b\u0435\u0435 \u0440\u0430\u043d\u043d\u0435\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2024-8811 , \u0447\u0442\u043e \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u043d\u0430 \u0437\u0430\u0442\u044f\u0436\u043d\u044b\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c\u044e \u043f\u0440\u0438 \u0440\u0430\u0431\u043e\u0442\u0435 \u0441 \u0430\u0440\u0445\u0438\u0432\u0430\u043c\u0438. \u041a \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u044b\u043c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430\u043c \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043f\u0440\u0438\u0432\u043b\u0435\u043a\u043b\u0438 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u0435 \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0430\u0440\u0445\u0438\u0432\u0430\u0442\u043e\u0440\u044b. \u0422\u0430\u043a, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-0411 \u0432 7-Zip \u0438 CVE-2025-31334 \u0432 WinRAR \u0442\u0430\u043a\u0436\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b\u0438 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c Mark-of-the-Web.\n\n\u041d\u0430 \u043c\u043e\u043c\u0435\u043d\u0442 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f WinZip \u043f\u043e\u043a\u0430 \u043d\u0435 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043e. \u0412 \u0441\u0432\u044f\u0437\u0438 \u0441 \u044d\u0442\u0438\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u043e\u044f\u0432\u043b\u044f\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u043d\u0443\u044e \u043e\u0441\u0442\u043e\u0440\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u043f\u0440\u0438 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0438 \u0430\u0440\u0445\u0438\u0432\u043e\u0432, \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u043d\u044b\u0445 \u0438\u0437 \u043d\u0435\u043d\u0430\u0434\u0451\u0436\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0430\u043b\u044c\u0442\u0435\u0440\u043d\u0430\u0442\u0438\u0432\u043d\u044b\u0435 \u0430\u0440\u0445\u0438\u0432\u0430\u0442\u043e\u0440\u044b, \u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0449\u0438\u0435 \u0441 \u0442\u0435\u0433\u0430\u043c\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043e\u0431\u044f\u0437\u0430\u0442\u0435\u043b\u044c\u043d\u043e \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0438\u0437\u0432\u043b\u0435\u0447\u0451\u043d\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u0430\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441\u043e\u043c \u0438 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c \u0430\u0432\u0442\u043e\u0437\u0430\u043f\u0443\u0441\u043a \u043c\u0430\u043a\u0440\u043e\u0441\u043e\u0432 \u0432 \u043e\u0444\u0438\u0441\u043d\u044b\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f\u0445.\n\n\u0414\u043b\u044f \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0438\u043c\u0435\u0435\u0442 \u0441\u043c\u044b\u0441\u043b \u0432\u043d\u0435\u0434\u0440\u0438\u0442\u044c \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u2014 \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0437\u0430\u043f\u0440\u0435\u0442 \u043d\u0430 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0442\u043e\u043b\u044c\u043a\u043e \u0447\u0442\u043e \u0438\u0437\u0432\u043b\u0435\u0447\u0451\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0431\u0435\u0437 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438. \u0418\u043d\u0446\u0438\u0434\u0435\u043d\u0442 \u043f\u043e\u0434\u0447\u0451\u0440\u043a\u0438\u0432\u0430\u0435\u0442, \u043d\u0430\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c\u0438 \u043c\u043e\u0433\u0443\u0442 \u043e\u043a\u0430\u0437\u0430\u0442\u044c\u0441\u044f \u0434\u0430\u0436\u0435 \u0442\u0430\u043a\u0438\u0435 \u043e\u0431\u044b\u0434\u0435\u043d\u043d\u044b\u0435 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f, \u043a\u0430\u043a \u0440\u0430\u0431\u043e\u0442\u0430 \u0441 \u0430\u0440\u0445\u0438\u0432\u0430\u043c\u0438, \u043f\u0440\u0438 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0438 \u043d\u0430\u0434\u043b\u0435\u0436\u0430\u0449\u0438\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432 \u0437\u0430\u0449\u0438\u0442\u044b.