{"vulnerability": "CVE-2025-21298", "sightings": [{"uuid": "b0fe5006-bcce-471d-8143-cc3f5e5dbd07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/information_security_channel/53029", "content": "CVE-2025-21298: A Critical Windows OLE Zero-Click Vulnerability\nhttps://www.offsec.com/blog/cve-2025-21298/\n\nExplore CVE-2025-21298, a critical Windows OLE zero-click flaw enabling RCE via email. Learn its risks, impact, and how to defend against attacks.\nThe post CVE-2025-21298: A Critical Windows OLE Zero-Click Vulnerability (https://www.offsec.com/blog/cve-2025-21298/) appeared first on OffSec (https://www.offsec.com/).", "creation_timestamp": "2025-02-03T23:13:20.000000Z"}, {"uuid": "d17e26ba-7ecc-4768-bc71-84ab4fdc4048", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/11717", "content": "#exploit\n1. CVE-2024-54887:\nTP-Link TL-WR940N BoF\n\n2. CVE-2024-41570:\nAuthenticated Havoc-Chained-RCE\n\n3. CVE-2025-21298:\nWindows OLE RCE (CVSS 9.8)", "creation_timestamp": "2025-01-22T17:35:10.000000Z"}, {"uuid": "a0f7eafc-075e-41ce-b68d-5ebcb7e5a080", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/GithubRedTeam/82802", "content": "", "creation_timestamp": "2026-05-04T19:00:40.000000Z"}, {"uuid": "f927d568-d3c6-46b2-9068-6aa6d12a2fb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/nflatrea.bsky.social/post/3lfsqkmi6n22m", "content": "", "creation_timestamp": "2025-01-15T21:47:54.954900Z"}, {"uuid": "74d8dcd0-1eba-4604-85fb-53861058df21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/happygeek.bsky.social/post/3lfud5te2ek2j", "content": "", "creation_timestamp": "2025-01-16T12:53:27.936856Z"}, {"uuid": "6bcf3bfc-620c-45bc-b7e9-93e238dc2896", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://infosec.exchange/users/mttaggart/statuses/113828376648322367", "content": "", "creation_timestamp": "2025-01-14T19:33:09.748885Z"}, {"uuid": "a430abc8-1c04-4ed2-9a4f-723c6ef5840b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/taggart-tech.com/post/3lfpykssdnu2i", "content": "", "creation_timestamp": "2025-01-14T19:33:11.831520Z"}, {"uuid": "9168f397-93f4-4392-bda9-92e200a61667", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-21298", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lftvqonlb22q", "content": "", "creation_timestamp": "2025-01-16T08:53:25.969134Z"}, {"uuid": "338711bc-2be1-470c-bcc3-4997175ecbe0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/0xkratos.bsky.social/post/3lgpeybdzdk2f", "content": "", "creation_timestamp": "2025-01-27T07:08:00.198842Z"}, {"uuid": "833cc8d8-1db3-424e-a385-0a83a9a1b2d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-fc4f03e8-275f69d250c67061", "content": "", "creation_timestamp": "2025-01-24T12:10:02.849560Z"}, {"uuid": "91930b02-95c4-45f2-833e-88969f0852f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/113945306618085563", "content": "", "creation_timestamp": "2025-02-04T11:10:00.086000Z"}, {"uuid": "aee0e9c7-e518-451e-9ed2-c44861f5e5b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lglzou5nrc2r", "content": "", "creation_timestamp": "2025-01-25T23:07:55.367795Z"}, {"uuid": "b437cff4-5de7-4bde-ad20-13c385862b55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lhlvwbvwgw2s", "content": "", "creation_timestamp": "2025-02-07T15:25:38.777969Z"}, {"uuid": "4d8a69b4-e1d5-406e-be5b-d0eb4e49839d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/mattjay.com/post/3lggjm44olf2a", "content": "", "creation_timestamp": "2025-01-23T18:36:41.577464Z"}, {"uuid": "545fe323-790c-43df-8dff-6169f81917f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/mattjay.com/post/3lggjmb7d3g22", "content": "", "creation_timestamp": "2025-01-23T18:36:47.579391Z"}, {"uuid": "c1affdf2-c125-4cfb-af83-35f349211eaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lggmee4djj2m", "content": "", "creation_timestamp": "2025-01-23T19:26:04.469056Z"}, {"uuid": "7bb4647f-00b5-403e-a0da-be728f731c03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/geekfeed.bsky.social/post/3lhfy6lol4s2a", "content": "", "creation_timestamp": "2025-02-05T06:50:38.881009Z"}, {"uuid": "9f8c1e81-d18f-4fa1-9d81-255de2abde0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lh36oszfxk2g", "content": "", "creation_timestamp": "2025-01-31T23:47:20.757261Z"}, {"uuid": "0b1ad823-a8d0-442b-b151-2ac237d80943", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://mastodon.social/users/verbrecher/statuses/113879616322587568", "content": "", "creation_timestamp": "2025-01-23T20:44:06.134056Z"}, {"uuid": "b492d767-c37c-435f-9b6d-b615063c8196", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3lggviosbgw25", "content": "", "creation_timestamp": "2025-01-23T22:09:32.243657Z"}, {"uuid": "35a0f9d6-8176-424d-8f84-8bf482cc02d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/werner-hoffmann.bsky.social/post/3lgt3zmrebc2u", "content": "", "creation_timestamp": "2025-01-28T18:38:26.405605Z"}, {"uuid": "7503a87c-1a3e-4d9f-b493-7494461d73f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/socprime.com/post/3lgdi5r64ru2o", "content": "", "creation_timestamp": "2025-01-22T13:32:48.325993Z"}, {"uuid": "4b360163-85c3-4262-8d26-d484df84f69e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/aircorridor.bsky.social/post/3lj5stxdd4k2q", "content": "", "creation_timestamp": "2025-02-27T11:43:48.555414Z"}, {"uuid": "91dd5642-8e15-4c05-b6d1-5c6c958b1ed2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1834", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21298\n\ud83d\udd39 Description: Windows OLE Remote Code Execution Vulnerability\n\ud83d\udccf Published: 2025-01-14T18:03:51.083Z\n\ud83d\udccf Modified: 2025-01-15T19:38:27.003Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21298", "creation_timestamp": "2025-01-15T19:55:01.000000Z"}, {"uuid": "13ddb79c-d7f1-4dc9-b9e5-dea15b9a0539", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/25934", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA safe CTF challenge demonstrating CVE-2025-21298 using RTF and OLE objects.