{"vulnerability": "CVE-2025-53771", "sightings": [{"uuid": "4ab3ede1-27e3-4d13-beed-d3bc253d3017", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://www.circl.lu/pub/tr-95/", "content": "", "creation_timestamp": "2025-07-21T12:45:05.247099Z"}, {"uuid": "013c31ad-38c6-4cf7-904d-acfeb7128958", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/threatintel.microsoft.com/post/3lugwccoukc2q", "content": "", "creation_timestamp": "2025-07-21T02:16:35.210566Z"}, {"uuid": "46582f84-b99b-4503-8ec5-bbe4cb0f4321", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lugx4mvak72w", "content": "", "creation_timestamp": "2025-07-21T02:31:17.616640Z"}, {"uuid": "e35805e1-3f08-4b7c-a118-e978cf55cba4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/secqube.com/post/3lugxja5ec424", "content": "", "creation_timestamp": "2025-07-21T02:38:20.445324Z"}, {"uuid": "cb9671d8-e9f8-4085-b340-9cd99310ec80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/bleepingcomputer.com/post/3luh6gjng4w2d", "content": "", "creation_timestamp": "2025-07-21T04:42:06.589335Z"}, {"uuid": "9ed8795c-6416-4854-9b70-29c49ebb2234", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/buhane.com.tr/post/3luh6iedcxf2n", "content": "", "creation_timestamp": "2025-07-21T04:43:08.212483Z"}, {"uuid": "1be5fc30-d968-414d-9bec-f0b26927fefe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/technofeed.bsky.social/post/3luhbpdkmkz2t", "content": "", "creation_timestamp": "2025-07-21T05:40:43.222261Z"}, {"uuid": "273c1d10-f359-4d4d-a988-5c8e5580e9f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3luhmfud7d32b", "content": "", "creation_timestamp": "2025-07-21T08:52:16.831848Z"}, {"uuid": "7eccbe6c-5be4-4f63-b7cc-88efa9e7fe0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/withsecure.bsky.social/post/3luhpkgsjf22c", "content": "", "creation_timestamp": "2025-07-21T09:48:33.893002Z"}, {"uuid": "728359b8-f9af-4c89-9e6f-eb82522d1099", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/withsecure.bsky.social/post/3luhpqy5x7s2p", "content": "", "creation_timestamp": "2025-07-21T09:52:12.657066Z"}, {"uuid": "519a689f-1aba-46c8-ae11-4bfa0a9b0272", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pvtsakarium.bsky.social/post/3lulcbh65lc2g", "content": "", "creation_timestamp": "2025-07-22T20:02:15.847234Z"}, {"uuid": "9c01ebdb-79a6-467d-adea-1237786612e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lulfoboi3n2q", "content": "", "creation_timestamp": "2025-07-22T21:02:23.416051Z"}, {"uuid": "454c8cea-12db-4417-a57c-d56084e2de1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/Opalsec/statuses/114899134990644269", "content": "", "creation_timestamp": "2025-07-22T22:02:29.810296Z"}, {"uuid": "c01482c6-13d2-436a-b564-b6d482e6398f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://mastodon.social/users/verbrecher/statuses/114899228358022374", "content": "", "creation_timestamp": "2025-07-22T22:24:49.866804Z"}, {"uuid": "4cd03cfe-fe64-44bc-85a4-730b6a4c6891", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lulxscrhzf2f", "content": "", "creation_timestamp": "2025-07-23T02:26:44.535747Z"}, {"uuid": "bc113dda-6611-47b0-8504-00e695af4a3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3lulyipwl2s2u", "content": "", "creation_timestamp": "2025-07-23T02:39:16.490925Z"}, {"uuid": "c1a72b3f-37b1-4fb6-8485-1b3e9c8f8136", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/a3c5beab-b790-4171-8b4c-02c8a9678071", "content": "", "creation_timestamp": "2025-07-22T03:54:24.000000Z"}, {"uuid": "2a412a63-175d-4660-b0a2-6c968f3d6bdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lum3vfnydc2j", "content": "", "creation_timestamp": "2025-07-23T03:40:03.836619Z"}, {"uuid": "0806d5ab-3e8c-4259-9ad8-34a7b48ec5a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lum3yxmujk2j", "content": "", "creation_timestamp": "2025-07-23T03:42:06.545431Z"}, {"uuid": "da96a665-b8ae-4850-b769-5dd31c4e41ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lum447fzuk2j", "content": "", "creation_timestamp": "2025-07-23T03:43:53.334633Z"}, {"uuid": "14a2f50d-d01b-42df-b8df-5b4e3d275aaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3lum54yrnps2n", "content": "", "creation_timestamp": "2025-07-23T04:02:15.627681Z"}, {"uuid": "a86b84bc-30ac-46d3-9710-f50b3666293b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3lumdz76unt2m", "content": "", "creation_timestamp": "2025-07-23T06:05:21.187305Z"}, {"uuid": "675720e4-9f6f-472c-8980-c3ec1c63e418", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/59ed4725-5f2a-4844-8dc4-e6926dbcb5ce", "content": "", "creation_timestamp": "2025-07-23T06:55:04.000000Z"}, {"uuid": "9e67475c-de8b-4294-bc07-eb5612d8c0ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://threatintel.cc/2025/07/28/emerging-threat-actor-warlock-ransomware.html", "content": "", "creation_timestamp": "2025-07-28T08:56:45.000000Z"}, {"uuid": "7db9c275-ef81-4d47-ad22-acd7fb1281ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lv32nssloe2w", "content": "", "creation_timestamp": "2025-07-29T02:27:50.672079Z"}, {"uuid": "0413cb0e-82c5-4d92-82eb-6ca8f866c309", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lva3km4r5v2t", "content": "", "creation_timestamp": "2025-07-31T02:27:15.395544Z"}, {"uuid": "940f90be-23ec-43f2-a2fe-8ba50d72ff55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3lykpasuzns23", "content": "", "creation_timestamp": "2025-09-11T12:01:59.730459Z"}, {"uuid": "58019fb9-7573-4026-831e-24a2d578934a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3lwuuh6bd5a2o", "content": "", "creation_timestamp": "2025-08-21T02:11:10.230901Z"}, {"uuid": "207e5b1b-9c34-45d4-b99f-ddb18f54ecf9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/a3c5beab-b790-4171-8b4c-02c8a9678071", "content": "", "creation_timestamp": "2025-09-09T11:53:39.000000Z"}, {"uuid": "dff21b83-ada9-4db9-a3b8-830a1bafa388", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3m335yzgz2c2y", "content": "", "creation_timestamp": "2025-10-13T11:59:02.493532Z"}, {"uuid": "53d91606-33d6-4a3e-8a89-ea5a4713e166", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://research.checkpoint.com/2025/ink-dragons-relay-network-and-offensive-operation/", "content": "", "creation_timestamp": "2025-12-17T08:53:32.459400Z"}, {"uuid": "32f4735c-3c82-40e5-b754-4fca2444e45c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/506fab2f-1a82-5379-9595-5572612ad77d", "content": "", "creation_timestamp": "2026-01-05T16:15:14.000000Z"}, {"uuid": "502e5a7b-cbee-4f18-ae05-981f8ea5f7e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/7eb6b389-20dd-404f-90c4-314ed370fcc5", "content": "", "creation_timestamp": "2025-07-20T06:03:24.883901Z"}, {"uuid": "c72e8f6b-cbf9-4bca-8320-bbf6652f6e96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45440", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aSharepoint ToolPane - CVE-2025-53770 & CVE-2025-53771\nURL\uff1ahttps://github.com/unk9vvn/sharepoint-toolpane\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-26T11:09:14.000000Z"}, {"uuid": "5d90d3a1-b12c-4525-8d56-c6850311aea7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/BleepingComputer/22571", "content": "\u200aMicrosoft releases emergency patches for SharePoint RCE flaws exploited in attacks\n\nMicrosoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770\u00a0and CVE-2025-53771 that have compromised services worldwide in \"ToolShell\" attacks. [...]\n\nhttps://www.bleepingcomputer.com/news/microsoft/microsoft-releases-emergency-patches-for-sharepoint-rce-flaws-exploited-in-attacks/", "creation_timestamp": "2025-07-21T05:23:12.000000Z"}, {"uuid": "821d4a30-855a-483a-a1bf-1c4fe4a90b67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "published-proof-of-concept", "source": "Telegram/aJSulEfzlvWzvTMBfPk51bbTeaXii0v458D9js_bSuDvORY", "content": "", "creation_timestamp": "2025-07-26T15:00:07.000000Z"}, {"uuid": "b1cd9fbe-6ff6-450a-aa9c-b4ca8bced963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://t.me/kasperskylab_ru/6469", "content": "\u0412 \u043d\u043e\u0432\u043e\u043c #kaspersky_securityweek:\n\n\ud83d\udfe3\u042d\u043a\u0441\u043f\u0435\u0440\u0442\u044b \u00ab\u041b\u0430\u0431\u043e\u0440\u0430\u0442\u043e\u0440\u0438\u0438 \u041a\u0430\u0441\u043f\u0435\u0440\u0441\u043a\u043e\u0433\u043e\u00bb \u043f\u0440\u043e\u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u043f\u044f\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u0441 \u0430\u0442\u0430\u043a\u043e\u0439 ToolShell. \u0412 \u0447\u0430\u0441\u0442\u043d\u043e\u0441\u0442\u0438, \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0440\u0430\u0441\u0441\u043c\u043e\u0442\u0440\u0435\u043b\u0438 CVE-2025-49706, \u043f\u0440\u043e\u043f\u0430\u0442\u0447\u0435\u043d\u043d\u0443\u044e \u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u043e\u0448\u0438\u0431\u043a\u0443 \u0432 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0435 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043a \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0443, \u0438 CVE-2025-53771, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u0430 \u043e\u0431\u043e\u0439\u0442\u0438 \u044d\u0442\u043e\u0442 \u043f\u0430\u0442\u0447 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u0438\u043c\u0432\u043e\u043b\u0430 \u00ab/\u00bb \u0432 \u0441\u0442\u0440\u043e\u043a\u0435 \u0437\u0430\u043f\u0440\u043e\u0441\u0430.\n\n\ud83d\udfe3\u0414\u0435\u0439\u0442\u0438\u043d\u0433-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 Tea \u043f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u043b\u043e \u043e\u0442 \u043c\u0430\u0441\u0441\u043e\u0432\u043e\u0439 \u0443\u0442\u0435\u0447\u043a\u0438 \u0434\u0430\u043d\u043d\u044b\u0445. \u0412 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435 \u043e\u043a\u0430\u0437\u0430\u043b\u0438\u0441\u044c \u0442\u044b\u0441\u044f\u0447\u0438 \u0444\u043e\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0438\u0437 \u043b\u0438\u0447\u043d\u044b\u0445 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 \u0438 \u0441\u0435\u043b\u0444\u0438, \u0441\u0434\u0435\u043b\u0430\u043d\u043d\u044b\u0435 \u0434\u043b\u044f \u0432\u0435\u0440\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0430\u043a\u043a\u0430\u0443\u043d\u0442\u043e\u0432. \u041f\u043e \u0437\u0430\u044f\u0432\u043b\u0435\u043d\u0438\u044e \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438-\u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430, \u043f\u0440\u0438\u0447\u0438\u043d\u043e\u0439 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430 \u0441\u0442\u0430\u043b\u0438 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432. \n\n\ud83d\udfe3\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043e \u043d\u043e\u0432\u043e\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0435 \u041f\u041e \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Koske, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0432\u043d\u0435\u0434\u0440\u044f\u0435\u0442 \u043a\u0440\u0438\u043f\u0442\u043e\u043c\u0430\u0439\u043d\u0435\u0440 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux. \u0427\u0442\u043e\u0431\u044b \u0434\u043e\u0441\u0442\u0430\u0432\u0438\u0442\u044c \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e, \u0437\u043b\u043e\u0432\u0440\u0435\u0434 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0441\u0442\u0435\u0433\u0430\u043d\u043e\u0433\u0440\u0430\u0444\u0438\u044e: \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u043a\u043e\u0434 \u043e\u043d \u0432\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u0435\u0442 \u0432 \u0431\u0435\u0437\u043e\u0431\u0438\u0434\u043d\u044b\u0435 \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0441 \u043f\u0430\u043d\u0434\u0430\u043c\u0438.", "creation_timestamp": "2025-07-29T09:09:50.000000Z"}, {"uuid": "ad7e526a-b9c3-48a1-835e-4810176cd0ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/true_secator/7251", "content": "Microsoft \u0430\u043d\u043e\u043d\u0441\u0438\u0440\u043e\u0432\u0430\u043b\u0430 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 0-day \u0432 SharePoint Server, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u043a CVE-2025-53770 \u0438 CVE-2025-53771.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0435\u0439 \u0430\u0442\u0430\u043a\u0438 Eye Security, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f CVE-2025-53770 \u0438 CVE-2025-53771, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0438\u0445 \u0443\u0441\u043b\u043e\u0432\u043d\u043e\u0435 \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 ToolShell, \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c 18 \u0438\u044e\u043b\u044f.