\n\n\u041f\u043e\u043a\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0430\u0440\u0445\u0438\u0432\u043d\u044b\u0445 \u0443\u0442\u0438\u043b\u0438\u0442\u0430\u0445 \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u044e\u0442 \u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c\u0441\u044f \u0443\u0434\u043e\u0431\u043d\u044b\u043c \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u043c \u0432 \u0430\u0440\u0441\u0435\u043d\u0430\u043b\u0435 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432, \u043e\u0441\u0442\u0430\u0451\u0442\u0441\u044f \u043b\u0438\u0448\u044c \u043f\u043e\u043b\u0430\u0433\u0430\u0442\u044c\u0441\u044f \u043d\u0430 \u043c\u043d\u043e\u0433\u043e\u0443\u0440\u043e\u0432\u043d\u0435\u0432\u0443\u044e \u0437\u0430\u0449\u0438\u0442\u0443 \u0438 \u043e\u0441\u0442\u043e\u0440\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u043f\u0440\u0438 \u0440\u0430\u0431\u043e\u0442\u0435 \u0441 \u043f\u043e\u0434\u043e\u0437\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u043c\u0438 \u0444\u0430\u0439\u043b\u0430\u043c\u0438.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2025-04-23T04:16:36.000000Z"}, {"uuid": "1112b258-8c25-4ba1-b00c-3f641ff7e5d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/Ud0op4XBKk46pa6rFuqbXo8yXxv9LFXiZ_7BMPg6rwDxXEA", "content": "", "creation_timestamp": "2025-07-05T21:00:04.000000Z"}, {"uuid": "fbce6c7b-30e1-4899-b3a9-8ed5ee8c0799", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://t.me/S_E_Reborn/5706", "content": "\u0420\u0435\u0441\u0435\u0440\u0447\u0435\u0440\u044b \u0438\u0437 \u041b\u0430\u0431\u043e\u0440\u0430\u0442\u043e\u0440\u0438\u0438 \u041a\u0430\u0441\u043f\u0435\u0440\u0441\u043a\u043e\u0433\u043e \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0438 \u043e\u0442\u0447\u0435\u0442 \u0441 \u043e\u0431\u0437\u043e\u0440\u043e\u043c \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 APT \u0438 \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e \u043c\u043e\u0442\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a \u043d\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0435 \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u044f\u0442\u0438\u044f \u0438 \u043e\u0431\u044a\u0435\u043a\u0442\u044b \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u0445 \u0432 \u043f\u0435\u0440\u0432\u043e\u043c \u043a\u0432\u0430\u0440\u0442\u0430\u043b\u0435 2025 \u0433\u043e\u0434\u0430.\n\n\u041d\u0435 \u0432\u0434\u0430\u0432\u0430\u044f\u0441\u044c \u0432 \u0434\u0435\u0442\u0430\u043b\u0438, \u0432\u044b\u0434\u0435\u043b\u0438\u043c \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0435 \u043e\u0442\u043c\u0435\u0447\u0435\u043d\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u043f\u043e \u0438\u0442\u043e\u0433\u0430\u043c \u043a\u0432\u0430\u0440\u0442\u0430\u043b\u0430 \u0442\u0440\u0435\u043d\u0434\u044b.\n\n\u041d\u0430 \u043a\u043e\u0440\u0435\u0439\u0441\u043a\u043e\u043c \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043e\u0442\u043c\u0435\u0447\u0430\u044e\u0442 \u0440\u0438\u0441\u043a\u0438 \u0430\u0442\u0430\u043a \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a. \u041d\u0430 \u044d\u0442\u043e\u0442 \u0440\u0430\u0437 \u0446\u0435\u043b\u044c\u044e \u0441\u0442\u0430\u043b \u043c\u0435\u0441\u0442\u043d\u044b\u0439 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a VPN-\u0440\u0435\u0448\u0435\u043d\u0438\u044f.\n\n\u041f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u043b\u0430 \u043a\u0430\u043a \u043c\u0438\u043d\u0438\u043c\u0443\u043c \u043e\u0434\u043d\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0430\u044f \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f - \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u043f\u043e\u043b\u0443\u043f\u0440\u043e\u0432\u043e\u0434\u043d\u0438\u043a\u043e\u0432\u043e\u0439 \u043f\u0440\u043e\u0434\u0443\u043a\u0446\u0438\u0438.\n\n\u0412 \u0434\u0432\u0443\u0445 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u0445 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043b\u0438\u0441\u044c 0-day \u0432 \u0445\u043e\u0434\u0435 \u0430\u0442\u0430\u043a \u043d\u0430 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 - \u043e\u0434\u0438\u043d \u043a\u0430\u0441\u0430\u043b\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 7-Zip, \u0430 \u0434\u0440\u0443\u0433\u043e\u0439 - 0-click \u0432 MS Windows.