\nURL\uff1ahttps://github.com/Denyningbow/rtf-ctf-cve-2025-21298\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-28T03:11:30.000000Z"}, {"uuid": "e555f10e-16ea-4d88-91cc-243e1dd42c37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "exploited", "source": "https://t.me/CyberBulletin/2193", "content": "\u26a1Chinese #APT \ud83c\udde8\ud83c\uddf3 Groups started to #Exploit #CVE-2025-21298 by #Botnet C2\n\nIP: 185.199.109.133\nMD5: 9d68678aeee52684bbe3c983222b1da3\n\n#CyberBulletin", "creation_timestamp": "2025-01-28T13:34:52.000000Z"}, {"uuid": "cc88338a-79e3-4abc-99c5-0a26afffcd59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/10974", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aProof of concept & details for CVE-2025-21298\nURL\uff1ahttps://github.com/ynwarcs/CVE-2025-21298\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-01-20T18:24:46.000000Z"}, {"uuid": "1ceb106a-c6dc-44bd-8a28-e5e87ef48a07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/52608", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a Complete analysis of CVE-2025-21298, a double free vulnerability related to ole32 library in windows. \nURL\uff1ahttps://github.com/fy-poc/full-poc-CVE-2025_21298\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-22T06:24:17.000000Z"}, {"uuid": "c877e8b6-2239-4c04-96e9-cb8747511401", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/Ua8xFph7Qn-2iR9zfb256TuAmkiLzfhtmHOSuaM_2peeiaE", "content": "", "creation_timestamp": "2025-09-22T09:00:05.000000Z"}, {"uuid": "1da97620-30a5-448f-b6b0-b94145fdbf87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/cybersecplayground/60", "content": "\u26a0\ufe0f Alert \u26a0\ufe0f\n\nCVE-2025-21298 : Windows OLE Remote Code Execution Vulnerability\n\n\ud83d\udd25PoC : https://github.com\n\n\ud83e\uddd0 Deep Dive : https://redcytadel.com\n\n\ud83d\udd17 Hunter Link:https://hunter.how\n\n\ud83d\udd0d Query\n\nHUNTER : \nproduct.name=\"Outlook Web App\"\nFOFA : \nproduct=\"Microsoft-Outlook\"\n\n\ud83d\udcf0 Refer:https://securityonline.info\n\n#WINDOWS #Outlook #hunterhow #infosec #infosecurity #OSINT #Vulnerability", "creation_timestamp": "2025-01-23T10:08:43.000000Z"}, {"uuid": "4cd09df6-c3f8-4626-b19e-f237e6e23332", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/kasperskyb2b/1589", "content": "\ud83e\ude9f \u0420\u0435\u043a\u043e\u0440\u0434\u043d\u044b\u0439 \u044f\u043d\u0432\u0430\u0440\u0441\u043a\u0438\u0439 Patch Tuesday\n\nMicrosoft \u043e\u0442\u043a\u0440\u044b\u043b\u0430 \u0433\u043e\u0434 \u043a\u0440\u0443\u043f\u043d\u0435\u0439\u0448\u0438\u043c \u0432 \u0438\u0441\u0442\u043e\u0440\u0438\u0438 \u043f\u0430\u043a\u0435\u0442\u043e\u043c \u043f\u0430\u0442\u0447\u0435\u0439: \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u043e 157 \u0434\u0435\u0444\u0435\u043a\u0442\u043e\u0432, \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 8 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0437\u0438\u0440\u043e\u0434\u0435\u044f\u043c\u0438. \u0422\u0440\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432\u0436\u0438\u0432\u0443\u044e, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043e\u0434\u043d\u043e\u0439 \u0438 \u0442\u043e\u0439 \u0436\u0435 \u0430\u0442\u0430\u043a\u0438.\n\n\u0418\u0437 \u0432\u0441\u0435\u0433\u043e \u043a\u043e\u043c\u043f\u043b\u0435\u043a\u0442\u0430, 10 \u0431\u0430\u0433\u043e\u0432 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u0441\u0442\u0430\u0442\u0443\u0441 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445. 58 \u0434\u0435\u0444\u0435\u043a\u0442\u043e\u0432 \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0442 \u043a RCE, 40 \u2014 EoP, 21 \u2014 \u0440\u0430\u0437\u0433\u043b\u0430\u0448\u0435\u043d\u0438\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438, 20 \u2014 \u043e\u0442\u043a\u0430\u0437\u0443 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438, 13 \u2014 \u043e\u0431\u0445\u043e\u0434\u0443 \u0444\u0443\u043d\u043a\u0446\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438.\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0435 0day \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0442 \u043a \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044e \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0447\u0435\u0440\u0435\u0437 Hyper-V, \u0430 \u0442\u043e\u0447\u043d\u0435\u0435 NT Kernel Integration Virtualization Service Provider. CVE-2025-21333, -21334 \u0438 -21335 \u0438\u043c\u0435\u044e\u0442 CVSS 7.8. \u0413\u0434\u0435 \u0438 \u043a\u0430\u043a \u0438\u0445 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438, \u0443\u0432\u044b, \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e. \u0411\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u043d\u043e\u0441\u0442\u0438 \u0430\u0434\u0440\u0435\u0441\u043e\u0432\u0430\u043d\u044b \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u043e\u043c\u0443 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044e.\n\n\u0415\u0449\u0451 \u0442\u0440\u0438 \u0437\u0438\u0440\u043e\u0434\u0435\u044f \u0431\u044b\u043b\u0438 \u043d\u0430\u0439\u0434\u0435\u043d\u044b \u0432 MS Access, \u043e\u043d\u0438 \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0442 \u043a RCE \u0438 \u0438\u043c\u0435\u044e\u0442 CVSS 7.8. \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u043e, \u0447\u0442\u043e \u0431\u0430\u0433\u0438 \u043d\u0430\u0439\u0434\u0435\u043d\u044b \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 Unpatched.ai, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0435\u0439 \u0418\u0418 \u0434\u043b\u044f \u043f\u043e\u0438\u0441\u043a\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439. \u042d\u0442\u043e CVE-2025-21186, -21366 \u0438 -21395.\n\n\u0414\u0440\u0443\u0433\u043e\u0439 \u0430\u043d\u043e\u043d\u0438\u043c \u043f\u043e\u043c\u043e\u0433 \u0420\u0435\u0434\u043c\u043e\u043d\u0434\u0443 \u043d\u0430\u0439\u0442\u0438 CVE-2025-21275 (CVSS 7.8), \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0434\u043e SYSTEM \u0447\u0435\u0440\u0435\u0437 \u0441\u043b\u0443\u0436\u0431\u0443 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0438 \u043f\u0430\u043a\u0435\u0442\u043e\u0432.\n\n\u041f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0439 \u043d\u043e\u043b\u044c \u0432 \u044f\u043d\u0432\u0430\u0440\u0441\u043a\u043e\u0439 \u043f\u043e\u0434\u0431\u043e\u0440\u043a\u0435, CVE-2025-21308 (CVSS 6.5), \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0440\u0430\u043d\u0435\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u0451\u043d\u043d\u043e\u0433\u043e \u0434\u0435\u0444\u0435\u043a\u0442\u0430 CVE-2024-38030, spoofing \u0432 Windows Themes, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0438\u0439 \u043a \u0443\u0442\u0435\u0447\u043a\u0435 \u0445\u044d\u0448\u0435\u0439 NTLM. \n\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043d\u0435 \u0440\u0430\u0437\u0433\u043b\u0430\u0448\u0451\u043d\u043d\u044b\u0435 \u0440\u0430\u043d\u0435\u0435, \u0432\u044b\u0433\u043b\u044f\u0434\u044f\u0442 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u043d\u0435\u043f\u0440\u0438\u044f\u0442\u043d\u043e. \u041e\u0442\u043c\u0435\u0442\u0438\u043c \u0434\u0432\u0435 RCE \u0432 Windows Remote Desktop Services (CVE-2025-21297, CVE-2025-21309), \u043e\u0431\u0435 \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0438\u0435 CVSS 8.1, \u043d\u043e \u0432\u0442\u043e\u0440\u0430\u044f \u0432\u044b\u0434\u0435\u043b\u0435\u043d\u0430 \u043a\u0430\u043a \u043a\u0430\u043d\u0434\u0438\u0434\u0430\u0442 \u043d\u0430 \u0431\u0443\u0434\u0443\u0449\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e. \n\n\u0415\u0449\u0451 \u043e\u0434\u0438\u043d \u0434\u0435\u0444\u0435\u043a\u0442 \u0441 \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u043e\u043c \u043c\u0430\u0441\u0441\u043e\u0432\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u2014 RCE \u0432 Windows OLE (CVE-2025-21298, CVSS 9.8). \u042d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0441\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u0435\u0442 \u043f\u0440\u0438 \u0447\u0442\u0435\u043d\u0438\u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043f\u0438\u0441\u044c\u043c\u0430, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u043c\u0438\u0442\u0438\u0433\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u043e\u0432\u0430\u043d\u043e \u043f\u0435\u0440\u0435\u043a\u043b\u044e\u0447\u0438\u0442\u044c \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0435 \u043f\u0438\u0441\u0435\u043c \u0432 Outlook \u0432 \u0432\u0438\u0434\u0435 plain text.