\n\n\u041d\u0430 \u0443\u0434\u0438\u0432\u043b\u0435\u043d\u0438\u0435 Microsoft \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u0438 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0430\u0441\u044c \u043c\u0435\u0440\u0430\u043c\u0438 \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e, \u043e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043f\u0440\u0438\u0441\u0442\u0443\u043f\u0438\u0432 \u043a \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439.\n\n\u041f\u043e\u0437\u0434\u043d\u043e \u0432\u0435\u0447\u0435\u0440\u043e\u043c \u0432 \u0432\u043e\u0441\u043a\u0440\u0435\u0441\u0435\u043d\u044c\u0435 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u043e\u0431 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f\u0445 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0442 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint Subscription Edition \u0438 SharePoint 2019. \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f SharePoint 2016 - \u043f\u043e\u0447\u0442\u0438 \u043d\u0430 \u0432\u044b\u0445\u043e\u0434\u0435.\n\nCVE-2025-53770 \u0438 CVE-2025-53771 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b SharePoint. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u0435\u043d\u044b \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u0434\u043b\u044f \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 RCE \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u0412 \u0445\u043e\u0434\u0435 \u0430\u0442\u0430\u043a, \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u044b\u0445 Eye Security \u0438 Google, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0432\u043d\u0435\u0434\u0440\u044f\u043b\u0438 \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u00a0\u0438 \u043f\u043e\u0445\u0438\u0449\u0430\u043b\u0438 \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0441\u0435\u043a\u0440\u0435\u0442\u044b, \u0447\u0442\u043e \u043e\u0442\u043a\u0440\u044b\u043b\u0430 \u0438\u043c  \u043f\u043e\u043b\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u043c \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u043c.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f Eye Security \u0433\u043b\u043e\u0431\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u0438 \u0432\u044b\u044f\u0432\u0438\u0442\u044c \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 SharePoint, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u044b \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e ToolShell.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, ShadowServer \u0437\u0430\u044f\u0432\u0438\u043b\u0430 \u043e \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u043c 9000\u00a0\u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u0430\u0445 SharePoint, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0445 \u0447\u0435\u0440\u0435\u0437 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442\u0441\u044f \u0432 \u0421\u0435\u0432\u0435\u0440\u043d\u043e\u0439 \u0410\u043c\u0435\u0440\u0438\u043a\u0435 \u0438 \u0415\u0432\u0440\u043e\u043f\u0435, \u043d\u043e \u043f\u043e\u043a\u0430 \u0431\u0435\u0437 \u043c\u0430\u0440\u043a\u0438\u0440\u043e\u0432\u043a\u0438 \u0438\u0445 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c.\n\n\u041d\u0430 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Palo Alto Networks \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u0434\u0435\u0442\u0435\u043a\u0442\u0438\u043b\u0430 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0435 CVE-2025-49704 \u0438 CVE-2025-49706 \u0432 \u0448\u0438\u0440\u043e\u043a\u043e\u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\nCVE-2025-53770 \u0438 CVE-2025-53771 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0432\u0430\u0440\u0438\u0430\u043d\u0442\u0430\u043c\u0438 CVE-2025-49706 \u0438 CVE-2025-49704, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 \u043a\u043e\u043c\u0430\u043d\u0434\u044b Viettel \u043f\u0440\u043e\u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0435\u0449\u0435 \u0432 \u043c\u0430\u0435 \u043d\u0430 \u0445\u0430\u043a\u0435\u0440\u0441\u043a\u043e\u043c \u0442\u0443\u0440\u043d\u0438\u0440\u0435 Pwn2Own \u0432 \u0411\u0435\u0440\u043b\u0438\u043d\u0435, \u043e \u0447\u0435\u043c \u043c\u044b \u0442\u0430\u043a\u0436\u0435 \u0441\u043e\u043e\u0431\u0449\u0430\u043b\u0438.\n\nMicrosoft \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-49706 \u0438 CVE-2025-49704 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 PatchTuesday \u0437\u0430 \u0438\u044e\u043b\u044c 2025 \u0433\u043e\u0434\u0430.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0434\u043d\u0435\u0439 \u0441\u043f\u0443\u0441\u0442\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Code White \u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u0435\u043b\u0438 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043e\u043d\u0438 \u043d\u0430\u0437\u0432\u0430\u043b\u0438 ToolShell, \u043f\u043e\u043a\u0430\u0437\u0430\u0432, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0435\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0441\u0435\u0433\u043e \u043b\u0438\u0448\u044c \u043e\u0434\u043d\u0438\u043c \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u043c \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043f\u043e \u0432\u0441\u0435\u0439 \u0432\u0438\u0434\u0438\u043c\u043e\u0441\u0442\u0438, \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043e\u0431\u043e\u0439\u0442\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Microsoft \u0434\u043b\u044f CVE-2025-49706 \u0438 CVE-2025-49704 \u0434\u043b\u044f \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0430\u0442\u0430\u043a \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b SharePoint.\n\n\u0421\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e Microsoft \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u043d\u043e\u0432\u044b\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u0438 \u043f\u0440\u0438\u0441\u0432\u043e\u0438\u043b\u0430 \u043d\u043e\u0432\u044b\u0435 CVE: CVE-2025-53770 \u0438 CVE-2025-53771, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442, \u043a\u0430\u043a \u0443\u0432\u0435\u0440\u044f\u044e\u0442 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438, \u0431\u043e\u043b\u0435\u0435 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u0443\u044e \u0437\u0430\u0449\u0438\u0442\u0443 \u043d\u0435\u0436\u0435\u043b\u0438 \u0434\u043b\u044f \u043f\u0440\u0435\u0434\u044b\u0434\u0443\u0449\u0438\u0445 CVE-2025-49704 \u0438 CVE-2025-49706.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c, \u0432 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u0445 Microsoft \u043f\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-53771 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u043d\u0435 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f. \u0412\u043f\u0440\u043e\u0447\u0435\u043c, \u043c\u0438\u043a\u0440\u043e\u043c\u044f\u0433\u043a\u0438\u0435, \u043a\u0430\u043a \u0432\u0441\u0435\u0433\u0434\u0430, \u0432 \u0441\u0432\u043e\u0435\u043c \u0440\u0435\u043f\u0435\u0440\u0442\u0443\u0430\u0440\u0435.", "creation_timestamp": "2025-07-21T14:02:36.000000Z"}, {"uuid": "2083b49e-4213-4b5f-a0ad-6e3270ee6276", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/kasperskyb2b/1827", "content": "\u2757\ufe0f \u0414\u0432\u0430 0day \u0432 SharePoint \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438\n\n\u0412\u0435\u0447\u0435\u0440\u043e\u043c \u0432 \u043f\u044f\u0442\u043d\u0438\u0446\u0443 \u0441\u0442\u0430\u043b\u043e \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e\u0431 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0434\u0432\u0443\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 on-prem \u0432\u0435\u0440\u0441\u0438\u044f\u0445 SharePoint 2016, 2019 \u0438 Subscription edition. \u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0441\u043d\u0430\u0447\u0430\u043b\u0430 \u043e\u0431\u0445\u043e\u0434\u044f\u0442 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e, \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u044f \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0430 Referer \u0432 \u0437\u0430\u043f\u0440\u043e\u0441\u0430\u0445  \"/_layouts/SignOut.aspx\", \u0430 \u0437\u0430\u0442\u0435\u043c \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u044e\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u043a\u043e\u0434 \u0447\u0435\u0440\u0435\u0437 \u0437\u0430\u043f\u0440\u043e\u0441 \u043a \"/_layouts/15/ToolPane.aspx\", \u0432 \u043a\u043e\u0442\u043e\u0440\u043e\u043c \u043f\u0440\u043e\u0438\u0441\u0445\u043e\u0434\u0438\u0442 \u043e\u043f\u0430\u0441\u043d\u0430\u044f \u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e _VIEWSTATE.  \u042d\u0442\u0430 \u0430\u0442\u0430\u043a\u0430 \u0431\u044b\u043b\u0430 \u043d\u0430\u0437\u0432\u0430\u043d\u0430 ToolShell.\n\n\u0421\u0443\u0434\u044f \u043f\u043e \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u044f\u043c \u043f\u0440\u043e\u0438\u0441\u0445\u043e\u0434\u044f\u0449\u0438\u0445 \u0441\u0435\u0439\u0447\u0430\u0441 \u0430\u0442\u0430\u043a, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043d\u0435 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440 \u0431\u0430\u043d\u0430\u043b\u044c\u043d\u044b\u0445 \u0432\u0435\u0431\u0448\u0435\u043b\u043b\u043e\u0432, \u0430 \u0438\u0437\u0432\u043b\u0435\u043a\u0430\u044e\u0442 \u0438\u0437 \u043d\u0435\u0433\u043e \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0434\u0430\u043d\u043d\u044b\u0435, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0438\u043c \u043f\u0440\u043e\u043d\u0438\u043a\u0430\u0442\u044c \u0432 \u0441\u0435\u0442\u044c \u0441 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u043c\u0438 \u0443\u0447\u0451\u0442\u043d\u044b\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u043c\u0438 \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u0443\u0434\u0435\u0442 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430, \u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u0448\u0435\u043b\u043b \u0443\u043d\u0438\u0447\u0442\u043e\u0436\u0435\u043d. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043d\u0430\u0437\u044b\u0432\u0430\u044e\u0442 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e \u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u043e\u0439.\n\nMicrosoft \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c \u0432 \u0441\u0443\u0431\u0431\u043e\u0442\u0443, \u0430 \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f SharePoint \u043f\u043e\u0437\u0434\u043d\u043e \u0432\u0435\u0447\u0435\u0440\u043e\u043c \u0432 \u0432\u043e\u0441\u043a\u0440\u0435\u0441\u0435\u043d\u044c\u0435. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u043d\u043e\u043c\u0435\u0440\u0430 CVE-2025-53770 \u0438 -53771 (CVSS3.1 9.8 \u0438 6.3). \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0430 \u0434\u0430\u043d\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0434\u043b\u044f 2019 \u0438 Subscription Edition, \u0430 SharePoint 2016 \u043d\u0435 \u0438\u043c\u0435\u0435\u0442 \u043f\u0430\u0442\u0447\u0430.  \n\u0422\u0430\u043a\u0436\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043f\u0440\u0438\u0437\u043d\u0430\u043b\u0430, \u0447\u0442\u043e \u043d\u043e\u0432\u044b\u0435 \u043f\u0430\u0442\u0447\u0438 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0431\u043e\u043b\u0435\u0435 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u043c\u0438 \u0444\u0438\u043a\u0441\u0430\u043c\u0438 \u0434\u043b\u044f \u0440\u0430\u043d\u0435\u0435 \u0440\u0430\u0437\u0433\u043b\u0430\u0448\u0451\u043d\u043d\u044b\u0445 \u0438 \u044f\u043a\u043e\u0431\u044b \u0443\u0441\u0442\u0440\u0430\u043d\u0451\u043d\u043d\u044b\u0445 (CVE-2025-53770 \u044d\u0442\u043e \u043e\u0431\u0445\u043e\u0434 \u0444\u0438\u043a\u0441\u0430 \u0434\u043b\u044f CVE-2025-49704, CVE-2025-53771 \u044d\u0442\u043e \u043e\u0431\u0445\u043e\u0434 \u0444\u0438\u043a\u0441\u0430 \u0434\u043b\u044f CVE-2025-49706).\n\n\u26a1\ufe0f\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438:\n1\ufe0f\u20e3\u0412 \u043e\u0431\u044f\u0437\u0430\u0442\u0435\u043b\u044c\u043d\u043e\u043c \u043f\u043e\u0440\u044f\u0434\u043a\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u2014 \u0441\u043d\u0430\u0447\u0430\u043b\u0430 \u043f\u043b\u0430\u043d\u043e\u0432\u044b\u0435 \u0438\u044e\u043b\u044c\u0441\u043a\u0438\u0435 (KB5002741, KB5002744), \u0430 \u043f\u043e\u0442\u043e\u043c \u0432\u043d\u0435\u043e\u0447\u0435\u0440\u0435\u0434\u043d\u044b\u0435.\n2\ufe0f\u20e3\u0412 \u043e\u0431\u044f\u0437\u0430\u0442\u0435\u043b\u044c\u043d\u043e\u043c \u043f\u043e\u0440\u044f\u0434\u043a\u0435 \u0437\u0430\u043c\u0435\u043d\u0438\u0442\u044c  machine keys \u0432 ASP.NET, \u043f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c IIS \u0438 SharePoint.