\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a \u043e\u0442\u043a\u0430\u0437\u0430\u043b\u0441\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0445\u043e\u0442\u044f \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u043e\u0442\u0441\u043b\u0435\u0436\u0435\u043d\u0430 \u0432 \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u0438\u0445 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u0445, \u0441\u0430\u043c\u0430\u044f \u0440\u0430\u043d\u043d\u044f\u044f \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u0430 \u0432 2017 \u0433\u043e\u0434\u0443.\n\n\u0422\u0435\u0445\u043d\u0438\u043a\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u043e\u0432-\u043f\u043e\u043b\u0438\u0433\u043b\u043e\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0441\u043e\u0437\u0434\u0430\u044e\u0442\u0441\u044f \u0438\u0437 \u0434\u0430\u043d\u043d\u044b\u0445 \u0440\u0430\u0437\u043d\u044b\u0445 \u0444\u043e\u0440\u043c\u0430\u0442\u043e\u0432 \u0442\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u0447\u0442\u043e \u0438\u0445 \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0438\u0440\u0443\u044e\u0442 \u0440\u0430\u0437\u043d\u044b\u0435 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u0435 \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0430\u0442\u043e\u0440\u044b, \u0432\u043d\u0435\u0437\u0430\u043f\u043d\u043e \u0441\u0442\u0430\u043b\u0430 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u043e\u0439 \u0441\u0440\u0435\u0434\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Proofpoint \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u043e\u0431 \u043e\u0434\u043d\u043e\u0439 \u0442\u0430\u043a\u043e\u0439 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0441 \u0443\u0447\u0430\u0441\u0442\u0438\u0435\u043c \u043f\u043e\u043b\u0438\u0433\u043b\u043e\u0442\u043e\u0432 PDF/HTA \u0438 PDF/ZIP, \u0432 \u0442\u043e \u0432\u0440\u0435\u043c\u044f \u043a\u0430\u043a \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u044b \u041b\u041a \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0438 \u043e \u0434\u0440\u0443\u0433\u043e\u0439 - \u0443\u0447\u0430\u0441\u0442\u0438\u0435\u043c \u043f\u043e\u043b\u0438\u0433\u043b\u043e\u0442\u0430 PE/ZIP.\n\n\u0415\u0449\u0435 \u043e\u0434\u043d\u0430 \u0438\u0441\u0442\u043e\u0440\u0438\u044f - \u044d\u0442\u043e \u0441\u043b\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0442\u043e\u0434\u044b \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043d\u0430 \u044d\u0442\u0430\u043f\u0430\u0445 \u0431\u043e\u043a\u043e\u0432\u043e\u0433\u043e \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u044f. \u041f\u043e\u0434\u0447\u0435\u0440\u043a\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c \u043f\u0435\u0440\u0438\u043c\u0435\u0442\u0440 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u044f\u0442\u0438\u0439 \u043d\u0430 \u043f\u0440\u0435\u0434\u043c\u0435\u0442 \u043f\u0440\u0438\u0437\u043d\u0430\u043a\u043e\u0432 \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438.\n\n\u041d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u043c \u043e\u0437\u043d\u0430\u043a\u043e\u043c\u0438\u0442\u044c\u0441\u044f \u0432\u0441\u0435\u043c, \u043a\u0442\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u0443\u0435\u0442\u0441\u044f APT-\u0442\u0435\u043c\u0430\u0442\u0438\u043a\u043e\u0439.\n\n\u0424\u0430\u043a\u0442\u0443\u0440\u043d\u043e \u0432 \u043d\u043e\u0432\u043e\u043c \u043e\u0431\u0437\u043e\u0440\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b:\n\n- \u0430\u0442\u0430\u043a\u0438 SalmonSlalom, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u044b\u0435 \u043d\u0430 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u0410\u0437\u0438\u0430\u0442\u0441\u043a\u043e-\u0422\u0438\u0445\u043e\u043e\u043a\u0435\u0430\u043d\u0441\u043a\u043e\u043c \u0440\u0435\u0433\u0438\u043e\u043d\u0435 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0444\u0438\u0448\u0438\u043d\u0433\u0430 \u0438 FatalRAT;\n\n- \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u043f\u043e \u0434\u043e\u0441\u0442\u0430\u0432\u043a\u0435 VIP Keylogger, \u043e\u0440\u0438\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043d\u0430 \u0438\u043d\u0436\u0438\u043d\u0438\u0440\u0438\u043d\u0433\u043e\u0432\u044b\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0432 \u0410\u0437\u0438\u0430\u0442\u0441\u043a\u043e-\u0422\u0438\u0445\u043e\u043e\u043a\u0435\u0430\u043d\u0441\u043a\u043e\u043c \u0440\u0435\u0433\u0438\u043e\u043d\u0435;\n\n- \u043d\u043e\u0432\u0435\u0439\u0448\u0430\u044f \u0432\u0438\u043a\u0442\u0438\u043c\u043e\u043b\u043e\u0433\u0438\u044f \u0438 \u0430\u0440\u0441\u0435\u043d\u0430\u043b