\n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 #Microsoft @\u041f2\u0422", "creation_timestamp": "2025-01-15T13:11:42.000000Z"}, {"uuid": "f17eb649-e462-4b64-9545-b1c48aa1f756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/MalaysiaHacktivistz/1450", "content": "Zero-Click Outlook RCE Vulnerability (CVE-2025-21298), PoC Released \u2013 gbhackers.com\n\nFri, 24 Jan 2025 13:08:31", "creation_timestamp": "2025-01-24T09:03:03.000000Z"}, {"uuid": "0172ced8-8c72-40b5-9a20-4fb34599ef03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/l239gTXMS-xUdiZfHb8lMkUikMfcFb-SV91MdixYCPxI53I", "content": "", "creation_timestamp": "2025-01-24T09:03:00.000000Z"}, {"uuid": "eb4cccaa-a13e-400e-9e7e-1d179863053a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/aPCPdIPGkODZoxCaDJ8O34mKLW0JTsj39l_jw_IG9BQaA-s", "content": "", "creation_timestamp": "2025-03-28T10:00:05.000000Z"}, {"uuid": "7d45bd48-3005-4f2c-aea8-3076f439f498", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/-jO_dMkRvmx4xRtlQwgT7XL5f5cfn1y-MVtsbXrINhiYv5o", "content": "", "creation_timestamp": "2025-01-23T11:14:49.000000Z"}, {"uuid": "ffec0f5b-f41d-4345-95ee-b2446c5ae83e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/QbKsrVZo62SnFgMaF2CMO5HKDx0dEQUP8BMaXCucwzSM5V8", "content": "", "creation_timestamp": "2025-01-20T22:00:06.000000Z"}, {"uuid": "02138623-15bc-4091-934f-6f47faa65f5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/cybersecs/3564", "content": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21298\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u044f\u0442\u044c\u0441\u044f, \u043f\u0438\u0441\u044f\u0442\u044c \u0438 \u0441\u043f\u0430\u0442\u044c! \n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0432\u0441\u0435 \u0440\u0430\u0432\u043d\u043e \u0431\u0443\u0434\u0435\u0442 \u043a\u0440\u0438\u0432\u044b\u043c, \u043d\u0435\u0440\u0432\u043d\u0438\u0447\u0430\u0442\u044c \u0431\u0435\u0441\u043f\u043e\u043b\u0435\u0437\u043d\u043e, \u0430 \u043f\u0438\u0441\u044f\u0442\u044c \u0438 \u0441\u043f\u0430\u0441\u0442\u044c \u0432\u0441\u0435\u0433\u0434\u0430 \u043f\u043e\u043b\u0435\u0437\u043d\u043e.", "creation_timestamp": "2025-01-21T06:46:03.000000Z"}, {"uuid": "19bf5a67-8338-423a-bf3d-aa20161d9c00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/LearnExploit/7519", "content": "#exploit\n1. CVE-2024-54887:\nTP-Link TL-WR940N BoF\n\n2. CVE-2024-41570:\nAuthenticated Havoc-Chained-RCE\n\n3. CVE-2025-21298:\nWindows OLE RCE (CVSS 9.8)\n\n\nIR0Day.Today Bax \n@LearnExploit", "creation_timestamp": "2025-01-25T12:35:33.000000Z"}, {"uuid": "85a5c5ee-7e13-400b-9b11-04818d754d6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113828201471030993", "content": "", "creation_timestamp": "2025-01-14T18:48:55.845891Z"}, {"uuid": "337b0141-fb91-4d37-a66f-7b8493ed9d1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://www.thezdi.com/blog/2025/1/14/the-january-2025-security-update-review", "content": "", "creation_timestamp": "2025-01-14T17:29:48.000000Z"}, {"uuid": "cfc6c2fa-373e-49e1-9b02-1d42baf6058c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21298", "content": "", "creation_timestamp": "2025-01-15T07:21:20.363746Z"}, {"uuid": "a7f16d35-d1cb-4392-8c66-b2ccef82bc74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lfti5cfoue25", "content": "", "creation_timestamp": "2025-01-16T04:49:56.996263Z"}, {"uuid": "dfbd08b8-0a80-44d6-8b9e-cf494f5d7758", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/chetwisniewski.securitycafe.ca.ap.brid.gy/post/3lg7nn72y5vu2", "content": "", "creation_timestamp": "2025-01-21T01:00:34.455496Z"}, {"uuid": "243369cd-6ad9-4bc0-bf73-b194f2050475", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/cyberdefense.org/post/3lfyqbrdizk2t", "content": "", "creation_timestamp": "2025-01-18T06:58:55.172618Z"}, {"uuid": "3d041ecb-49bb-4bcd-8c50-a468ee5963f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/applex4.bsky.social/post/3lg3lnezqxu2y", "content": "", "creation_timestamp": "2025-01-19T10:13:55.463468Z"}, {"uuid": "8ab63827-a2ce-4fce-b1e7-e88836ec1126", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/tmuench.bsky.social/post/3lg62vhzwtk2m", "content": "", "creation_timestamp": "2025-01-20T09:52:12.951846Z"}, {"uuid": "dcef5ca0-db04-4961-b2bc-96ab6f913e2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/cybersecurity.page/post/3lgfp467ymn2u", "content": "", "creation_timestamp": "2025-01-23T10:42:29.710378Z"}, {"uuid": "7215062b-c481-4b7e-ab87-9c891cb66c82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/reybango.bsky.social/post/3lhcnvzr4ds2n", "content": "", "creation_timestamp": "2025-02-03T23:08:25.036810Z"}, {"uuid": "5038bd9f-6df7-4858-9b9f-a724704ac49e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://infosec.exchange/users/0patch/statuses/113963002316626342", "content": "", "creation_timestamp": "2025-02-07T14:10:14.936691Z"}, {"uuid": "1a0c28ec-f08c-4f5c-ac24-6cf755b86a1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/pvynckier.bsky.social/post/3lgn7c2cmsc2p", "content": "", "creation_timestamp": "2025-01-26T10:20:48.060001Z"}, {"uuid": "fbc0bd9c-207f-4895-8c5a-28c92aa0ebd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-21298", "type": "seen", "source": "https://bsky.app/profile/bontchev.infosec.exchange.ap.brid.gy/post/3lheg3obuumz2", "content": "", "creation_timestamp": "2025-02-04T15:55:16.185637Z"}, {"uuid": "caa4c980-48a6-47ad-aa5d-468b980c648b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/delivrto.bsky.social/post/3lgdqyctnpk2z", "content": "", "creation_timestamp": "2025-01-22T16:10:49.089179Z"}, {"uuid": "5d8797f5-bdb4-41f4-87ec-f57b3198c0bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-21298", "type": "seen", "source": "https://bsky.app/profile/bontchev.infosec.exchange.ap.brid.gy/post/3ljrkbtjpqdz2", "content": "", "creation_timestamp": "2025-03-07T08:09:35.229746Z"}, {"uuid": "ceeac336-fcd6-41e3-ad36-9c685ab266a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1458", "content": "", "creation_timestamp": "2025-01-15T04:00:00.000000Z"}, {"uuid": "543d5131-49e1-4bc3-a980-dcc57a70db91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/cnPJN6mfEy0qs6PO_D0JOTxjWLJtRLn4F7YmOhIb54r6ZiM", "content": "", "creation_timestamp": "2025-08-09T15:00:07.000000Z"}, {"uuid": "e2a09c5c-ada6-4b3e-9729-0fbe2196e48f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/cKure/14412", "content": "\ud83c\udd95 No-Click Critical Vulnerability in Microsoft Windows: CVE-2025-21298.