\n3\ufe0f\u20e3\u0417\u0430\u043c\u0435\u043d\u0438\u0442\u044c \u0434\u0440\u0443\u0433\u0438\u0435 \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043a\u043b\u044e\u0447\u0438 \u0438 \u0443\u0447\u0451\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0435 \u043d\u0430 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u043d\u043e\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c \u0441\u0435\u0440\u0432\u0435\u0440\u0435.\n4\ufe0f\u20e3\u041f\u0440\u043e\u0432\u0435\u0441\u0442\u0438 \u043f\u043e\u0438\u0441\u043a \u0443\u0433\u0440\u043e\u0437 \u0432 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435 \u0441\u0432\u043e\u0438\u0445 \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432. \u041a\u043b\u044e\u0447\u0435\u0432\u044b\u043c \u0438\u043d\u0434\u0438\u043a\u0430\u0442\u043e\u0440\u043e\u043c \u0442\u0435\u043a\u0443\u0449\u0438\u0445 \u0430\u0442\u0430\u043a \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043f\u0440\u0438\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430 spinstall0.aspx, \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 IOC \u0437\u0434\u0435\u0441\u044c.\n5\ufe0f\u20e3\u0418\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0438\u043b\u0438 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u043d\u044b\u0435 \u0430\u0442\u0430\u043a\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b. \n6\ufe0f\u20e3\u0417\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u0442\u044c \u0441\u0432\u043e\u044e \u043a\u043e\u043c\u0430\u043d\u0434\u0443 \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043d\u0430 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u044b \u0432 \u043f\u043e\u043b\u043d\u043e\u0439 \u043c\u0435\u0440\u0435 \u0438\u043b\u0438 \u043e\u0431\u0440\u0430\u0442\u0438\u0442\u044c\u0441\u044f \u043a \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0444\u0438\u0440\u043c\u0435 \u0434\u043b\u044f \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0437\u043d\u0430\u043a\u043e\u0432 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438.\n\nP.S. Microsoft \u043d\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u0435\u0442, \u0447\u0442\u043e \u0441 2023 \u0433\u043e\u0434\u0430 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u043e\u0439 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u043e\u0439 SharePoint \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0432\u043a\u043b\u044e\u0447\u0451\u043d\u043d\u044b\u0439 AMSI \u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442, \u0447\u0442\u043e\u0431\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e \u0440\u0430\u0431\u043e\u0442\u0430\u043b\u043e \u0437\u0430\u0449\u0438\u0442\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435.\n\n#Microsoft #\u0443\u0433\u0440\u043e\u0437\u044b @\u041f2\u0422", "creation_timestamp": "2025-07-21T06:37:28.000000Z"}, {"uuid": "53d27c95-9bc8-4ec2-a412-e2acd31e09b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "confirmed", "source": "https://research.eye.security/sharepoint-under-siege/", "content": "", "creation_timestamp": "2025-07-21T11:06:04.862646Z"}, {"uuid": "1f56e89f-0501-4df4-a8f4-e44d1213afcd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/114890898573717866", "content": "", "creation_timestamp": "2025-07-21T11:07:10.473925Z"}, {"uuid": "26648eaf-6bed-4728-bc52-caa0ef6ad78a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/d9da16a2-8444-45cb-8bb4-d27abf23a261", "content": "", "creation_timestamp": "2025-07-21T11:08:48.000000Z"}, {"uuid": "832103d8-3154-4cb9-9ce0-6c4c5597f842", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0233", "content": "", "creation_timestamp": "2025-07-21T07:46:59.000000Z"}, {"uuid": "7272d989-1645-41d2-baa4-d24f555da4d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/technijian.bsky.social/post/3lui2hvcl7s2s", "content": "", "creation_timestamp": "2025-07-21T13:04:06.855553Z"}, {"uuid": "9caf2edc-5d1b-4d1a-ad9c-b8c1b8218ace", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/technadu.com/post/3luiecqfrks2c", "content": "", "creation_timestamp": "2025-07-21T16:00:11.959303Z"}, {"uuid": "cb6112cd-f5fa-43e9-a59f-3a96baae6707", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3luieinppta2t", "content": "", "creation_timestamp": "2025-07-21T16:03:19.773584Z"}, {"uuid": "f4ae5ce4-8673-42f0-92a2-5a0d02777696", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/dragstersystems.bsky.social/post/3luikjte2722w", "content": "", "creation_timestamp": "2025-07-21T17:51:26.288565Z"}, {"uuid": "409a0df8-9068-485e-a200-6d34dbd1fa83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114892664048056071", "content": "", "creation_timestamp": "2025-07-21T18:35:26.349184Z"}, {"uuid": "5f856ac4-dfe3-49d8-923f-eb11798d7bf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3luinepkxnp2v", "content": "", "creation_timestamp": "2025-07-21T18:42:11.699685Z"}, {"uuid": "e984e7f9-a50b-4a14-9fef-5e0a8bd4a735", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://threatintel.cc/2025/07/21/critical-microsoft-sharepoint-zerodays-exploited.html", "content": "", "creation_timestamp": "2025-07-21T10:26:52.000000Z"}, {"uuid": "6d2ecf8d-234c-43c5-b053-b374fd5ffac5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://krebsonsecurity.com/2025/07/microsoft-fix-targets-attacks-on-sharepoint-zero-day/", "content": "", "creation_timestamp": "2025-07-21T12:45:46.000000Z"}, {"uuid": "692000fc-71bd-484e-b9da-46dc9a1975ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/noltezeitgeist.bsky.social/post/3luippmuius22", "content": "", "creation_timestamp": "2025-07-21T19:24:06.101565Z"}, {"uuid": "f3c49b30-0ca9-425c-b116-a8fa3dcdd4db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3luivfmg7ggw2", "content": "", "creation_timestamp": "2025-07-21T21:07:04.878227Z"}, {"uuid": "b0bd9142-4e0d-464f-a114-fee510ed8744", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-53771", "type": "seen", "source": "https://bsky.app/profile/cti-news.bsky.social/post/3luiwubbl4q2m", "content": "", "creation_timestamp": "2025-07-21T21:31:56.623209Z"}, {"uuid": "43181c54-5c85-48fc-a55e-81499f7dd80a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3luiwwfckvc2y", "content": "", "creation_timestamp": "2025-07-21T21:33:14.301529Z"}, {"uuid": "d0871a31-4e00-438f-a78f-6b58217e1e57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pylos.co/post/3luj2io4ad22d", "content": "", "creation_timestamp": "2025-07-21T22:37:02.655892Z"}, {"uuid": "f66b5844-ae76-4a47-ac44-642b5c154168", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/threatintel.microsoft.com/post/3luj3xk4zpk24", "content": "", "creation_timestamp": "2025-07-21T23:03:15.550274Z"}, {"uuid": "94b1ac18-9a9a-4e23-b01f-1b7936c5c3a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3luj773b6ak2z", "content": "", "creation_timestamp": "2025-07-22T00:01:14.890716Z"}, {"uuid": "2cfaace3-88ae-4027-a4ed-2fc482d23760", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lujcl2nlms2a", "content": "", "creation_timestamp": "2025-07-22T01:01:32.911636Z"}, {"uuid": "37aa3d46-79c7-4550-8f84-19e9ca8ca41e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lujhcbgp2g2o", "content": "", "creation_timestamp": "2025-07-22T02:26:06.805061Z"}, {"uuid": "eefdfb61-70e0-4ccb-a905-614e46c846dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lumta2dx2e2o", "content": "", "creation_timestamp": "2025-07-23T10:37:36.697217Z"}, {"uuid": "182a5baa-09d3-4fa2-987e-129468c6f2e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/114902178639951273", "content": "", "creation_timestamp": "2025-07-23T10:55:07.335037Z"}, {"uuid": "f7a9f9ba-bdfd-489f-8f5c-d9675cc45279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114902588173031462", "content": "", "creation_timestamp": "2025-07-23T12:39:16.226580Z"}, {"uuid": "ff7f7764-74d6-4fe7-9296-e735ff220012", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/zeljkazorz/statuses/114902699167179824", "content": "", "creation_timestamp": "2025-07-23T13:07:29.960028Z"}, {"uuid": "898dffbc-d4de-4de3-9ca5-6c3fd6e206d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://threatintel.cc/2025/07/23/china-nationstate-actors-target-sharepoint.html", "content": "", "creation_timestamp": "2025-07-23T08:55:12.000000Z"}, {"uuid": "f8170ee4-327e-49ff-bf00-d0feed09bddc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://mastodon.social/users/leakix/statuses/114903974771172426", "content": "", "creation_timestamp": "2025-07-23T18:32:27.879391Z"}, {"uuid": "73178551-09b3-4db0-b743-d37272897f0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0233", "content": "", "creation_timestamp": "2025-07-23T13:31:20.000000Z"}, {"uuid": "95e46e3d-09fa-4f9e-9501-b7192123e98a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/sansisc.bsky.social/post/3lunrmfpa272m", "content": "", "creation_timestamp": "2025-07-23T19:41:22.967702Z"}, {"uuid": "307a5419-d2fe-4954-acdd-740abb944753", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114904339588686858", "content": "", "creation_timestamp": "2025-07-23T20:04:41.402148Z"}, {"uuid": "b4a55544-b13f-40c8-86f6-e7415377aa9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3lunt2pab362u", "content": "", "creation_timestamp": "2025-07-23T20:07:16.314670Z"}, {"uuid": "b68323bf-6a1d-4312-baa7-cbc7bdd55fc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114904423287293264", "content": "", "creation_timestamp": "2025-07-23T20:25:57.970290Z"}, {"uuid": "a809cfd0-3b35-4ec6-b29d-c069352a9332", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lunv2r6fbc26", "content": "", "creation_timestamp": "2025-07-23T20:43:10.150682Z"}, {"uuid": "d6f40fb8-ce46-44ef-957d-fb6e74da5bb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/cti-news.bsky.social/post/3lunw7cd54p26", "content": "", "creation_timestamp": "2025-07-23T21:03:31.756346Z"}, {"uuid": "645febf5-54c4-4075-9619-424e530511ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3luo4wim4kl2h", "content": "", "creation_timestamp": "2025-07-23T23:03:52.883531Z"}, {"uuid": "f33fc35a-8a62-447e-ae05-c4c6708b4a4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3luoia6w5x22k", "content": "", "creation_timestamp": "2025-07-24T02:26:09.182986Z"}, {"uuid": "8a9c7874-d0ef-4c63-8167-9c150aa0eecf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/sequretek.bsky.social/post/3luoutnp6dk2f", "content": "", "creation_timestamp": "2025-07-24T06:11:48.414549Z"}, {"uuid": "05528926-c766-44a3-ba31-9e1f5b3d8c3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3luoxn7k5f22u", "content": "", "creation_timestamp": "2025-07-24T07:01:54.915491Z"}, {"uuid": "38edb37e-5e0f-4188-9d3d-ad85f679d624", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3luoxnbll522u", "content": "", "creation_timestamp": "2025-07-24T07:01:55.541931Z"}, {"uuid": "7c027567-4187-4749-bac2-ab9d91b9d48b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3luoxu2ajms2u", "content": "", "creation_timestamp": "2025-07-24T07:05:43.934339Z"}, {"uuid": "0b65b554-244b-4876-9336-df5169cc60bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3luoxu43jd22u", "content": "", "creation_timestamp": "2025-07-24T07:05:44.605533Z"}, {"uuid": "8627ab41-8263-458a-9a33-27070f4e6998", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/114906950312458642", "content": "", "creation_timestamp": "2025-07-24T07:08:38.391205Z"}, {"uuid": "6b1264af-849f-46eb-876a-6017094da137", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-53771", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-1e71ea19-ea51a6de002a1094", "content": "", "creation_timestamp": "2025-07-24T07:19:57.815946Z"}, {"uuid": "34b9d7a1-a83f-4e9a-a536-41e71e1f7d63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/esetresearch.bsky.social/post/3lup6tvuckc2k", "content": "", "creation_timestamp": "2025-07-24T09:11:04.090362Z"}, {"uuid": "b7fa801f-0975-4fa0-9ba9-62be1c984f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/esetresearch.bsky.social/post/3lup6tvv2xk2k", "content": "", "creation_timestamp": "2025-07-24T09:11:04.756857Z"}, {"uuid": "1389d75a-447c-4b5e-bff7-03bf6cbed567", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/esetresearch.bsky.social/post/3lup6tyhve22k", "content": "", "creation_timestamp": "2025-07-24T09:11:05.439010Z"}, {"uuid": "ae5e1784-d521-46e3-b58c-dcaae049d494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/esetresearch.bsky.social/post/3lup6u6jdrs2k", "content": "", "creation_timestamp": "2025-07-24T09:11:06.113735Z"}, {"uuid": "5ca4d9c2-c928-460a-adab-04ec9f0efe49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/esetresearch.bsky.social/post/3lup6u6jgpk2k", "content": "", "creation_timestamp": "2025-07-24T09:11:06.780864Z"}, {"uuid": "97311fc7-6290-4a13-a8a6-6762c2979a76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/stux.mstdn.social.ap.brid.gy/post/3lute2yifwjz2", "content": "", "creation_timestamp": "2025-07-26T00:55:10.876252Z"}, {"uuid": "0b523712-8e29-4e3d-973d-8f6ac71d085e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-652/", "content": "", "creation_timestamp": "2025-07-25T03:00:00