SideWinder;\n\n- \u0444\u0438\u0448\u0438\u043d\u0433\u043e\u0432\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f Squid Werewolf \u0441 \u0444\u0438\u043d\u0430\u043b\u044c\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u043e\u0439 - VeilShell;\n\n- \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u043e\u0439 \u0441 \u041a\u0438\u0442\u0430\u0435\u043c APT PlushDaemon, \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043f\u0440\u043e\u0432\u0435\u0440\u043d\u0443\u0442\u044c \u0430\u0442\u0430\u043a\u0443 \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a \u044e\u0436\u043d\u043e\u043a\u043e\u0440\u0435\u0439\u0441\u043a\u043e\u0433\u043e VPN IPany;\n\n- \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u044b Juniper \u0438 VPN-\u0448\u043b\u044e\u0437\u044b \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c J-magic;\n\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 Shadowpad \u0434\u043b\u044f \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0440\u0430\u043d\u0435\u0435 \u043d\u0435 \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0441\u0435\u043c\u0435\u0439\u0441\u0442\u0432\u0430 ransomware;\n\n- \u043d\u043e\u0432\u0430\u044f \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u0430\u0442\u0430\u043a \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c RevivalStone, \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u0433\u0440\u0443\u043f\u043f\u043e\u0439 Winnti;\n\n- \u043d\u043e\u0432\u044b\u0435 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u043a\u0438\u0442\u0430\u0439\u0441\u043a\u043e\u0439 APT Lotus Blossom \u043d\u0430 \u0424\u0438\u043b\u0438\u043f\u043f\u0438\u043d\u0430\u0445, \u0432\u043e \u0412\u044c\u0435\u0442\u043d\u0430\u043c\u0435, \u0413\u043e\u043d\u043a\u043e\u043d\u0433\u0435 \u0438 \u0422\u0430\u0439\u0432\u0430\u043d\u0435 \u0441 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u043c \u0431\u044d\u043a\u0434\u043e\u0440\u043e\u043c Sagerunex;\n\n- TTPs \u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u043e\u0433\u043e \u043a\u0438\u0442\u0430\u0439\u0441\u043a\u043e\u044f\u0437\u044b\u0447\u043d\u043e\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 Earth Alux;\n\n- \u0443\u0434\u0430\u0440\u044b \u043f\u043e \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u043c \u043d\u0430\u0443\u0447\u043d\u043e-\u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u043c \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u044f\u0442\u0438\u044f\u043c, \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u043d\u0438\u043c\u0430\u0435\u043c\u044b\u0435 Sticky Werewolf;\n\n- \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u0438 \u043a\u0438\u0431\u0435\u0440\u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430 Rezet (Rare Wolf) \u043d\u0430 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u043c, \u0431\u0435\u043b\u043e\u0440\u0443\u0441\u0441\u043a\u043e\u043c \u0438 \u0443\u043a\u0440\u0430\u0438\u043d\u0441\u043a\u043e\u043c \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f\u0445;\n\n- \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0435 CVE-2025-0411 \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e\u00a0SmokeLoader\u00a0\u0432 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u043e\u0439 \u043d\u0430 \u0443\u043a\u0440\u0430\u0438\u043d\u0441\u043a\u0438\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438;\n\n- \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0441\u043e \u0441\u0442\u043e\u0440\u043e\u043d\u044b \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0438 Mythic Likho;\n\n- \u043d\u043e\u0432\u044b\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 \u0433\u0440\u0443\u043f\u043f\u044b ReaverBits;\n\n- \u0440\u0430\u0437\u043e\u0431\u043b\u0430\u0447\u0435\u043d\u0438\u0435 \u0440\u0430\u043d\u0435\u0435 \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e\u0439 APT-\u0433\u0440\u0443\u043f\u043f\u044b \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Telemancon;\n\n- \u0440\u0430\u0437\u0431\u043e\u0440 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0430\u0440\u0438\u044f \u0438 \u0432\u043e\u043b\u043d\u044b \u043d\u043e\u0432\u044b\u0445 \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u0430\u0442\u0430\u043a Head Mare;\n\n- \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0438\u043d\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u043f\u043e\u0434\u0433\u0440\u0443\u043f\u043f\u043e\u0439 