\n\nhttps://www.hackers-arise.com/post/new-no-click-critical-vulnerability-in-microsoft-windows-cve-2025-21298", "creation_timestamp": "2025-03-09T21:35:00.000000Z"}, {"uuid": "66de075d-3219-4278-b7e0-e90baebe36a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/hackingbra/252", "content": "CVE-2025-21298\n*\nOutlook RCE Vulnerability \n*\nPOC", "creation_timestamp": "2025-01-29T17:53:06.000000Z"}, {"uuid": "ba92a60c-0c77-4e67-9f87-60e1f18edf2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/itsec_news/5376", "content": "\u200b\u26a1\ufe0fMicrosoft, FortiOS, 7-Zip: \u0432\u043e\u0441\u0435\u043c\u044c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0431\u0430\u0433\u043e\u0432 \u043f\u0430\u0440\u0430\u043b\u0438\u0437\u0443\u044e\u0442 \u0441\u0438\u0441\u0442\u0435\u043c\u044b\n\n\ud83d\udcac \u0412 \u0444\u0435\u0432\u0440\u0430\u043b\u0435 2025 \u0433\u043e\u0434\u0430 \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u044b Positive Technologies \u043e\u0442\u043d\u0435\u0441\u043b\u0438 \u043a \u0442\u0440\u0435\u043d\u0434\u043e\u0432\u044b\u043c \u0432\u043e\u0441\u0435\u043c\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439. \u042d\u0442\u043e \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 Microsoft, \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 FortiOS \u0438 \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0440\u0432\u0438\u0441\u0435 FortiProxy, \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0435 \u0434\u043b\u044f \u0430\u0440\u0445\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u043e\u0432 7-Zip.\n\n\u0423\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 \u0432 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0435 \u043f\u043e\u0438\u0441\u043a\u0430 \u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0432 \u0441\u0435\u0442\u0438 Windows Lightweight Directory Access Protocol (LDAP Nightmare)\n\nCVE-2024-49112 (CVSS \u2014 9,8)\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c , \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u0442 \u0437\u0430\u043f\u0440\u043e\u0441 DCE/RPC \u043d\u0430 LDAP-\u0441\u0435\u0440\u0432\u0435\u0440 \u0436\u0435\u0440\u0442\u0432\u044b. \u0423\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e \u0436\u0435\u0440\u0442\u0432\u044b \u0432 \u043e\u0442\u0432\u0435\u0442 \u043d\u0430 \u0437\u0430\u043f\u0440\u043e\u0441 \u0438\u0449\u0435\u0442 \u0432 \u0441\u0435\u0442\u0438 IP-\u0430\u0434\u0440\u0435\u0441 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u043d\u043e\u0433\u043e \u0438\u043c\u0435\u043d\u0438 \u0443\u0437\u043b\u0430 (\u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u0433\u043e). \u041f\u0440\u0438 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0438 IP-\u0430\u0434\u0440\u0435\u0441\u0430 \u0436\u0435\u0440\u0442\u0432\u0430 \u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u0441\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u043c LDAP, \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u0442 \u0437\u0430\u043f\u0440\u043e\u0441 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443. \u041e\u0442\u0432\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430 CLDAP \u0441 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u043c \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435\u043c \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442 \u0441\u0431\u043e\u0439 \u0441\u043b\u0443\u0436\u0431\u044b LSASS \u0437\u0430 \u0441\u0447\u0435\u0442 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f. \u041e\u043d, \u0432 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u043f\u0440\u043e\u0441\u0442\u043e\u044f\u043c, \u0443\u0442\u0435\u0447\u043a\u0430\u043c \u0434\u0430\u043d\u043d\u044b\u0445, \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u043c \u0438 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u043e\u043f\u0430\u0441\u0435\u043d \u0434\u043b\u044f \u0442\u0435\u0445, \u043a\u0442\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u044e Active Directory.\n\n\u0427\u0442\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c\u0441\u044f, \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u041f\u041e, \u043f\u043e\u043b\u044c\u0437\u0443\u044f\u0441\u044c \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u043c\u0438 Microsoft . \u0412 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0432\u0440\u0435\u043c\u0435\u043d\u043d\u044b\u0445 \u043c\u0435\u0440 \u0437\u0430\u0449\u0438\u0442\u044b \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u044b \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044e\u0442 \u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u0442\u044c RPC \u0438 LDAP \u0432\u043d\u0435\u0448\u043d\u0435 \u0447\u0435\u0440\u0435\u0437 SSL \u0438 \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0430\u0446\u0438\u044e \u0441\u0435\u0442\u0438.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 \u0434\u043b\u044f \u0441\u0432\u044f\u0437\u0438 \u043c\u0435\u0436\u0434\u0443 \u0443\u0437\u043b\u0430\u043c\u0438 \u041e\u0421 \u0438 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u043c\u0438 \u043c\u0430\u0448\u0438\u043d\u0430\u043c\u0438 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043d\u043e\u0433\u043e \u0442\u0438\u043f\u0430 Hyper-V NT Kernel Integration VSP\n\nCVE-2025-21333 , CVE-2025-21334 , CVE-2025-21335 (CVSS \u2014 7,8)\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 Hyper-V NT Kernel Integration, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u043c \u0434\u043b\u044f \u0441\u0432\u044f\u0437\u0438 \u043c\u0435\u0436\u0434\u0443 \u0443\u0437\u0434\u0430\u043c\u0438 \u041e\u0421 \u0438 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u043c\u0438 \u043c\u0430\u0448\u0438\u043d\u0430\u043c\u0438 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043d\u043e\u0433\u043e \u0442\u0438\u043f\u0430, \u0442\u0430\u043a\u0438\u043c\u0438 \u043a\u0430\u043a Windows Sandbox \u0438 Microsoft Defender Application Guard. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-21333 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c \u043a\u0443\u0447\u0438, \u0430 CVE-2025-21334 \u0438 CVE-2025-21335 \u2014 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043f\u0430\u043c\u044f\u0442\u0438 \u043f\u043e\u0441\u043b\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0443\u0440\u043e\u0432\u043d\u044f SYSTEM \u2014 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u044b\u0435 \u043d\u0430 \u0443\u0437\u043b\u0430\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u044b. \u042d\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043f\u043e \u0441\u0435\u0442\u0438, \u0437\u0430\u0440\u0430\u0436\u0430\u0442\u044c \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u043c \u041f\u041e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u043e\u043b\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 OLE\n\nCVE-2025-21298 (CVSS \u2014 9,8)\n\n\u0414\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u043d\u0430\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u0436\u0435\u0440\u0442\u0432\u0435 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0439 RTF-\u0444\u0430\u0439\u043b. \u041f\u0440\u0438 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0438 \u0444\u0430\u0439\u043b\u0430 \u0436\u0435\u0440\u0442\u0432\u0430 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0443 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430, \u0447\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0442\u0435\u0447\u043a\u0435 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u043f\u043e\u0442\u0435\u0440\u0435 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u043d\u0430\u0434 \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u0435\u043c.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u0432 Microsoft Configuration Manager\n\nCVE-2024-43468 (CVSS \u2014 9,8)\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e SQL-\u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u0441\u043e\u0437\u0434\u0430\u0435\u0442 \u043d\u043e\u0432\u043e\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 (\u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u0442 \u0437\u0430\u043f\u0440\u043e\u0441 \u043e\u0442 \u043b\u0438\u0446\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u0430, \u0432\u043d\u0435\u0434\u0440\u0438\u0432 \u0432 \u044d\u0442\u043e\u0442 \u0437\u0430\u043f\u0440\u043e\u0441 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u0441\u043a\u0440\u0438\u043f\u0442). \u0422\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u0431\u0443\u0434\u0443\u0447\u0438 \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u043e\u043b\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0432 \u043a\u043e\u0434 \u043d\u0430 \u0443\u0437\u043b\u0435 \u0436\u0435\u0440\u0442\u0432\u044b. \u041f\u0440\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0437\u0430\u0433\u0440\u0443\u0436\u0435\u043d\u043e \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0435 \u041f\u041e \u0441 \u0446\u0435\u043b\u044c\u044e \u043a\u0440\u0430\u0436\u0438, \u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438\u043b\u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Synacktiv \u0441\u043e\u0432\u0435\u0442\u0443\u044e\u0442 \u043f\u0440\u0438\u0431\u0435\u0433\u043d\u0443\u0442\u044c \u043a \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0435 \u043f\u0430\u043f\u043a\u0438 C:\\Program Files\\SMS_CCM\\Logs\\MP_Location.log \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0437\u0430\u043f\u0438\u0441\u0435\u0439 \u0432 \u0436\u0443\u0440\u043d\u0430\u043b\u0435 \u0434\u043b\u044f UpdateSFRequest, XML-\u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 \u0438 \u043e\u0448\u0438\u0431\u043e\u043a \u043f\u0440\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0438 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 getMachineID().\n\n\u0427\u0442\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c\u0441\u044f, \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u044b \u043d\u0430 \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u0441\u0442\u0440\u0430\u043d\u0438\u0446\u0430\u0445 Microsoft: CVE-2024-49112 , CVE-2025-21333 , CVE-2025-21334 , CVE-2025-21335 , CVE-2024-43468 , CVE-2025-21298 .\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2025-02-11T15:33:56.000000Z"}, {"uuid": "25f897ac-9181-4146-8d64-284e669de64f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/nHH3EPNLC7cR6Yqx_oW514LvTLwhWMDWIdjARrLyJXH8zbM", "content": "", "creation_timestamp": "2025-10-12T15:00:06.000000Z"}, {"uuid": "e17f758b-786b-4840-8705-ee9ad44d201e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/justsecurity/370", "content": "\u041d\u043e\u0432\u0430\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Microsoft Outlook: CVE-2025-21298 (Zero Click)\n\n\u041c\u0435\u043d\u0435\u0435 \u043d\u0435\u0434\u0435\u043b\u0438 \u043d\u0430\u0437\u0430\u0434 Microsoft \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-21298 \u0432 Outlook, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0436\u0435\u0440\u0442\u0432. \u0414\u043b\u044f \u044d\u0442\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u043b\u0438\u0448\u044c \u043e\u0442\u043a\u0440\u044b\u0442\u044c \u0438\u043b\u0438 \u043f\u0440\u0435\u0434\u0432\u0430\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0435 \u043f\u0438\u0441\u044c\u043c\u043e. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u0447\u0442\u043e \u0434\u0435\u043b\u0430\u0435\u0442 \u0435\u0451 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u043e\u043f\u0430\u0441\u043d\u043e\u0439.\n\n\ud83d\udccc \u0427\u0442\u043e \u043d\u0443\u0436\u043d\u043e \u0437\u043d\u0430\u0442\u044c:\n\n- \u0422\u0438\u043f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438: \u0423\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 (RCE) \u0447\u0435\u0440\u0435\u0437 Windows OLE.\n- CVSS: 9.8 \u0438\u0437 10 (\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f).\n- \u041c\u0435\u0442\u043e\u0434 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438: \u0421\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u044d\u043b\u0435\u043a\u0442\u0440\u043e\u043d\u043d\u043e\u0435 \u043f\u0438\u0441\u044c\u043c\u043e, \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0435\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 OLE-\u043e\u0431\u044a\u0435\u043a\u0442, \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u0443\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 \u043f\u0440\u0438 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0438 \u0438\u043b\u0438 \u043f\u0440\u0435\u0434\u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f.\n- \u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438: 14 \u044f\u043d\u0432\u0430\u0440\u044f 2025 \u0433\u043e\u0434\u0430.\n\n\ud83d\ude80 \u0427\u0442\u043e \u0434\u0435\u043b\u0430\u0442\u044c \u043f\u0440\u044f\u043c\u043e \u0441\u0435\u0439\u0447\u0430\u0441:\n\n- \u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u0435 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u043f\u0430\u0442\u0447\u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f Outlook, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0435 \u043d\u0430 \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u043c \u0441\u0430\u0439\u0442\u0435 Microsoft.