.000000Z"}, {"uuid": "6a1b376e-a96e-4a01-89bf-aebb44533141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lutizwkvtc2j", "content": "", "creation_timestamp": "2025-07-26T02:23:51.639979Z"}, {"uuid": "d8631297-cbdf-49f7-87ff-b6ed94f35a2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-2dda26be-09228bf42301efd5", "content": "", "creation_timestamp": "2025-07-26T08:29:43.035047Z"}, {"uuid": "c2456272-bf56-4e9b-bd2c-745b8d1e6783", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://mstdn.ca/users/rfwaveio/statuses/114920122960999948", "content": "", "creation_timestamp": "2025-07-26T14:58:39.618054Z"}, {"uuid": "0403b80a-4229-4ddf-b375-79fdb029d976", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3luvzpzsgxn2k", "content": "", "creation_timestamp": "2025-07-27T02:27:52.486525Z"}, {"uuid": "2f51cfbf-5824-4697-bf3c-decfadcb84bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lv44ydgqzk2w", "content": "", "creation_timestamp": "2025-07-29T12:42:14.832552Z"}, {"uuid": "5fb9fdaf-f3f6-423d-ac4f-c3c2d93b00b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lv5l47mb3z2i", "content": "", "creation_timestamp": "2025-07-30T02:27:33.545012Z"}, {"uuid": "207b4108-f35d-45b0-98b1-4d7a4f8cfee7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-5829b01c-0fe5e9122e1cbc34", "content": "", "creation_timestamp": "2025-08-05T13:29:22.834100Z"}, {"uuid": "8f84cac5-3ad3-44ef-9389-9f83fe625f53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lvph4em4es2v", "content": "", "creation_timestamp": "2025-08-06T05:03:58.529563Z"}, {"uuid": "87450aed-d297-4004-9cbb-c11c6a4b19b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/265cae8f-cfe7-5868-b1d5-b2c6574393d3", "content": "", "creation_timestamp": "2025-08-29T07:36:13.000000Z"}, {"uuid": "ea26150a-1466-4a68-a955-7356148fac89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3m335z53gn22y", "content": "", "creation_timestamp": "2025-10-13T11:59:03.276839Z"}, {"uuid": "530d8d62-f220-4f2c-bfbd-03d38fdbb6c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-c39acbe0-91886c343547fcce", "content": "", "creation_timestamp": "2025-12-05T12:35:59.277787Z"}, {"uuid": "ee90db48-a0e3-4e93-9c9b-90b47674a091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1596", "content": "", "creation_timestamp": "2025-07-22T04:00:00.000000Z"}, {"uuid": "0e2a142e-6ce2-4323-892b-8d0dce1685d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "Telegram/JnW9AOarP4rqO_iltGM7Nnqyuf1Dj38y3Lpw_sdr0iyyQ7c", "content": "", "creation_timestamp": "2025-07-23T03:59:38.000000Z"}, {"uuid": "c89d9ce5-ae59-44b7-9a10-693830c0cb06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/sharepoint_toolpane_rce.rb", "content": "", "creation_timestamp": "2025-08-06T19:33:05.000000Z"}, {"uuid": "b288531c-9d8c-4d04-997c-61f7c0d1ffb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3lujmy62bnu27", "content": "", "creation_timestamp": "2025-07-22T04:07:50.414025Z"}, {"uuid": "bf29ee91-979f-422f-800b-2feb12af987b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3luk6us4zfd2l", "content": "", "creation_timestamp": "2025-07-22T09:28:04.925239Z"}, {"uuid": "4310017b-9898-4ac3-a8c9-d573955607ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0233", "content": "", "creation_timestamp": "2025-07-22T05:24:46.000000Z"}, {"uuid": "39853ff3-756f-4e7d-8b36-f588e0ce2d84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/jcsc.je/post/3lukm63ivv72u", "content": "", "creation_timestamp": "2025-07-22T13:25:55.097750Z"}, {"uuid": "b4cb74ba-f329-41c7-a129-f74a52339a1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/jcsc.je/post/3lukm7vn75j2t", "content": "", "creation_timestamp": "2025-07-22T13:26:55.617808Z"}, {"uuid": "d238a891-666a-40cf-852b-45f6ef6b2158", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lukn3kemst2h", "content": "", "creation_timestamp": "2025-07-22T13:42:23.832377Z"}, {"uuid": "3088a781-a3a7-4810-953d-8c4c19a40d3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3luknv2epdme2", "content": "", "creation_timestamp": "2025-07-22T13:57:27.253514Z"}, {"uuid": "4195f871-27cb-481a-bc00-115fc4051c1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3lukvixwkcs2e", "content": "", "creation_timestamp": "2025-07-22T16:13:07.694531Z"}, {"uuid": "16fa786a-7d76-4155-bf58-2df329b7b552", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114897868101025912", "content": "", "creation_timestamp": "2025-07-22T16:38:54.168943Z"}, {"uuid": "2199e7a0-d5a7-492d-972b-ae38a36fe7cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/cloudflare.social/post/3lukzkvuqos2s", "content": "", "creation_timestamp": "2025-07-22T17:25:45.865007Z"}, {"uuid": "b0ae4db0-e28c-4f01-a128-1e2e3f171adb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lul26u4sxs72", "content": "", "creation_timestamp": "2025-07-22T17:36:59.664739Z"}, {"uuid": "fb355708-0e61-4c74-b205-f5602557645a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/4454334", "content": "", "creation_timestamp": "2025-07-22T19:05:12.867555Z"}, {"uuid": "373345c8-0983-4116-92fb-b8dc23a9ada4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:05.000000Z"}, {"uuid": "87a77ec4-c411-4e8b-8266-952a9946f4a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/whb.bsky.social/post/3lupd7icvw22q", "content": "", "creation_timestamp": "2025-07-24T10:28:57.814552Z"}, {"uuid": "4354d863-9a39-4db5-aa0b-fd43215d84c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/cecallihelper.bsky.social/post/3luq7s3tq7c2d", "content": "", "creation_timestamp": "2025-07-24T19:00:26.543799Z"}, {"uuid": "73d056e9-eb57-4d07-bbfe-fa2100d38a13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3luqdu4bqc22a", "content": "", "creation_timestamp": "2025-07-24T20:13:09.093878Z"}, {"uuid": "71bc88c5-2c9a-4265-885e-956ac1383be3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/sumologic.bsky.social/post/3luqkljb3gc24", "content": "", "creation_timestamp": "2025-07-24T22:13:37.592456Z"}, {"uuid": "910c2cef-2046-4dd7-bad5-8d1db2ddeeb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3luqyp244id2u", "content": "", "creation_timestamp": "2025-07-25T02:26:07.161813Z"}, {"uuid": "f999e0b2-2044-45d4-9f66-5522ea459c16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://gist.github.com/tohmoh/f81a0feb83a461cef56a4b9994694562", "content": "", "creation_timestamp": "2025-07-25T08:50:21.000000Z"}, {"uuid": "cd6676dc-fcdb-4741-a0c2-b7ee6db7262f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-82e7dfb4-f54c996b22554f32", "content": "", "creation_timestamp": "2025-07-25T09:32:05.551010Z"}, {"uuid": "35dc81be-d348-453e-b168-42b269d645c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m3l76gluvk2p", "content": "", "creation_timestamp": "2025-10-19T21:02:32.706963Z"}, {"uuid": "b96a4e00-d0c5-4397-a168-04ad8a722911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3luwz5noncxb2", "content": "", "creation_timestamp": "2025-07-27T11:50:33.103749Z"}, {"uuid": "85a80d7a-36f4-470d-9876-3eb3cdc8de2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3luyk6mqc3g2d", "content": "", "creation_timestamp": "2025-07-28T02:27:41.543540Z"}, {"uuid": "f61a87b8-a162-4cf5-b3c9-fda756864dcd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/cti-news.bsky.social/post/3lvbuoqhzk523", "content": "", "creation_timestamp": "2025-07-31T19:29:37.319308Z"}, {"uuid": "41b993cb-6229-4726-9b08-606b8e1c7c1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "MISP/28ad5115-be33-4d4c-b093-2f89fe35f991", "content": "", "creation_timestamp": "2025-08-05T05:53:26.000000Z"}, {"uuid": "21005063-8763-4ca0-a26c-e40446f90002", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lvtn53qtql25", "content": "", "creation_timestamp": "2025-08-07T21:02:28.455913Z"}, {"uuid": "bd51af62-7121-4579-8d0b-39f1c192c753", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lvtxgvu5gs2h", "content": "", "creation_timestamp": "2025-08-08T00:06:54.428662Z"}, {"uuid": "5bec9507-a6b5-430b-8a50-2330d6309448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3lykpap6tgk23", "content": "", "creation_timestamp": "2025-09-11T12:01:58.520878Z"}, {"uuid": "d92c0d0f-f2a8-4d01-be70-8ccb3c404ecf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3lykpasuyok23", "content": "", "creation_timestamp": "2025-09-11T12:01:59.145204Z"}, {"uuid": "ec334e9c-5b19-49d8-9abf-bd11f229612c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-e71d3734-3706cad125ec9575", "content": "", "creation_timestamp": "2025-11-07T18:18:23.119316Z"}, {"uuid": "5339f083-9079-40da-a0ec-d65d79f3d7e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3m335z53jks2y", "content": "", "creation_timestamp": "2025-10-13T11:59:04.051744Z"}, {"uuid": "a50d0c0b-090d-4520-849f-0533890de79b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://bsky.app/profile/virusbtn.bsky.social/post/3ly3qofcwos2c", "content": "", "creation_timestamp": "2025-09-05T13:17:31.406275Z"}, {"uuid": "edd7891c-9ea2-4f76-9a88-eacf21547522", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/cKure/15093", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 CVE-2025-53771: SharePoint vulnerability with 9.8 severity rating under exploit across the globe.\n\nOngoing attacks are allowing hackers to steal credentials, giving privileged access.\n\nhttps://arstechnica.com/security/2025/07/sharepoint-vulnerability-with-9-8-severity-rating-is-under-exploit-across-the-globe/", "creation_timestamp": "2025-07-24T05:34:28.000000Z"}, {"uuid": "7c0fd024-c8e8-4d6e-892a-7b6b47270428", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://t.me/four_rays/117", "content": "\u041a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c\u0441\u044f \u043e\u0442 ToolShell \u2014 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 zero-day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint\n\n\u041d\u0435\u0434\u0430\u0432\u043d\u043e Microsoft \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043f\u0430\u0442\u0447 \u0434\u043b\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 CVE-2025-53770 \u0438 CVE-2025-53771 \u0432 Microsoft SharePoint.\n\n\u0426\u0435\u043f\u043e\u0447\u043a\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 CVE-2025-53770 \u0438 CVE-2025-53771 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434. \u042d\u0442\u043e \u0441\u0432\u043e\u0435\u0433\u043e \u0440\u043e\u0434\u0430 ProxyLogon 2.0, \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f SharePoint! \u0421\u0435\u0439\u0447\u0430\u0441 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e PoC \u0434\u043b\u044f CVE-2025-53770, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0438\u043d\u0442\u0435\u0440\u0435\u0441 \u043a \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u044d\u0442\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0434\u043e\u0433\u0440\u0435\u0432\u0430\u0435\u0442\u0441\u044f. \n\n\u0423 \u043d\u0430\u0441 \u0432 \u0431\u043b\u043e\u0433\u0435 \u043c\u044b \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u043d\u0435\u0431\u043e\u043b\u044c\u0448\u043e\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u0435\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u044d\u0442\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0438 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u043a\u043e\u043c\u043f\u0438\u043b\u044f\u0446\u0438\u0435\u0439 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 IOC. \u0427\u0438\u0442\u0430\u0439\u0442\u0435!\n\n\u041d\u043e \u0441\u043d\u0430\u0447\u0430\u043b\u0430 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c, \u0435\u0441\u0442\u044c \u043b\u0438 \u0432 \u0432\u0430\u0448\u0435\u043c \u043f\u0435\u0440\u0438\u043c\u0435\u0442\u0440\u0435 SharePoint-\u0441\u0435\u0440\u0432\u0435\u0440\u044b. \u0418 \u0435\u0441\u043b\u0438 \u0435\u0441\u0442\u044c \u2014 \u0441\u043b\u0435\u0434\u0443\u0439\u0442\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u043c.\n\n\ud83d\udc4d \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438:\n\n1) \u0423\u0431\u0440\u0430\u0442\u044c SharePoint-\u0441\u0435\u0440\u0432\u0435\u0440\u044b \u0438\u0437 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (\u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u0437\u0430 VPN).\n\n2) \u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\u2014 \u0418\u044e\u043b\u044c\u0441\u043a\u0438\u0435 (CVE-2025-49701, CVE-2025-49703, CVE-2025-49704, CVE-2025-49706):\n\u26ab\ufe0f SharePoint Server 2016 (KB5002744);\n\u26ab\ufe0f SharePoint Server 2019 (KB5002741);\n\u2014 \u042d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0435 (CVE-2025-53770 \u0438 CVE-2025-53771):\n\u26ab\ufe0f SharePoint Server 2016 (KB5002759, KB5002760 \u043f\u0430\u0442\u0447\u0438 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0432\u0447\u0435\u0440\u0430 \u0432\u0435\u0447\u0435\u0440\u043e\u043c, 21.07.2025);\n\u26ab\ufe0f SharePoint Server 2019 (KB5002753, KB5002754);\n\u26ab\ufe0f SharePoint Server Subscription Edition (KB5002768).