Seashell Blizzard \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 BadPilot;\n\n- \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c GoGo Exfiltration;\n\n- \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u043e\u0432\u043e\u0439 APT-\u0430\u0442\u0430\u043a\u0438 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c NGC4020;\n\n- \u043f\u0440\u0435\u043f\u0430\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u043e\u0432\u043e\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0435\u0433\u043e \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 Desert Dexter;\n\n- \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c UNK_CraftyCamel;\n\n- \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a\u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c MintsLoader, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 ZDI-CAN-25373;\n\n- IOC \u0438 TTPs \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u044b-\u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044f Ghost (Cring).\n\n\u0412 \u043e\u0431\u0449\u0435\u043c, \u043f\u043e\u043b\u043d\u0430\u044f \u0432\u0435\u0440\u0441\u0438\u044f \u043e\u0442\u0431\u043e\u0440\u043d\u043e\u0439 \u0430\u043d\u0430\u043b\u0438\u0442\u0438\u043a\u0438 - \u0437\u0434\u0435\u0441\u044c.", "creation_timestamp": "2025-06-20T13:32:36.000000Z"}, {"uuid": "ce11c769-112a-4259-b905-9ec1b021bf4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://t.me/Lviathan404/6540", "content": "Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections\n\n7-Zip CVE-2025-0411 bypasses MotW to deliver SmokeLoader malware via phishing, targeting Ukraine.\n\nThe Hacker News | thehackernews.com \u2022 Feb 4, 2025", "creation_timestamp": "2025-02-09T14:36:21.000000Z"}, {"uuid": "c8519940-2a3f-4753-a241-9348684fde1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24919", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/dttuss/IngressNightmare-RCE-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-26T09:52:47.000000Z"}, {"uuid": "bea14f13-30bf-4658-bb25-7c3de10d52b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34127", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Mattb709/CVE-2025-29306-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-25T03:48:46.000000Z"}, {"uuid": "22c6d9b1-2dd9-4599-81a9-c2f05af4880f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34625", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Darabium/Gombruc\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-29T10:22:10.000000Z"}, {"uuid": "ae14e380-9afb-42a4-92d6-a3fe2dbe84d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34618", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/vigilante-1337/CVE-2025-26014\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-29T08:55:10.000000Z"}, {"uuid": "45224884-e95b-433c-8587-a563e749b99d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50764", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Makavellik/POC-CVE-2025-24813-Apache-Tomcat-Remote-Code-Execution\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-08T18:38:43.000000Z"}, {"uuid": "ddc7e6a7-dece-4037-a328-25a6179ec115", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51519", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/techcorp/CVE-2025-8088-Exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-14T07:08:00.000000Z"}, {"uuid": "83018ea4-9448-4954-8d68-c0030af39b02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/54035", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/NVIDIA/product-security\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-03T14:33:02.000000Z"}, {"uuid": "8c4c6130-e1f6-4bde-a316-83c8b2cbf42f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/19645", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/SalehAlgnay/7-Zip-CVE-2025-0411-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-17T09:40:35.000000Z"}, {"uuid": "ceb589e1-59b0-4354-8633-93eb435c028c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/43088", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-0411\nURL\uff1ahttps://github.com/B1ack4sh/Blackash-CVE-2025-0411\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-05T14:33:46.000000Z"}, {"uuid": "8a892b33-cac9-4650-9ca0-ea6f205568e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "Telegram/cPkmEu8TE17XiLQ4S6BD8IiobSSbP9Wem4YikT30L125N8I", "content": "", "creation_timestamp": "2025-03-17T04:00:07.000000Z"}, {"uuid": "4065a214-3b37-4912-ab7e-b8dd1261000f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://t.me/club31337/3270", "content": "Analysis