\n- \u041d\u0430\u0441\u0442\u0440\u043e\u0439\u0442\u0435 Outlook \u0434\u043b\u044f \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u043f\u0438\u0441\u0435\u043c \u0432 \u0432\u0438\u0434\u0435 \u043e\u0431\u044b\u0447\u043d\u043e\u0433\u043e \u0442\u0435\u043a\u0441\u0442\u0430, \u0431\u0435\u0437 \u043f\u0440\u0435\u0434\u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0430.\n- \u041d\u0435 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0439\u0442\u0435 \u043f\u0438\u0441\u044c\u043c\u0430 \u0438 \u0432\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u043e\u0442 \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0442\u0435\u043b\u0435\u0439.\n\nMicrosoft \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043a\u0430\u043a \u0447\u0430\u0441\u0442\u044c \u044f\u043d\u0432\u0430\u0440\u0441\u043a\u043e\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21298", "creation_timestamp": "2025-01-20T10:53:43.000000Z"}, {"uuid": "254db03c-9c78-494d-9f50-1d821c7d162b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "Telegram/3MBTytBz7FAWoUgV2aTVPXaX-kfAuOLht6JlK6Rx_m9ll3c", "content": "", "creation_timestamp": "2025-03-07T22:00:06.000000Z"}, {"uuid": "a35c415d-856e-41cc-a1ae-6f40d07963ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/4133", "content": "#GitHub #Tools \n\nCVE-2024-8381: A SpiderMonkey Interpreter Type Confusion Bug.\n\nhttps://github.com/bjrjk/CVE-2024-8381\n\nAn XNU kernel race condition bug\n\nhttps://github.com/jprx/CVE-2025-24118\n\nCobaltstrike Reflective Loader with Synthetic Stackframe\n\nhttps://github.com/NtDallas/OdinLdr\n\nProof of concept & details for CVE-2025-21298\n\nhttps://github.com/ynwarcs/CVE-2025-21298\n\nTeleLog Keylogger Obfuscation and Compilation Tool\n\n https://github.com/4lp1ne/TeleLog\n\n#Tools@dilagrafie", "creation_timestamp": "2025-02-02T05:01:55.000000Z"}, {"uuid": "2b0f5477-b858-41d7-8373-5d4801423202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/Russian_OSINT/5098", "content": "\ud83e\ude9f Microsoft \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 159 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u044f\u043d\u0432\u0430\u0440\u0441\u043a\u043e\u043c Patch Tuesday 2025\n\n\u0412 \u043f\u0435\u0440\u0432\u043e\u043c Patch Tuesday \u0432 2025 \u0433\u043e\u0434\u0443 Microsoft \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u043e 8 zero-day \u0438 \u0444\u0438\u043a\u0441\u0438\u0442 159 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0441\u0432\u043e\u0438\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445, \u0432\u043a\u043b\u044e\u0447\u0430\u044f .NET, Visual Studio, Excel, \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u044b Windows \u0438 \u0441\u0435\u0440\u0432\u0438\u0441\u044b Azure. \u041e\u0441\u043e\u0431\u043e \u0432\u044b\u0434\u0435\u043b\u044f\u0435\u044e\u0442\u0441\u044f \u0442\u0440\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0438\u0435 9,8 \u0431\u0430\u043b\u043b\u0430 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS:\n\n1\ufe0f\u20e3 CVE-2025-21298 \u0432 Windows Object Linking and Embedding (OLE). \u041e\u043d\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0435 \u0436\u0435\u0440\u0442\u0432\u044b, \u0434\u0430\u0436\u0435 \u0435\u0441\u043b\u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u0444\u0430\u0439\u043b \u043f\u0440\u0435\u0434\u0432\u0430\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u043d \u0432 Outlook. \n\n2\ufe0f\u20e3 CVE-2025-21307 \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 RMCAST. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u043e\u0432\u0430\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0447\u0435\u0440\u0435\u0437 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0435 \u043f\u043e\u0440\u0442\u044b \u043f\u0440\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0438 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 PGM. Microsoft \u0441\u043e\u0432\u0435\u0442\u0443\u0435\u0442 \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c \u043f\u043e\u0440\u0442\u044b \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u043c\u0438 \u044d\u043a\u0440\u0430\u043d\u0430\u043c\u0438.\n\n3\ufe0f\u20e3 CVE-2025-21311 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 NTLM \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u043d\u0430 \u0430\u0442\u0430\u043a\u0443\u0435\u043c\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445. Microsoft \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c \u0443\u0441\u0442\u0430\u0440\u0435\u0432\u0448\u0438\u0439 NTLMv1 \u0438\u043b\u0438 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0435\u0433\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435, \u0447\u0442\u043e\u0431\u044b \u043c\u0438\u043d\u0438\u043c\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0440\u0438\u0441\u043a \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u044d\u0442\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u2757\ufe0f \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0442\u0430\u043a\u0436\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u0442 \u0442\u0440\u0438 \u043e\u043f\u0430\u0441\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \ud83e\udd6cExcel (CVE-2025-21354, CVE-2025-21362 \u0438 CVE-2025-21364). \u0421\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u044b \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0434\u0433\u043e\u0442\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u0434\u043b\u044f \u0430\u0442\u0430\u043a, \u0434\u0430\u0436\u0435 \u0435\u0441\u043b\u0438 \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u0432 \u0440\u0435\u0436\u0438\u043c\u0435 \u043f\u0440\u0435\u0434\u0432\u0430\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0430.