\n\n3) \u0417\u0430\u043c\u0435\u043d\u0438\u0442\u044c \u043c\u0430\u0448\u0438\u043d\u043d\u044b\u0435 \u043a\u043b\u044e\u0447\u0438 SharePoint \u0438 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c IIS \u0438\u043b\u0438 \u0441\u0430\u043c \u0441\u0435\u0440\u0432\u0435\u0440 (\u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e \u043f\u0438\u0441\u0430\u043b\u0438 \u0432 \u044d\u0442\u043e\u043c \u043f\u043e\u0441\u0442\u0435).\n\n\ud83d\udc4d \u041a\u0430\u043a \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0442\u044c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e CVE-2025-53770? \u0427\u0442\u043e \u0441\u0442\u043e\u0438\u0442 \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c?\n\n\u2014 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0444\u0430\u0439\u043b\u0430 spinstall0.aspx.\n\n\u0412 \u0432\u043e\u043b\u043d\u0430\u0445 \u0430\u0442\u0430\u043a \u043e\u043d \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u043b\u0441\u044f \u043f\u043e \u043f\u0443\u0442\u044f\u043c (\u043e\u0442\u043b\u0438\u0447\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0430\u043c\u0438 15 \u0438 16):\nC:\\PROGRA~1\\COMMON~1\\MICROS~1\\WEBSER~1\\15\\TEMPLATE\\LAYOUTS\\spinstall0.aspx\nC:\\PROGRA~1\\COMMON~1\\MICROS~1\\WEBSER~1\\16\\TEMPLATE\\LAYOUTS\\spinstall0.aspx\n\u0421 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0434\u043e\u043b\u0435\u0439 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e\u0441\u0442\u0438 \u0431\u0443\u0434\u0443\u0449\u0438\u0435 \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u044b \u0431\u0443\u0434\u0443\u0442 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u0442\u044c\u0441\u044f \u0432 \u0434\u0440\u0443\u0433\u0438\u0445 \u043c\u0435\u0441\u0442\u0430\u0445 \u0438 \u043f\u043e\u0434 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0438\u043c\u0435\u043d\u0430\u043c\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u0430\u0432\u0438\u0441\u044f\u0442 \u043e\u0442 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a \u0434\u043b\u044f \u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u0442\u0430\u043a\u0436\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u044c IIS-\u043b\u043e\u0433\u0438.\n\n\u2014 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0444\u0430\u0439\u043b\u0430 C:\\Program Files\\Common Files\\microsoft shared\\Web Server Extensions\\16\\TEMPLATE\\LAYOUTS\\debug_dev.js.\n\u2014 \u043b\u043e\u0433\u0438 IIS \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435:\nPOST-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043d\u0430 /_layouts/15/ToolPane.aspx?DisplayMode=Edit c Referrer /_layouts/SignOut.aspx;\nGET-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043d\u0430 /_layouts/15/spinstall0.aspx;\n\u0414\u0440\u0443\u0433\u0438\u0445 GET-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043d\u0430 \u043f\u043e\u0434\u043e\u0437\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 aspx-\u0444\u0430\u0439\u043b\u044b.\n\n\ud83d\udc4d \u0414\u043b\u044f \u0434\u0435\u0442\u0435\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0430\u0442\u0430\u043a/\u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043d\u0430 IDS/WAF \u043c\u043e\u0436\u043d\u043e \u043d\u0430\u043f\u0438\u0441\u0430\u0442\u044c \u043f\u0440\u0430\u0432\u0438\u043b\u043e, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0431\u043b\u043e\u043a\u0438\u0440\u0443\u0435\u0442 POST \u0437\u0430\u043f\u0440\u043e\u0441\u044b \u043d\u0430 URI /_layouts/15/ToolPane.aspx?DisplayMode=Edit c \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u043e\u043c Referrer /_layouts/SignOut.aspx.", "creation_timestamp": "2025-07-22T13:32:40.000000Z"}, {"uuid": "20b9232f-03a9-4dfc-8f11-06eb03214f1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45366", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScans Windows IIS logs for signs of CVE-2025-53770 & CVE-2025-53771\nURL\uff1ahttps://github.com/zach115th/ToolShellFinder\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-25T20:34:17.000000Z"}, {"uuid": "28269833-5094-4b32-a99f-1ae81547775b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://t.me/ics_cert/1253", "content": "\u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc: \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0631\u0627\u0647\u0646\u0645\u0627\u06cc\u06cc \u062f\u0631 \u0645\u0648\u0631\u062f \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc SharePoint \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f\n\n\u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc (\u06f2\u06f4/\u06f0\u06f7/\u06f2\u06f0\u06f2\u06f5) \u0627\u06cc\u0646 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0634\u0627\u0645\u0644 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0628\u06cc\u0634\u062a\u0631\u06cc \u062f\u0631 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u0628\u0627\u062c\u200c\u0627\u0641\u0632\u0627\u0631\u060c \u0648\u0628\u200c\u0634\u0650\u0644\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc\u062f \u062f\u0631\u06af\u06cc\u0631 \u062f\u0631 \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0648 \u0631\u0627\u0647\u0646\u0645\u0627\u06cc \u062a\u0634\u062e\u06cc\u0635 \u067e\u06cc\u0634\u0631\u0641\u062a\u0647 \u0627\u0633\u062a.\n\n\u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc (\u06f2\u06f2/\u06f0\u06f7/\u06f2\u06f0\u06f2\u06f5): \u0627\u06cc\u0646 \u0647\u0634\u062f\u0627\u0631 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a \u062a\u0627 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062a\u0627\u0632\u0647 \u0645\u0646\u062a\u0634\u0631 \u0634\u062f\u0647 \u0627\u0632 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0631\u0627 \u0645\u0646\u0639\u06a9\u0633 \u06a9\u0646\u062f \u0648 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0648 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0631\u0627\u06cc\u062c (CVE) \u06a9\u0647 \u0628\u0647 \u0637\u0648\u0631 \u0641\u0639\u0627\u0644 \u0645\u0648\u0631\u062f \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u0646\u062f \u0631\u0627 \u0627\u0635\u0644\u0627\u062d \u06a9\u0646\u062f\u060c \u06a9\u0647 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 CVE-2025-49706 \u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062c\u0639\u0644 \u0634\u0628\u06a9\u0647\u060c \u0648 CVE-2025-49704 \u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE) \u062a\u0623\u06cc\u06cc\u062f \u0634\u062f\u0647\u200c\u0627\u0646\u062f.\n\n \u0627\u0632 \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0641\u0639\u0627\u0644 \u0627\u0632 \u0632\u0646\u062c\u06cc\u0631\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u0639\u0644 \u0648 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE) \u0634\u0627\u0645\u0644 CVE-2025-49706 \u0648 CVE-2025-49704 \u06a9\u0647 \u0627\u0645\u06a9\u0627\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u063a\u06cc\u0631\u0645\u062c\u0627\u0632 \u0628\u0647 \u0633\u0631\u0648\u0631\u0647\u0627\u06cc SharePoint \u062f\u0627\u062e\u0644\u06cc \u0631\u0627 \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0646\u062f\u060c \u0622\u06af\u0627\u0647 \u0627\u0633\u062a. \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 \u062f\u0627\u0645\u0646\u0647 \u0648 \u062a\u0623\u062b\u06cc\u0631 \u0622\u0646 \u0647\u0645\u0686\u0646\u0627\u0646 \u062f\u0631 \u062d\u0627\u0644 \u0627\u0631\u0632\u06cc\u0627\u0628\u06cc \u0627\u0633\u062a\u060c \u0627\u06cc\u0646 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0647 \u0628\u0647 \u0637\u0648\u0631 \u0639\u0645\u0648\u0645\u06cc \u0628\u0627 \u0639\u0646\u0648\u0627\u0646 \"ToolShell\" \u06af\u0632\u0627\u0631\u0634 \u0634\u062f\u0647 \u0627\u0633\u062a\u060c \u0628\u0647 \u062a\u0631\u062a\u06cc\u0628 \u062f\u0633\u062a\u0631\u0633\u06cc \u063a\u06cc\u0631\u0645\u062c\u0627\u0632 \u0628\u0647 \u0633\u06cc\u0633\u062a\u0645\u200c\u0647\u0627 \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0634\u062f\u0647 \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u062c\u0639\u0644 \u0634\u0628\u06a9\u0647 \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0646\u062f \u0648 \u0628\u0647 \u0639\u0627\u0645\u0644\u0627\u0646 \u0645\u062e\u0631\u0628 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u062a\u0627 \u0628\u0647 \u0637\u0648\u0631 \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0645\u062d\u062a\u0648\u0627\u06cc SharePoint\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 \u0633\u06cc\u0633\u062a\u0645\u200c\u0647\u0627\u06cc \u0641\u0627\u06cc\u0644 \u0648 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc\u200c\u0647\u0627\u06cc \u062f\u0627\u062e\u0644\u06cc\u060c \u062f\u0633\u062a\u0631\u0633\u06cc \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f\u0647 \u0648 \u06a9\u062f \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u062c\u0631\u0627 \u06a9\u0646\u0646\u062f. \u0641\u0631\u0627\u062a\u0631 \u0627\u0632 webshell \u0647\u0627\u06cc \u0645\u0639\u0645\u0648\u0644\u06cc\u060c \u0645\u0627\u0646\u0646\u062f .aspx \u0648 .exe\u060c \u0628\u0627\u0631\u0647\u0627\u06cc \u062f\u0627\u062f\u0647 .dll \u062f\u0631 \u0637\u0648\u0644 \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u0634\u0627\u0647\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0627\u062e\u06cc\u0631\u0627\u064b\u060c \u0639\u0627\u0645\u0644\u0627\u0646 \u062a\u0647\u062f\u06cc\u062f \u0646\u06cc\u0632 \u062f\u0631 \u062d\u0627\u0644 \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0641\u0627\u06cc\u0644\u200c\u0647\u0627 \u0648 \u062a\u0648\u0632\u06cc\u0639 \u0628\u0627\u062c\u200c\u0627\u0641\u0632\u0627\u0631 Warlock \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u062f\u06cc\u062f\u0647 \u0645\u0634\u0627\u0647\u062f\u0647 \u0634\u062f\u0647\u200c\u0627\u0646\u062f.\n\n\u0627\u06af\u0631\u0686\u0647 \u0628\u0647\u200c\u0637\u0648\u0631 \u0641\u0639\u0627\u0644 \u0645\u0648\u0631\u062f \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0642\u0631\u0627\u0631 \u0646\u06af\u0631\u0641\u062a\u0647 \u0627\u0633\u062a\u060c \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a CVE \u0647\u0627\u06cc \u062c\u062f\u06cc\u062f \u0632\u06cc\u0631 \u0631\u0627 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u062e\u0637\u0631 \u0628\u0627\u0644\u0642\u0648\u0647\u200c\u0627\u06cc \u0631\u0627 \u0627\u06cc\u062c\u0627\u062f \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f:\n\nCVE-2025-53771 \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0648\u0631 \u0632\u062f\u0646 \u0648\u0635\u0644\u0647 \u0628\u0631\u0627\u06cc CVE-2025-49706 \u0627\u0633\u062a.\nCVE-2025-53770 \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0648\u0631 \u0632\u062f\u0646 \u0648\u0635\u0644\u0647 \u0628\u0631\u0627\u06cc CVE-2025-49704 \u0627\u0633\u062a.\nCISA \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u0632\u06cc\u0631 \u0631\u0627 \u0628\u0631\u0627\u06cc \u06a9\u0627\u0647\u0634 \u062e\u0637\u0631\u0627\u062a \u0645\u0631\u062a\u0628\u0637 \u0628\u0627 \u0646\u0641\u0648\u0630 RCE \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f:\n\n\u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0644\u0627\u0632\u0645 \u0645\u0646\u062a\u0634\u0631 \u0634\u062f\u0647 \u062a\u0648\u0633\u0637 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0631\u0627 \u0627\u0639\u0645\u0627\u0644 \u06a9\u0646\u06cc\u062f.\n\u0631\u0627\u0628\u0637 \u0627\u0633\u06a9\u0646 \u0636\u062f\u0628\u062f\u0627\u0641\u0632\u0627\u0631 (AMSI) \u0631\u0627 \u062f\u0631 SharePoint \u0645\u0637\u0627\u0628\u0642 \u0628\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u0644\u0639\u0645\u0644\u200c\u0647\u0627\u06cc \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f \u0648 \u0622\u0646\u062a\u06cc\u200c\u0648\u06cc\u0631\u0648\u0633 Microsoft Defender \u0631\u0627 \u0631\u0648\u06cc \u062a\u0645\u0627\u0645 \u0633\u0631\u0648\u0631\u0647\u0627\u06cc SharePoint \u0645\u0633\u062a\u0642\u0631 \u06a9\u0646\u06cc\u062f.\n\u0627\u06af\u0631 AMSI \u0641\u0639\u0627\u0644 \u0646\u06cc\u0633\u062a\u060c \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628\u200c\u062f\u06cc\u062f\u0647 \u0631\u0627 \u0627\u0632 \u0633\u0631\u0648\u06cc\u0633\u200c\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u062f\u0631 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062f\u0631 \u062f\u0633\u062a\u0631\u0633 \u0639\u0645\u0648\u0645 \u0647\u0633\u062a\u0646\u062f\u060c \u062c\u062f\u0627 \u06a9\u0646\u06cc\u062f \u062a\u0627 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc \u0631\u0633\u0645\u06cc \u0628\u0631\u0627\u06cc \u06a9\u0627\u0647\u0634 \u062e\u0637\u0631\u0627\u062a \u0627\u0631\u0627\u0626\u0647 \u0634\u0648\u0646\u062f. \u067e\u0633 \u0627\u0632 \u0627\u0631\u0627\u0626\u0647 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u060c \u0622\u0646\u0647\u0627 \u0631\u0627 \u0637\u0628\u0642 \u062f\u0633\u062a\u0648\u0631\u0627\u0644\u0639\u0645\u0644\u200c\u0647\u0627\u06cc IACS \u0648 \u0641\u0631\u0648\u0634\u0646\u062f\u0647 \u0627\u0639\u0645\u0627\u0644 \u06a9\u0646\u06cc\u062f.