on how CVE-2025-0411, a zero-day vulnerability in 7-Zip, is actively exploited to target Ukrainian organizations in a #SmokeLoader campaign involving homoglyph attacks\n\nhttps://www.bleepingcomputer.com/news/security/7-zip-motw-bypass-exploited-in-zero-day-attacks-against-ukraine/\n\nhttps://www.trendmicro.com/en_us/research/25/a/cve-2025-0411-ukrainian-organizations-targeted.html\n\n@club31337", "creation_timestamp": "2025-02-05T11:25:15.000000Z"}, {"uuid": "6731ef1f-3afc-4283-b25b-5a5f0495e7ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/suboxone_chatroom/4027", "content": "7-Zip Mark-of-the-Web Bypass Vulnerability [CVE-2025-0411] - POC\n\nhttps://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC", "creation_timestamp": "2025-02-27T13:18:06.000000Z"}, {"uuid": "7cdafa17-b855-4ec9-ab6f-6b3f18758d4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-045/", "content": "", "creation_timestamp": "2025-01-19T05:00:00.000000Z"}, {"uuid": "4314e55b-2a38-42ae-8230-24383c4f1b44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lg6kggbrfp27", "content": "", "creation_timestamp": "2025-01-20T14:30:07.910212Z"}, {"uuid": "8be5f7d8-8b7f-44c9-8784-8aafa71e9c40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/mezzo.bsky.social/post/3lheqneb3yc2x", "content": "", "creation_timestamp": "2025-02-04T19:02:32.334262Z"}, {"uuid": "2c16ad5a-0130-4c45-a01e-ccbb17da502c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/spiegel.goark.fedicity.net.ap.brid.gy/post/3lgcaticxtzt2", "content": "", "creation_timestamp": "2025-01-22T01:49:12.227382Z"}, {"uuid": "8a9ca3a4-106e-47fc-ad5e-9fc0faf3efd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/decrypt.lol/post/3lgcg4myszm2c", "content": "", "creation_timestamp": "2025-01-22T03:23:43.055018Z"}, {"uuid": "0761ae60-fd4d-489d-8413-e19ccb8e1573", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3lhdkcwghb623", "content": "", "creation_timestamp": "2025-02-04T07:36:40.320276Z"}, {"uuid": "088f5f1c-5147-429e-bcfe-6fe00c7be310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lhg5wvw43s2n", "content": "", "creation_timestamp": "2025-02-05T08:33:11.486411Z"}, {"uuid": "50c3a5de-aed0-46cb-aa41-b5fe6d23c17b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/piyokango.bsky.social/post/3lhdkfa6kys2t", "content": "", "creation_timestamp": "2025-02-04T07:37:59.973129Z"}, {"uuid": "8560c6cf-9776-4fc0-9d6d-c3be2528cca1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lherrbmmd22g", "content": "", "creation_timestamp": "2025-02-04T19:22:38.990990Z"}, {"uuid": "0074d6a7-48cd-4b7c-a8db-2d3e76745ff4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lgpdryvmgc2t", "content": "", "creation_timestamp": "2025-01-27T06:46:37.625545Z"}, {"uuid": "a76db842-8ee9-428a-a119-7c9430154d01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhjve3pi2k2t", "content": "", "creation_timestamp": "2025-02-06T20:10:11.532412Z"}, {"uuid": "208ac16a-ba46-4140-88e6-03ac32c5669e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lhjnigysgc2b", "content": "", "creation_timestamp": "2025-02-06T17:49:28.087369Z"}, {"uuid": "e3d8a846-f707-4054-86cd-7d77066b56e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lhjvfakwak2t", "content": "", "creation_timestamp": "2025-02-06T20:10:50.437779Z"}, {"uuid": "43bd52cf-4c0f-4b12-9ab7-d03df6569b43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/ethicalhack3r.bsky.social/post/3lhjozgkm5s24", "content": "", "creation_timestamp": "2025-02-06T18:16:49.934838Z"}, {"uuid": "7c2ad60d-b519-40df-881a-f39cbbc51e49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lhjpbek6bm25", "content": "", "creation_timestamp": "2025-02-06T18:21:14.782820Z"}, {"uuid": "00f5641b-c811-4104-b269-76d924b10a02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/shoebhakim.bsky.social/post/3lhebb4p7kt25", "content": "", "creation_timestamp": "2025-02-04T14:27:15.875611Z"}, {"uuid": "7feaa2ea-1ca1-4137-89df-b670c78e65e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lheblhiygn2x", "content": "", "creation_timestamp": "2025-02-04T14:33:03.314744Z"}, {"uuid": "8a8ba90c-0fd9-413c-a4c8-b8a13b746bc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3lhee7bp3cd2t", "content": "", "creation_timestamp": "2025-02-04T15:19:55.215602Z"}, {"uuid": "c0748e25-50ad-4bc4-8408-910548ca569b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