\n\n\ud83d\udd87 C\u043e \u0441\u043f\u0438\u0441\u043a\u043e\u043c January 2025 Security Updates \u043c\u043e\u0436\u043d\u043e \u043e\u0437\u043d\u0430\u043a\u043e\u043c\u0438\u0442\u044c\u0441\u044f \u0442\u0443\u0442 \u2014 https://msrc.microsoft.com/update-guide/releaseNote/2025-Jan\n\n\u270b @Russian_OSINT", "creation_timestamp": "2025-01-15T09:25:06.000000Z"}, {"uuid": "c99943f0-ae11-49b3-b0c7-108013f13616", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-028/", "content": "", "creation_timestamp": "2025-01-15T05:00:00.000000Z"}, {"uuid": "a57591a5-4ad8-40c0-b5e5-a478ee8c5d0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://krebsonsecurity.com/2025/01/microsoft-happy-2025-heres-161-security-updates/", "content": "", "creation_timestamp": "2025-01-14T21:50:00.000000Z"}, {"uuid": "5dfaa80a-dfaa-402c-b5ae-bee5d51cbefb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfpwe2lv3h2b", "content": "", "creation_timestamp": "2025-01-14T18:53:37.688357Z"}, {"uuid": "c5cafc15-e9d6-4aa7-9ef4-208ba6ad672f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113828354744234251", "content": "", "creation_timestamp": "2025-01-14T19:27:34.848317Z"}, {"uuid": "8a80d21c-eb35-4dd7-98dc-19dc5fb9df05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113829293832687799", "content": "", "creation_timestamp": "2025-01-14T23:26:24.461117Z"}, {"uuid": "f904cf7b-5a49-4719-9199-6bdb025d380b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/solidot.bsky.social/post/3lfrdzehknv2k", "content": "", "creation_timestamp": "2025-01-15T08:30:50.079605Z"}, {"uuid": "9ef2ab1e-b1c3-48b6-bad4-e17b60bee011", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpujafeko2t", "content": "", "creation_timestamp": "2025-01-14T18:20:42.945245Z"}, {"uuid": "8d740c86-55b1-4bd7-a59a-672824e8ea66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-4784ff37-73b6833f0c69141b", "content": "", "creation_timestamp": "2025-01-15T09:59:58.472883Z"}, {"uuid": "75463757-4699-43b2-8f6e-4373ed131e1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lfup7fil7d24", "content": "", "creation_timestamp": "2025-01-16T16:29:02.904308Z"}, {"uuid": "0010fd40-690b-4888-b5a0-91feece4dfa6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/xc0py.bsky.social/post/3lgb74mre4s2r", "content": "", "creation_timestamp": "2025-01-21T15:45:42.712243Z"}, {"uuid": "c5f4058e-4bd1-44cd-bba2-6ea7ae0c5f89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-21298", "type": "seen", "source": "https://bsky.app/profile/btbot.hackdefendr.com/post/3lgbf32uvbc2r", "content": "", "creation_timestamp": "2025-01-21T17:32:17.228894Z"}, {"uuid": "871157d8-cafd-4fd7-9ebd-0600f919da05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://mastodon.social/users/verbrecher/statuses/113882799883937048", "content": "", "creation_timestamp": "2025-01-24T10:13:50.667249Z"}, {"uuid": "1a0aa18b-fcd2-4b9e-990d-13bff80ae2c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/campuscodi.risky.biz/post/3lgfzsrund225", "content": "", "creation_timestamp": "2025-01-23T13:54:06.924779Z"}, {"uuid": "e8d3f8f6-0383-4fb3-8a00-499e07015ec3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/axcheron.bsky.social/post/3lhe2gn6ix22p", "content": "", "creation_timestamp": "2025-02-04T12:25:06.575907Z"}, {"uuid": "04645033-ffb5-42fe-83a7-5bdb81f1bc2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/jurassiquehack.bsky.social/post/3lhe2gw2fvs2p", "content": "", "creation_timestamp": "2025-02-04T12:25:16.815847Z"}, {"uuid": "f122515c-380e-4dae-9899-62ac819baafd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lggidqcm4n2x", "content": "", "creation_timestamp": "2025-01-23T18:14:08.852459Z"}, {"uuid": "8edbc9ca-d449-4517-9706-360c5858eff5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://infosec.exchange/users/ringzer0/statuses/113885813360655561", "content": "", "creation_timestamp": "2025-01-24T23:00:03.806137Z"}, {"uuid": "a61077bb-bd5e-4504-970c-6862292ae3d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/114137791829274582", "content": "", "creation_timestamp": "2025-03-10T11:01:30.015157Z"}, {"uuid": "c4c6a4b0-ea06-4bc0-9fb6-d7a3b56ffb17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "MISP/4d9e0694-2872-4bfc-8eee-f1ab846c5ab0", "content": "", "creation_timestamp": "2025-08-16T01:45:15.000000Z"}, {"uuid": "217a2d9c-cf1f-4208-9854-b39bf63b70de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "MISP/4d9e0694-2872-4bfc-8eee-f1ab846c5ab0", "content": "", "creation_timestamp": "2025-08-19T04:06:36.000000Z"}, {"uuid": "9bb169b9-1168-4073-bfd2-57158fcebbd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/itsec_news/5137", "content": "\u200b\u26a1\ufe0fMicrosoft \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0440\u0435\u043a\u043e\u0440\u0434\u043d\u043e\u0435 \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0441\u0432\u0435\u0436\u0435\u0433\u043e Patch Tuesday\n\n\ud83d\udcac Microsoft \u043d\u0430\u0447\u0430\u043b\u0430 2025 \u0433\u043e\u0434 \u0441 \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u043e\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f, \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u0432 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0438\u043d\u0438\u0446\u0438\u0430\u0442\u0438\u0432\u044b Patch Tuesday \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f 161-\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0432\u043e\u0451\u043c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0442\u0440\u0438 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u00ab\u043d\u0443\u043b\u0435\u0432\u044b\u0445 \u0434\u043d\u044f\u00bb.\n\n\u0421\u0440\u0435\u0434\u0438 \u0432\u0441\u0435\u0445 \u044d\u0442\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 11 \u043a\u043b\u0430\u0441\u0441\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u043a\u0430\u043a \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435, \u0430 149 \u2014 \u043a\u0430\u043a \u0432\u0430\u0436\u043d\u044b\u0435. \u0414\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Windows Secure Boot ( CVE-2024-7344 ), \u043d\u0435 \u0438\u043c\u0435\u044e\u0449\u0430\u044f \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u043d\u043e\u0441\u0442\u0438. \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Zero Day Initiative, \u044d\u0442\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0441\u0442\u0430\u043b\u043e \u043a\u0440\u0443\u043f\u043d\u0435\u0439\u0448\u0438\u043c \u0435\u0434\u0438\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u044b\u043c \u043f\u0430\u0442\u0447\u0435\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0441 2017 \u0433\u043e\u0434\u0430.\n\n\u041e\u0441\u043e\u0431\u043e\u0435 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u0435 \u043f\u0440\u0438\u0432\u043b\u0435\u043a\u043b\u0438 \u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Windows Hyper-V NT Kernel Integration VSP: CVE-2025-21333, CVE-2025-21334, CVE-2025-21335, \u0432\u0441\u0435 \u043e\u0446\u0435\u043d\u0435\u043d\u044b \u0432 7.8 \u0431\u0430\u043b\u043b\u043e\u0432 \u043f\u043e CVSS \u0438 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f. Microsoft \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430, \u0447\u0442\u043e \u0438\u0445 \u0443\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0430\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 SYSTEM. \u041a \u0441\u043b\u043e\u0432\u0443, CISA \u0443\u0436\u0435 \u0434\u043e\u0431\u0430\u0432\u0438\u043b\u0430 \u0438\u0445 \u0432 \u0441\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 Known Exploited Vulnerabilities (KEV), \u043e\u0431\u044f\u0437\u044b\u0432\u0430\u044f \u0444\u0435\u0434\u0435\u0440\u0430\u043b\u044c\u043d\u044b\u0435 \u0430\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u0430 \u0421\u0428\u0410 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u0442\u0447\u0438 \u0434\u043e 4 \u0444\u0435\u0432\u0440\u0430\u043b\u044f 2025 \u0433\u043e\u0434\u0430.