\n\u062f\u0631 \u0635\u0648\u0631\u062a \u0639\u062f\u0645 \u0648\u062c\u0648\u062f \u0631\u0627\u0647\u06a9\u0627\u0631\u0647\u0627\u06cc \u06a9\u0627\u0647\u0634 \u0627\u062b\u0631\u0627\u062a\u060c \u0627\u0632 \u062f\u0633\u062a\u0648\u0631\u0627\u0644\u0639\u0645\u0644\u200c\u0647\u0627\u06cc BOD 22-01 \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0633\u0631\u0648\u06cc\u0633\u200c\u0647\u0627\u06cc \u0627\u0628\u0631\u06cc \u067e\u06cc\u0631\u0648\u06cc \u06a9\u0646\u06cc\u062f \u06cc\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0645\u062d\u0635\u0648\u0644 \u0631\u0627 \u0645\u062a\u0648\u0642\u0641 \u06a9\u0646\u06cc\u062f.\n\u0628\u0631\u0627\u06cc \u06a9\u0633\u0628 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062f\u0631 \u0645\u0648\u0631\u062f \u062a\u0634\u062e\u06cc\u0635\u060c \u067e\u06cc\u0634\u06af\u06cc\u0631\u06cc \u0648 \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u067e\u06cc\u0634\u0631\u0641\u062a\u0647 \u0634\u06a9\u0627\u0631 \u062a\u0647\u062f\u06cc\u062f\u060c \u0628\u0647 \u00ab \u0627\u062e\u062a\u0644\u0627\u0644 \u062f\u0631 \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0641\u0639\u0627\u0644 \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc SharePoint \u062f\u0631 \u0645\u062d\u0644\u00bb \u0648 \u062a\u0648\u0635\u06cc\u0647\u200c\u0646\u0627\u0645\u0647 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0628\u0631\u0627\u06cc CVE-2025-49706 \u0645\u0631\u0627\u062c\u0639\u0647 \u06a9\u0646\u06cc\u062f. IACS \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627 \u0631\u0627 \u062a\u0634\u0648\u06cc\u0642 \u0645\u06cc\u200c\u06a9\u0646\u062f \u062a\u0627 \u062a\u0645\u0627\u0645 \u0645\u0642\u0627\u0644\u0627\u062a \u0648 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0646\u062a\u0634\u0631 \u0634\u062f\u0647 \u062a\u0648\u0633\u0637 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u062f\u0631 8 \u0698\u0648\u0626\u06cc\u0647 2025\u060c \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u067e\u0644\u062a\u0641\u0631\u0645 SharePoint \u0645\u0633\u062a\u0642\u0631 \u062f\u0631 \u0645\u062d\u06cc\u0637 \u062e\u0648\u062f \u0631\u0627 \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u0646\u062f.\n\u0641\u0631\u0627\u062a\u0631 \u0627\u0632 \u0648\u0635\u0644\u0647 \u06a9\u0631\u062f\u0646\u060c \u0628\u0631\u0627\u06cc \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627 \u0628\u0633\u06cc\u0627\u0631 \u0645\u0647\u0645 \u0627\u0633\u062a \u06a9\u0647 \u0633\u06cc\u0633\u062a\u0645\u200c\u0647\u0627 \u0631\u0627 \u0628\u0631\u0627\u06cc \u06cc\u0627\u0641\u062a\u0646 \u0646\u0634\u0627\u0646\u0647\u200c\u0647\u0627\u06cc \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0628\u06cc\u0634\u062a\u0631 \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u0646\u062f. \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0628\u062f\u0627\u0641\u0632\u0627\u0631\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc .dll \u0645\u0633\u062a\u0642\u0631 \u0645\u06cc\u200c\u0634\u0648\u0646\u062f\u060c \u0628\u0647 \u0648\u06cc\u0698\u0647 \u062f\u0634\u0648\u0627\u0631 \u0627\u0633\u062a \u0648 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646 \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0631\u0627\u06cc \u0628\u0647 \u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646 \u06a9\u0644\u06cc\u062f\u0647\u0627\u06cc \u062f\u0633\u062a\u06af\u0627\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f.\n\u06a9\u0644\u06cc\u062f\u0647\u0627\u06cc \u0645\u0627\u0634\u06cc\u0646 ASP.NET \u0631\u0627 \u0628\u0686\u0631\u062e\u0627\u0646\u06cc\u062f\u060c \u0633\u067e\u0633 \u067e\u0633 \u0627\u0632 \u0627\u0639\u0645\u0627\u0644 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a\u060c \u062f\u0648\u0628\u0627\u0631\u0647 \u06a9\u0644\u06cc\u062f\u0647\u0627\u06cc \u0645\u0627\u0634\u06cc\u0646 ASP.NET \u0631\u0627 \u0628\u0686\u0631\u062e\u0627\u0646\u06cc\u062f \u0648 \u0648\u0628 \u0633\u0631\u0648\u0631 IIS \u0631\u0627 \u0645\u062c\u062f\u062f\u0627\u064b \u0631\u0627\u0647\u200c\u0627\u0646\u062f\u0627\u0632\u06cc \u06a9\u0646\u06cc\u062f .\n\u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0639\u0645\u0648\u0645\u06cc SharePoint Server \u06a9\u0647 \u0628\u0647 \u067e\u0627\u06cc\u0627\u0646 \u0639\u0645\u0631 (EOL) \u06cc\u0627 \u067e\u0627\u06cc\u0627\u0646 \u0633\u0631\u0648\u06cc\u0633 (EOS) \u062e\u0648\u062f \u0631\u0633\u06cc\u062f\u0647\u200c\u0627\u0646\u062f \u0631\u0627 \u0627\u0632 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062c\u062f\u0627 \u06a9\u0646\u06cc\u062f. \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c SharePoint Server 2013 \u0648 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644\u06cc \u0622\u0646 \u0628\u0647 \u067e\u0627\u06cc\u0627\u0646 \u0639\u0645\u0631 \u062e\u0648\u062f \u0631\u0633\u06cc\u062f\u0647\u200c\u0627\u0646\u062f \u0648 \u062f\u0631 \u0635\u0648\u0631\u062a \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0647\u0646\u0648\u0632 \u0628\u0627\u06cc\u062f \u0645\u062a\u0648\u0642\u0641 \u0634\u0648\u0646\u062f.\n\u062f\u0631\u062e\u0648\u0627\u0633\u062a\u200c\u0647\u0627\u06cc \u0645\u0634\u06a9\u0648\u06a9 \u0628\u0647 \u0635\u0641\u062d\u0647 \u062e\u0631\u0648\u062c \u0631\u0627 \u0632\u06cc\u0631 \u0646\u0638\u0631 \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f: /_layouts/SignOut.aspx is the exact HTTP header used by threat actors to exploit ToolPane.aspx for initial access\n\n\u0627\u0633\u06a9\u0646 \u0622\u06cc\u200c\u067e\u06cc\u200c\u0647\u0627\u06cc \u200e107.191.58[.]76\u060c \u200e104.238.159[.]149\u060c \u0648 \u200e96.9.125[.]147\u200e \u0631\u0627\u060c \u0628\u0647\u200c\u0648\u06cc\u0698\u0647 \u0628\u06cc\u0646 \u06f1\u06f8 \u0648 \u06f1\u06f9 \u0698\u0648\u0626\u06cc\u0647 \u06f2\u06f0\u06f2\u06f5\u060c \u0627\u0646\u062c\u0627\u0645 \u062f\u0647\u06cc\u062f.\n\u0633\u0644\u0628 \u0645\u0633\u0626\u0648\u0644\u06cc\u062a:\n\n\u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0645\u0648\u062c\u0648\u062f \u062f\u0631 \u0627\u06cc\u0646 \u06af\u0632\u0627\u0631\u0634 \u0635\u0631\u0641\u0627\u064b \u062c\u0647\u062a \u0627\u0637\u0644\u0627\u0639\u200c\u0631\u0633\u0627\u0646\u06cc \u0648 \u00ab\u0628\u0647 \u0647\u0645\u06cc\u0646 \u0635\u0648\u0631\u062a\u00bb \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f. IACS \u0647\u06cc\u0686 \u0646\u0647\u0627\u062f \u062a\u062c\u0627\u0631\u06cc\u060c \u0645\u062d\u0635\u0648\u0644\u060c \u0634\u0631\u06a9\u062a \u06cc\u0627 \u062e\u062f\u0645\u0627\u062a\u06cc\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 \u0646\u0647\u0627\u062f\u0647\u0627\u060c \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u06cc\u0627 \u062e\u062f\u0645\u0627\u062a\u06cc \u06a9\u0647 \u062f\u0631 \u0627\u06cc\u0646 \u0633\u0646\u062f \u0628\u0647 \u0622\u0646\u0647\u0627 \u0644\u06cc\u0646\u06a9 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a \u0631\u0627 \u062a\u0623\u06cc\u06cc\u062f , \u062a\u0648\u0635\u06cc\u0647 \u06cc\u0627 \u062c\u0627\u0646\u0628\u062f\u0627\u0631\u06cc \u0646\u0645\u06cc\u06a9\u0646\u062f.\n\n\ud83c\udfed \u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n@pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ICSCERT_IR\n\u06af\u0631\u0648\u0647 \u0627\u06cc\u062a\u0627:\nhttps://eitaa.com/joinchat/1866007784Cfd023f90b2", "creation_timestamp": "2025-07-25T08:48:09.000000Z"}, {"uuid": "0cb403d7-34db-4da6-87f0-efcd6d5e1220", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://t.me/ctinow/236721", "content": "Proactive Security Insights for SharePoint Attacks (CVE-2025-53770 and CVE-2025-53771)\nhttps://ift.tt/3o1jExW", "creation_timestamp": "2025-08-19T18:29:51.000000Z"}, {"uuid": "79d124b9-b449-4ec4-a7dc-bd5ca4cbe3b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/Russian_OSINT/5856", "content": "\u041a\u0430\u043d\u0430\u043b \ud83d\udd28SecAtor \u2014 @true_secator \u043f\u0438\u0448\u0435\u0442 \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u043e\u0435:\n\nMicrosoft \u0430\u043d\u043e\u043d\u0441\u0438\u0440\u043e\u0432\u0430\u043b\u0430 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 0-day \u0432 SharePoint Server, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u043a CVE-2025-53770 \u0438 CVE-2025-53771.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0435\u0439 \u0430\u0442\u0430\u043a\u0438 Eye Security, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f CVE-2025-53770 \u0438 CVE-2025-53771, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0438\u0445 \u0443\u0441\u043b\u043e\u0432\u043d\u043e\u0435 \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 ToolShell, \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c 18 \u0438\u044e\u043b\u044f.\n\n\u041d\u0430 \u0443\u0434\u0438\u0432\u043b\u0435\u043d\u0438\u0435 Microsoft \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u0438 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0430\u0441\u044c \u043c\u0435\u0440\u0430\u043c\u0438 \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e, \u043e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043f\u0440\u0438\u0441\u0442\u0443\u043f\u0438\u0432 \u043a \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439.\n\n\u041f\u043e\u0437\u0434\u043d\u043e \u0432\u0435\u0447\u0435\u0440\u043e\u043c \u0432 \u0432\u043e\u0441\u043a\u0440\u0435\u0441\u0435\u043d\u044c\u0435 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u043e\u0431 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f\u0445 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0442 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint Subscription Edition \u0438 SharePoint 2019. \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f SharePoint 2016 - \u043f\u043e\u0447\u0442\u0438 \u043d\u0430 \u0432\u044b\u0445\u043e\u0434\u0435.\n\nCVE-2025-53770 \u0438 CVE-2025-53771 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b SharePoint. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u0435\u043d\u044b \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u0434\u043b\u044f \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 RCE \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u0412 \u0445\u043e\u0434\u0435 \u0430\u0442\u0430\u043a, \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u044b\u0445 Eye Security \u0438 Google, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0432\u043d\u0435\u0434\u0440\u044f\u043b\u0438 \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u00a0\u0438 \u043f\u043e\u0445\u0438\u0449\u0430\u043b\u0438 \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0441\u0435\u043a\u0440\u0435\u0442\u044b, \u0447\u0442\u043e \u043e\u0442\u043a\u0440\u044b\u043b\u0430 \u0438\u043c  \u043f\u043e\u043b\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u043c \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u043c.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f Eye Security \u0433\u043b\u043e\u0431\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u0438 \u0432\u044b\u044f\u0432\u0438\u0442\u044c \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 SharePoint, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u044b \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e ToolShell.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, ShadowServer \u0437\u0430\u044f\u0432\u0438\u043b\u0430 \u043e \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u043c 9000\u00a0\u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u0430\u0445 SharePoint, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0445 \u0447\u0435\u0440\u0435\u0437 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442\u0441\u044f \u0432 \u0421\u0435\u0432\u0435\u0440\u043d\u043e\u0439 \u0410\u043c\u0435\u0440\u0438\u043a\u0435 \u0438 \u0415\u0432\u0440\u043e\u043f\u0435, \u043d\u043e \u043f\u043e\u043a\u0430 \u0431\u0435\u0437 \u043c\u0430\u0440\u043a\u0438\u0440\u043e\u0432\u043a\u0438 \u0438\u0445 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c.\n\n\u041d\u0430 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Palo Alto Networks \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u0434\u0435\u0442\u0435\u043a\u0442\u0438\u043b\u0430 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0435 CVE-2025-49704 \u0438 CVE-2025-49706 \u0432 \u0448\u0438\u0440\u043e\u043a\u043e\u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\nCVE-2025-53770 \u0438 CVE-2025-53771 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0432\u0430\u0440\u0438\u0430\u043d\u0442\u0430\u043c\u0438 CVE-2025-49706 \u0438 CVE-2025-49704, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 \u043a\u043e\u043c\u0430\u043d\u0434\u044b Viettel \u043f\u0440\u043e\u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0435\u0449\u0435 \u0432 \u043c\u0430\u0435 \u043d\u0430 \u0445\u0430\u043a\u0435\u0440\u0441\u043a\u043e\u043c \u0442\u0443\u0440\u043d\u0438\u0440\u0435 Pwn2Own \u0432 \u0411\u0435\u0440\u043b\u0438\u043d\u0435, \u043e \u0447\u0435\u043c \u043c\u044b \u0442\u0430\u043a\u0436\u0435 \u0441\u043e\u043e\u0431\u0449\u0430\u043b\u0438.