-06T21:10:03.000000Z"}, {"uuid": "47e3d3db-7e34-4414-baad-cf55f6c802a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3lhlk4bpu3s2k", "content": "", "creation_timestamp": "2025-02-07T11:54:19.334444Z"}, {"uuid": "c32f7ac6-08d9-47b9-b0e6-ddfa165cee49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/insightsintothings.bsky.social/post/3lgdhmkzfu22q", "content": "", "creation_timestamp": "2025-01-22T13:22:22.086357Z"}, {"uuid": "69a4f308-0687-4daf-a8f4-306682d1c649", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113887110789194713", "content": "", "creation_timestamp": "2025-01-25T04:30:01.075890Z"}, {"uuid": "c19d582b-807a-4805-baef-dce15f836528", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://bsky.app/profile/bripwn.bsky.social/post/3likiv7tlss2m", "content": "", "creation_timestamp": "2025-02-19T19:24:58.084702Z"}, {"uuid": "9a4dac98-27fe-4068-a74a-4d470b4ef9dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-184-03", "content": "", "creation_timestamp": "2025-07-03T10:00:00.000000Z"}, {"uuid": "5b6e1fb9-e5b1-48b2-8c0f-1564d3b3c662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-11T18:47:41.000000Z"}, {"uuid": "eda2fe08-df50-47aa-994a-c66ed57937f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6c3abe9e-5757-4507-9c07-09b53fa26903", "content": "", "creation_timestamp": "2026-02-02T12:26:15.132189Z"}, {"uuid": "19ebd212-2810-44f6-b3a1-9b14b5035c03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/62145", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Syrins/CVE-2025-55182-React2Shell-RCE\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-08T09:54:59.000000Z"}, {"uuid": "084cd574-dc4e-41cc-aa06-a2dcfba67179", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "seen", "source": "https://t.me/cvedetector/16362", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-0411 - 7-Zip Mark-of-the-Web Bypass RCE Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-0411 \nPublished : Jan. 25, 2025, 5:15 a.m. | 1\u00a0hour, 33\u00a0minutes ago \nDescription : 7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.  \n  \nThe specific flaw exists within the handling of archived files. When extracting files from a crafted archive that bears the Mark-of-the-Web, 7-Zip does not propagate the Mark-of-the-Web to the extracted files. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current user. Was ZDI-CAN-25456. \nSeverity: 7.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T07:58:10.000000Z"}, {"uuid": "02891a5a-833c-4f65-aaa7-902405900c63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/60682", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Rivek619/CVE-2025-65676\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-24T16:42:09.000000Z"}, {"uuid": "e2e27e11-84d3-4f4c-b7ca-8e948bcd9aae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/60418", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Cameloo1/sharepoint-toolshell-micro-postmortem\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-21T18:07:15.000000Z"}, {"uuid": "7ef041ba-d15f-4c15-ae83-d69172e083bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/11479", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/CastroJared/7-Zip-CVE-2025-0411-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-01-25T18:09:18.000000Z"}, {"uuid": "6c4b5b2d-9aea-4eeb-bbdc-263774705a9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/hackingbra/242", "content": "CVE-2025-0411\n7-Zip Mark-of-the-Web Bypass Vulnerability\n*\nPOC", "creation_timestamp": "2025-01-23T11:50:55.000000Z"}, {"uuid": "f2f4416c-6b20-43ba-b3d6-50ca73d42855", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/xatori_sec/1018", "content": "CVE-2025-0411\n7-Zip Mark-of-the-Web Bypass Vulnerability\n*\nPOC", "creation_timestamp": "2025-01-23T14:11:12.000000Z"}, {"uuid": "1f72bfd0-13e4-47a9-94de-220b901b460b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34209", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/rxerium/CVE-2025-31324\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-25T16:46:45.000000Z"}, {"uuid": "20d5810f-6b31-41d8-a568-3d41a30c51df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0411", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/35304", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.\nURL\uff1ahttps://github.com/Subha-coder-hash/Anydesk-Exploit-CVE-2025-12654-RCE-Builder\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-02T17:42:18.000000Z"}]}