\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u043f\u044f\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0431\u044b\u043b\u0438 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b \u0434\u043e \u0432\u044b\u0445\u043e\u0434\u0430 \u043f\u0430\u0442\u0447\u0435\u0439, \u0432\u043a\u043b\u044e\u0447\u0430\u044f:\n\nCVE-2025-21186, CVE-2025-21366, CVE-2025-21395 \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 Microsoft Access (RCE, CVSS. 7.8);\nCVE-2025-21275 \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 Windows App Package Installer;\nCVE-2025-21308 \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c Windows Themes, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c NTLM-\u0445\u044d\u0448.\n\n\u0422\u0440\u0438 \u0438\u0437 \u043d\u0438\u0445 (Microsoft Access) \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u043e\u0439 Unpatched.ai. \u041d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u043a\u043b\u0430\u0441\u0441\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e \u043a\u0430\u043a RCE, \u0438\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u043e\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430.\n\n\u042f\u043d\u0432\u0430\u0440\u0441\u043a\u0438\u0439 Patch Tuesday \u0442\u0430\u043a\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b \u043f\u044f\u0442\u044c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0432\u043a\u043b\u044e\u0447\u0430\u044f:\n\nCVE-2025-21294 \u2014 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 \u0447\u0435\u0440\u0435\u0437 Digest Authentication (CVSS. 8.1);\nCVE-2025-21298 \u2014 RCE \u0447\u0435\u0440\u0435\u0437 OLE (CVSS. 9.8);\nCVE-2025-21307 \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0435 RMCAST (CVSS. 9.8);\nCVE-2025-21311 \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0447\u0435\u0440\u0435\u0437 NTLM V1 (CVSS. 9.8).\n\n\u0412 \u043e\u0434\u043d\u043e\u043c \u0438\u0437 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0435\u0432 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0433 \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0435 \u043f\u0438\u0441\u044c\u043c\u043e, \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440 \u043a\u043e\u0442\u043e\u0440\u043e\u0433\u043e \u0447\u0435\u0440\u0435\u0437 Microsoft Outlook \u043f\u0440\u0438\u0432\u0451\u043b \u0431\u044b \u043a \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430.\n\n\u041d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0437\u043d\u0430\u0447\u0438\u043c\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 CVE-2025-21295, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u043a\u043e\u0434 \u0431\u0435\u0437 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c, \u0438 CVE-2025-21294, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043e\u0448\u0438\u0431\u043a\u0438 \u0432 Digest Authentication.\n\n\u0415\u0449\u0451 \u043e\u0434\u043d\u0430 \u0443\u0433\u0440\u043e\u0437\u0430 \u2014 CVE-2025-21210, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 Windows BitLocker. \u041e\u043d\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0438\u0437\u0432\u043b\u0435\u0447\u044c \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437 \u043e\u0431\u0440\u0430\u0437\u043e\u0432 \u0433\u0438\u0431\u0435\u0440\u043d\u0430\u0446\u0438\u0438, \u0435\u0441\u043b\u0438 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u0444\u0438\u0437\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443. \u042d\u0442\u043e \u043f\u043e\u0432\u044b\u0448\u0430\u0435\u0442 \u0440\u0438\u0441\u043a \u0443\u0442\u0435\u0447\u043a\u0438 \u043f\u0430\u0440\u043e\u043b\u0435\u0439, \u043f\u0435\u0440\u0441\u043e\u043d\u0430\u043b\u044c\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0434\u0440\u0443\u0433\u043e\u0439 \u0447\u0443\u0432\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438.\n\n\u041f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e\u0435 \u0441\u043e\u0432\u0435\u0440\u0448\u0435\u043d\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0435 \u043a\u0438\u0431\u0435\u0440\u0443\u0433\u0440\u043e\u0437 \u043f\u043e\u0434\u0447\u0451\u0440\u043a\u0438\u0432\u0430\u0435\u0442 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u0441\u0442\u0440\u043e\u0433\u043e \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0438\u0441\u0442\u0435\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438. \u0412 \u043c\u0438\u0440\u0435, \u0433\u0434\u0435 \u043a\u0430\u0436\u0434\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0436\u0435\u0442 \u0441\u0442\u0430\u0442\u044c \u0432\u0445\u043e\u0434\u043d\u043e\u0439 \u0442\u043e\u0447\u043a\u043e\u0439 \u0434\u043b\u044f \u0430\u0442\u0430\u043a, \u043f\u0440\u043e\u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0439 \u043f\u043e\u0434\u0445\u043e\u0434 \u0438 \u0433\u0440\u0430\u043c\u043e\u0442\u043d\u043e\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0440\u0438\u0441\u043a\u0430\u043c\u0438 \u0441\u0442\u0430\u043d\u043e\u0432\u044f\u0442\u0441\u044f \u043a\u043b\u044e\u0447\u0435\u0432\u044b\u043c\u0438 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u0430\u043c\u0438 \u0437\u0430\u0449\u0438\u0442\u044b \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2025-01-15T15:02:57.000000Z"}, {"uuid": "17b1f19c-afcf-4fb0-946e-b8f8e139ddee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/55154", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aWe are expected to investigate a critical alert reporting a Windows OLE zero-click RCE exploitation (CVE-2025-21298) delivered via a malicious RTF attachment.\nURL\uff1ahttps://github.com/Arkha-Corvus/LetsDefend-SOC336-Windows-OLE-Zero-Click-RCE-Exploitation-Detected-CVE-2025-21298-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-10-12T09:10:59.000000Z"}, {"uuid": "07cfd024-a1e9-4315-9ce7-176c9f754a99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "Telegram/EBxlpoDEVgCTaQenJ-7Tl1HpGayD89g3xFJ6axCCTzov1N4", "content": "", "creation_timestamp": "2025-01-22T16:00:13.000000Z"}, {"uuid": "a6f798fe-b73e-411b-93e9-fb2a33530587", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "seen", "source": "https://t.me/proxy_bar/2499", "content": "CVE-2025-21298\n*\nOutlook RCE Vulnerability \n*\nPOC", "creation_timestamp": "2025-01-29T18:05:14.000000Z"}, {"uuid": "6fa620b9-32e1-4347-92b4-aeb957c68f70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21298", "type": "published-proof-of-concept", "source": "https://t.me/zero_day_uz/468", "content": "CVE-2025-21298\n*\nOutlook RCE Vulnerability \n*\nPOC", "creation_timestamp": "2025-01-30T13:50:45.000000Z"}]}