\n\nMicrosoft \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-49706 \u0438 CVE-2025-49704 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 PatchTuesday \u0437\u0430 \u0438\u044e\u043b\u044c 2025 \u0433\u043e\u0434\u0430.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0434\u043d\u0435\u0439 \u0441\u043f\u0443\u0441\u0442\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Code White \u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u0435\u043b\u0438 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043e\u043d\u0438 \u043d\u0430\u0437\u0432\u0430\u043b\u0438 ToolShell, \u043f\u043e\u043a\u0430\u0437\u0430\u0432, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0435\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0441\u0435\u0433\u043e \u043b\u0438\u0448\u044c \u043e\u0434\u043d\u0438\u043c \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u043c \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043f\u043e \u0432\u0441\u0435\u0439 \u0432\u0438\u0434\u0438\u043c\u043e\u0441\u0442\u0438, \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043e\u0431\u043e\u0439\u0442\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Microsoft \u0434\u043b\u044f CVE-2025-49706 \u0438 CVE-2025-49704 \u0434\u043b\u044f \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0430\u0442\u0430\u043a \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b SharePoint.\n\n\u0421\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e Microsoft \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u043d\u043e\u0432\u044b\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u0438 \u043f\u0440\u0438\u0441\u0432\u043e\u0438\u043b\u0430 \u043d\u043e\u0432\u044b\u0435 CVE: CVE-2025-53770 \u0438 CVE-2025-53771, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442, \u043a\u0430\u043a \u0443\u0432\u0435\u0440\u044f\u044e\u0442 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438, \u0431\u043e\u043b\u0435\u0435 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u0443\u044e \u0437\u0430\u0449\u0438\u0442\u0443 \u043d\u0435\u0436\u0435\u043b\u0438 \u0434\u043b\u044f \u043f\u0440\u0435\u0434\u044b\u0434\u0443\u0449\u0438\u0445 CVE-2025-49704 \u0438 CVE-2025-49706.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c, \u0432 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u0445 Microsoft \u043f\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-53771 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u043d\u0435 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f. \u0412\u043f\u0440\u043e\u0447\u0435\u043c, \u043c\u0438\u043a\u0440\u043e\u043c\u044f\u0433\u043a\u0438\u0435, \u043a\u0430\u043a \u0432\u0441\u0435\u0433\u0434\u0430, \u0432 \u0441\u0432\u043e\u0435\u043c \u0440\u0435\u043f\u0435\u0440\u0442\u0443\u0430\u0440\u0435.", "creation_timestamp": "2025-07-22T06:59:57.000000Z"}, {"uuid": "d6b2aca4-2287-411c-b13e-b5eacd24648b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "published-proof-of-concept", "source": "Telegram/wODd61W5j1tuTHJwgIPrERYXEehViHv3tBlXAdVX0Rv5XjQ", "content": "", "creation_timestamp": "2025-07-24T03:00:16.000000Z"}, {"uuid": "0315d922-0bf1-4f6c-bb3b-a4a4d26bb985", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/S_E_Reborn/5774", "content": "Microsoft \u0430\u043d\u043e\u043d\u0441\u0438\u0440\u043e\u0432\u0430\u043b\u0430 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 0-day \u0432 SharePoint Server, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u043a CVE-2025-53770 \u0438 CVE-2025-53771.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0432\u0448\u0435\u0439 \u0430\u0442\u0430\u043a\u0438 Eye Security, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f CVE-2025-53770 \u0438 CVE-2025-53771, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0438\u0445 \u0443\u0441\u043b\u043e\u0432\u043d\u043e\u0435 \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 ToolShell, \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c 18 \u0438\u044e\u043b\u044f.\n\n\u041d\u0430 \u0443\u0434\u0438\u0432\u043b\u0435\u043d\u0438\u0435 Microsoft \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u0438 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0430\u0441\u044c \u043c\u0435\u0440\u0430\u043c\u0438 \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e, \u043e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043f\u0440\u0438\u0441\u0442\u0443\u043f\u0438\u0432 \u043a \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439.\n\n\u041f\u043e\u0437\u0434\u043d\u043e \u0432\u0435\u0447\u0435\u0440\u043e\u043c \u0432 \u0432\u043e\u0441\u043a\u0440\u0435\u0441\u0435\u043d\u044c\u0435 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u043e\u0431 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f\u0445 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0442 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint Subscription Edition \u0438 SharePoint 2019. \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f SharePoint 2016 - \u043f\u043e\u0447\u0442\u0438 \u043d\u0430 \u0432\u044b\u0445\u043e\u0434\u0435.\n\nCVE-2025-53770 \u0438 CVE-2025-53771 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b SharePoint. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u0435\u043d\u044b \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u0434\u043b\u044f \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 RCE \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u0412 \u0445\u043e\u0434\u0435 \u0430\u0442\u0430\u043a, \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u044b\u0445 Eye Security \u0438 Google, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0432\u043d\u0435\u0434\u0440\u044f\u043b\u0438 \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u00a0\u0438 \u043f\u043e\u0445\u0438\u0449\u0430\u043b\u0438 \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0441\u0435\u043a\u0440\u0435\u0442\u044b, \u0447\u0442\u043e \u043e\u0442\u043a\u0440\u044b\u043b\u0430 \u0438\u043c  \u043f\u043e\u043b\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u043c \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u043c.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f Eye Security \u0433\u043b\u043e\u0431\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b\u0438 \u0432\u044b\u044f\u0432\u0438\u0442\u044c \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 SharePoint, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u044b \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e ToolShell.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, ShadowServer \u0437\u0430\u044f\u0432\u0438\u043b\u0430 \u043e \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u043c 9000\u00a0\u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u0430\u0445 SharePoint, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0445 \u0447\u0435\u0440\u0435\u0437 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442\u0441\u044f \u0432 \u0421\u0435\u0432\u0435\u0440\u043d\u043e\u0439 \u0410\u043c\u0435\u0440\u0438\u043a\u0435 \u0438 \u0415\u0432\u0440\u043e\u043f\u0435, \u043d\u043e \u043f\u043e\u043a\u0430 \u0431\u0435\u0437 \u043c\u0430\u0440\u043a\u0438\u0440\u043e\u0432\u043a\u0438 \u0438\u0445 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c.\n\n\u041d\u0430 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0445 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Palo Alto Networks \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u0434\u0435\u0442\u0435\u043a\u0442\u0438\u043b\u0430 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0435 CVE-2025-49704 \u0438 CVE-2025-49706 \u0432 \u0448\u0438\u0440\u043e\u043a\u043e\u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\nCVE-2025-53770 \u0438 CVE-2025-53771 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0432\u0430\u0440\u0438\u0430\u043d\u0442\u0430\u043c\u0438 CVE-2025-49706 \u0438 CVE-2025-49704, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 \u043a\u043e\u043c\u0430\u043d\u0434\u044b Viettel \u043f\u0440\u043e\u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0435\u0449\u0435 \u0432 \u043c\u0430\u0435 \u043d\u0430 \u0445\u0430\u043a\u0435\u0440\u0441\u043a\u043e\u043c \u0442\u0443\u0440\u043d\u0438\u0440\u0435 Pwn2Own \u0432 \u0411\u0435\u0440\u043b\u0438\u043d\u0435, \u043e \u0447\u0435\u043c \u043c\u044b \u0442\u0430\u043a\u0436\u0435 \u0441\u043e\u043e\u0431\u0449\u0430\u043b\u0438.\n\nMicrosoft \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-49706 \u0438 CVE-2025-49704 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 PatchTuesday \u0437\u0430 \u0438\u044e\u043b\u044c 2025 \u0433\u043e\u0434\u0430.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0434\u043d\u0435\u0439 \u0441\u043f\u0443\u0441\u0442\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Code White \u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u0435\u043b\u0438 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043e\u043d\u0438 \u043d\u0430\u0437\u0432\u0430\u043b\u0438 ToolShell, \u043f\u043e\u043a\u0430\u0437\u0430\u0432, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0435\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0432\u0441\u0435\u0433\u043e \u043b\u0438\u0448\u044c \u043e\u0434\u043d\u0438\u043c \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u043c \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043f\u043e \u0432\u0441\u0435\u0439 \u0432\u0438\u0434\u0438\u043c\u043e\u0441\u0442\u0438, \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043e\u0431\u043e\u0439\u0442\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Microsoft \u0434\u043b\u044f CVE-2025-49706 \u0438 CVE-2025-49704 \u0434\u043b\u044f \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0430\u0442\u0430\u043a \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b SharePoint.\n\n\u0421\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e Microsoft \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u043d\u043e\u0432\u044b\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u0438 \u043f\u0440\u0438\u0441\u0432\u043e\u0438\u043b\u0430 \u043d\u043e\u0432\u044b\u0435 CVE: CVE-2025-53770 \u0438 CVE-2025-53771, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442, \u043a\u0430\u043a \u0443\u0432\u0435\u0440\u044f\u044e\u0442 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438, \u0431\u043e\u043b\u0435\u0435 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u0443\u044e \u0437\u0430\u0449\u0438\u0442\u0443 \u043d\u0435\u0436\u0435\u043b\u0438 \u0434\u043b\u044f \u043f\u0440\u0435\u0434\u044b\u0434\u0443\u0449\u0438\u0445 CVE-2025-49704 \u0438 CVE-2025-49706.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c, \u0432 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u0445 Microsoft \u043f\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-53771 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u043d\u0435 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f. \u0412\u043f\u0440\u043e\u0447\u0435\u043c, \u043c\u0438\u043a\u0440\u043e\u043c\u044f\u0433\u043a\u0438\u0435, \u043a\u0430\u043a \u0432\u0441\u0435\u0433\u0434\u0430, \u0432 \u0441\u0432\u043e\u0435\u043c \u0440\u0435\u043f\u0435\u0440\u0442\u0443\u0430\u0440\u0435.", "creation_timestamp": "2025-07-21T15:30:09.000000Z"}, {"uuid": "8a55af35-5967-4327-b896-5c2fb4648e23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://t.me/information_security_channel/53876", "content": "Microsoft Patches \u2018ToolShell\u2019 Zero-Days Exploited to Hack SharePoint Servers\nhttps://www.securityweek.com/microsoft-patches-toolshell-zero-days-exploited-to-hack-sharepoint-servers/\n\nMicrosoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.\nThe post Microsoft Patches \u2018ToolShell\u2019 Zero-Days Exploited to Hack SharePoint Servers (https://www.securityweek.com/microsoft-patches-toolshell-zero-days-exploited-to-hack-sharepoint-servers/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2025-07-21T09:58:39.000000Z"}, {"uuid": "8a1b05cd-bf45-4a43-b9ec-9536f39eeda6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/Russian_OSINT/5883", "content": "\ud83c\udde8\ud83c\uddf3\ud83d\udc7a\ud83c\uddfa\ud83c\uddf8 SharePoint: \u043e\u0442 Pwn2Own \u0434\u043e \u0433\u043b\u043e\u0431\u0430\u043b\u044c\u043d\u043e\u0439 ransomware-\u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438\n\n\u041d\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435 \u0443\u0436\u0435 \u0432\u0441\u0435 \u0443\u0441\u043f\u0435\u043b\u0438 \u043e\u0431\u0441\u0443\u0434\u0438\u0442\u044c SharePoint. \u0418\u0441\u0442\u043e\u0440\u0438\u044f \u0430\u0442\u0430\u043a\u0438 \u0443\u0445\u043e\u0434\u0438\u0442 \u0441\u0432\u043e\u0438\u043c\u0438 \u043a\u043e\u0440\u043d\u044f\u043c\u0438 \u0432 \u043c\u0430\u0439 2025 \u0433\u043e\u0434\u0430, \u043a\u043e\u0433\u0434\u0430 \u043d\u0430 \u043a\u043e\u043d\u0444\u0435\u0440\u0435\u043d\u0446\u0438\u0438 \ud83d\udcbbPwn2Own \u0431\u044b\u043b\u0430 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0432\u044f\u0437\u043a\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \"ToolShell\", \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0431\u044b\u043b\u0438 \u043f\u043e\u0437\u0436\u0435 \u043f\u0440\u043e\u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438\u0437 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 Code White GmbH.\n\n\u0414\u0432\u0435 \u043a\u043b\u044e\u0447\u0435\u0432\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438: \n\ud83d\udea0CVE-2025-49706 \u2014 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b\u0430 \u043e\u0431\u043e\u0439\u0442\u0438 \u043c\u043d\u043e\u0433\u043e\u0444\u0430\u043a\u0442\u043e\u0440\u043d\u0443\u044e \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e. \u041d\u0430 \u043f\u0440\u0430\u043a\u0442\u0438\u043a\u0435 \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043d\u0438\u0432\u0435\u043b\u0438\u0440\u043e\u0432\u0430\u043b\u0430 \u0437\u0430\u0449\u0438\u0442\u0443 MFA.\n\ud83d\udea0 CVE-2025-49704 \u2014 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 (RCE) \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u0431\u0435\u0437 \u043a\u0430\u043a\u0438\u0445-\u043b\u0438\u0431\u043e \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u041f\u043e \u043c\u043d\u0435\u043d\u0438\u044e \u0437\u0430\u043f\u0430\u0434\u043d\u044b\u0445 \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u043e\u0432, \u0432\u043e\u043e\u0440\u0443\u0436\u0438\u0432\u0448\u0438\u0441\u044c \u044d\u0442\u0438\u043c\u0438 \u0437\u043d\u0430\u043d\u0438\u044f\u043c\u0438, \u043a\u0438\u0431\u0435\u0440\u043f\u0440\u0435\u0441\u0442\u0443\u043f\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u044d\u0442\u0443 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043e\u0441\u043d\u043e\u0432\u044b \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a.\n\n\ud83e\udd77\u2757\ufe0f\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u044d\u0444\u0444\u0435\u043a\u0442\u0438\u0432\u043d\u043e \u0441\u043e\u0435\u0434\u0438\u043d\u0438\u043b\u0438 \u0434\u0432\u0430 \u0432\u0435\u043a\u0442\u043e\u0440\u0430 \u0432 \u0435\u0434\u0438\u043d\u0443\u044e \u0430\u0442\u0430\u043a\u0443: \u0441\u043d\u0430\u0447\u0430\u043b\u0430 \u043e\u0431\u0445\u043e\u0434\u0438\u043b\u0438 \u0437\u0430\u0449\u0438\u0442\u0443, \u043f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u043b\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0438 \u043f\u043e\u043b\u0443\u0447\u0430\u043b\u0438 \u043f\u0435\u0440\u0432\u0438\u0447\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u043c.  \n\n\ud83d\ude37 \u041a\u043b\u044e\u0447\u0435\u0432\u043e\u0439 \u043f\u0435\u0440\u0435\u043b\u043e\u043c\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0432 \u044d\u0442\u043e\u0439 \u0438\u0441\u0442\u043e\u0440\u0438\u0438 \u043d\u0430\u0441\u0442\u0443\u043f\u0438\u043b 17 \u0438\u044e\u043b\u044f, \u043a\u043e\u0433\u0434\u0430 \u0431\u044b\u043b\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043e, \u0447\u0442\u043e \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0430 \u0441\u043f\u0435\u0446\u0438\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e HTTP-\u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0430 Referer \u0441 \u043e\u0434\u043d\u0438\u043c \u0438\u0437 \u0442\u0440\u0435\u0445 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0445 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0439 (\u201c/_layouts/SignOut.aspx\u201d, \u201c/_layouts/14/SignOut.aspx\u201d, \u0438\u043b\u0438 \u201c/_layouts/15/SignOut.aspx\u201d) \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043e\u0431\u043e\u0439\u0442\u0438 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e \u0438 \u043f\u0440\u0435\u0432\u0440\u0430\u0442\u0438\u0442\u044c \u0442\u0435\u043e\u0440\u0435\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0439 zero-day.\n\n\u2757\ufe0f \u0421\u043e\u0433\u043b\u0430\u0441\u043d\u043e \u0430\u043d\u0430\u043b\u0438\u0437\u0443 Microsoft, \u0432 \u044d\u0442\u043e\u0439 \u0438\u0441\u0442\u043e\u0440\u0438\u0438 \u0437\u0430\u043c\u0435\u0448\u0430\u043d\u044b \ud83e\udd1e\u043a\u0438\u0442\u0430\u0439\u0441\u043a\u0438\u0435 \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0438 Linen Typhoon, Violet Typhoon \u0438 Storm-2603, \u043a\u043e\u0442\u043e\u0440\u044b\u0435, \u043a\u0430\u043a \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442\u0441\u044f, \u043d\u0430\u0447\u0430\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0435\u0449\u0435 7 \u0438\u044e\u043b\u044f, \u0433\u043e\u0442\u043e\u0432\u044f \u043f\u043e\u0447\u0432\u0443 \u0434\u043b\u044f \u043c\u0430\u0441\u0441\u043e\u0432\u044b\u0445 \u0430\u0442\u0430\u043a.\n\n\u041f\u0435\u0440\u0432\u0430\u044f \u0432\u043e\u043b\u043d\u0430 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c 18 \u0438\u044e\u043b\u044f, \u043a\u043e\u0433\u0434\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0441\u0442\u0430\u043b\u0438 \u043c\u0430\u0441\u0441\u043e\u0432\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043d\u043e\u0432\u0443\u044e \u0441\u0432\u044f\u0437\u043a\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043f\u043e\u0437\u0436\u0435 \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0443\u044e \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b CVE-2025-53770 \u0438 CVE-2025-53771. \n\n\ud83c\udf83 POST \u0437\u0430\u043f\u0440\u043e\u0441 \u043d\u0430 \u043a\u043e\u043d\u0435\u0447\u043d\u0443\u044e \u0442\u043e\u0447\u043a\u0443 /_layouts/15/ToolPane.aspx \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b \u0437\u0430\u0433\u0440\u0443\u0437\u0438\u0442\u044c \u0432\u0435\u0431-\u0448\u0435\u043b\u043b spinstall0.aspx. \u0415\u0433\u043e \u0446\u0435\u043b\u044c\u044e \u0431\u044b\u043b\u043e \u043d\u0435 \u043f\u0440\u043e\u0441\u0442\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u043c\u0430\u043d\u0434, \u0430 \u0445\u0438\u0449\u0435\u043d\u0438\u0435 \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043a\u043b\u044e\u0447\u0435\u0439 ASP.NET MachineKey. \u0417\u0430\u0432\u043b\u0430\u0434\u0435\u0432 \u044d\u0442\u0438\u043c\u0438 \u043a\u043b\u044e\u0447\u0430\u043c\u0438, \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \"\u043c\u0430\u0441\u0442\u0435\u0440-\u043a\u043b\u044e\u0447\", \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0439 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0430 ysoserial \u0441\u0430\u043c\u043e\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u043e\u0434\u043f\u0438\u0441\u044b\u0432\u0430\u0442\u044c \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0435 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438 __VIEWSTATE \u0438 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0442\u044c \u0441\u0435\u0431\u0435 \u043f\u0435\u0440\u043c\u0430\u043d\u0435\u043d\u0442\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u0435\u0440\u0435\u0436\u0438\u0432\u0435\u0442 \u0434\u0430\u0436\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0443 \u043f\u0430\u0442\u0447\u0435\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438.\n\n\u041d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 \u0442\u043e\u0433\u043e \u0436\u0435 18 \u0438\u044e\u043b\u044f, \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0430 Storm-2603 \u043f\u0435\u0440\u0435\u0448\u043b\u0430 \u043e\u0442 \u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430 \u043a \u043f\u0440\u044f\u043c\u043e\u0439 \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0430\u0446\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c-\u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439, \u0432 \u0447\u0430\u0441\u0442\u043d\u043e\u0441\u0442\u0438 Warlock \u0438 LockBit. \u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0434\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u041e\u0431\u044a\u0435\u043a\u0442\u044b \u0433\u0440\u0443\u043f\u043f\u043e\u0432\u043e\u0439 \u043f\u043e\u043b\u0438\u0442\u0438\u043a\u0438 (GPO) \u0432 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0441\u0435\u0442\u044f\u0445 \u0434\u043b\u044f \u043c\u0430\u0441\u0441\u043e\u0432\u043e\u0433\u043e \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043b\u044c\u0449\u0438\u043a\u043e\u0432, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u0435\u043b\u043e \u043a \u043f\u0430\u0440\u0430\u043b\u0438\u0447\u0443 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0438 \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u044b\u043c \u043f\u043e\u0442\u0435\u0440\u044f\u043c \u0443 \u0436\u0435\u0440\u0442\u0432. \n\n\ud83d\udee1 \u0412\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0435 Microsoft 22 \u0438\u044e\u043b\u044f \u0444\u0438\u043d\u0430\u043b\u044c\u043d\u044b\u0435 \u043f\u0430\u0442\u0447\u0438 \u0431\u044b\u043b\u0438 \u043f\u0440\u0438\u0437\u0432\u0430\u043d\u044b \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u0441\u0438\u0442\u0443\u0430\u0446\u0438\u044e. \u041e\u0434\u043d\u0430\u043a\u043e \u0434\u043b\u044f \u043f\u043e\u043b\u043d\u043e\u0433\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0443\u0433\u0440\u043e\u0437\u044b \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u043c \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e \u0438\u0445 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c, \u043d\u043e \u0438 \u0432 \u043e\u0431\u044f\u0437\u0430\u0442\u0435\u043b\u044c\u043d\u043e\u043c \u043f\u043e\u0440\u044f\u0434\u043a\u0435 \u043f\u0440\u043e\u0438\u0437\u0432\u0435\u0441\u0442\u0438 \u0440\u043e\u0442\u0430\u0446\u0438\u044e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 MachineKeys \u0438 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u0441\u043b\u0443\u0436\u0431\u044b IIS, \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0443\u0447\u0438\u0442\u044b\u0432\u0430\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0441 \u043f\u0440\u0435\u0434\u044b\u0434\u0443\u0449\u0438\u043c\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f\u043c\u0438.\n\n\u041a 24 \u0438\u044e\u043b\u044f \u0447\u0438\u0441\u043b\u043e \u043f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u0432\u0448\u0438\u0445 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439 \u043f\u0440\u0435\u0432\u044b\u0441\u0438\u043b\u043e 400, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0442\u0430\u043a\u0438\u0435 \u0432\u0435\u0434\u043e\u043c\u0441\u0442\u0432\u0430 \u0421\u0428\u0410, \u043a\u0430\u043a \u041c\u0438\u043d\u0438\u0441\u0442\u0435\u0440\u0441\u0442\u0432\u0430 \u044d\u043d\u0435\u0440\u0433\u0435\u0442\u0438\u043a\u0438 \u0438 \u0437\u0434\u0440\u0430\u0432\u043e\u043e\u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f, \u0430 \u0442\u0430\u043a\u0436\u0435 \u041a\u0430\u043b\u0438\u0444\u043e\u0440\u043d\u0438\u0439\u0441\u043a\u043e\u0433\u043e \u043d\u0435\u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0433\u043e \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u043e\u0433\u043e \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u0430, \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0449\u0435\u0433\u043e \u0447\u0430\u0441\u0442\u044c\u044e \u044d\u043b\u0435\u043a\u0442\u0440\u043e\u0441\u0435\u0442\u0435\u0439 \u0448\u0442\u0430\u0442\u0430. \n\n\ud83c\udf0e Shadowserver \u043f\u043e\u043a\u0430\u0437\u044b\u0432\u0430\u043b, \u0447\u0442\u043e \u043a \u0441\u0435\u0440\u0435\u0434\u0438\u043d\u0435 \u043d\u0435\u0434\u0435\u043b\u0438 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043e\u0441\u0442\u0430\u0432\u0430\u043b\u043e\u0441\u044c \u043e\u043a\u043e\u043b\u043e 11 000 \u043d\u0435\u0437\u0430\u0449\u0438\u0449\u0451\u043d\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 SharePoint \u0431\u0435\u0437 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0430\u0442\u0447\u0435\u0439.\n\n\u270b @Russian_OSINT", "creation_timestamp": "2025-07-26T07:00:31.000000Z"}, {"uuid": "7e122fdd-1b9c-42fe-bcf9-cee0d1979a83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/bizone_channel/1993", "content": "\ud83d\udd3a \u0421\u043e\u043e\u0431\u0449\u0430\u0435\u043c \u043e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u0445 \u0432 Microsoft SharePoint\n\nCVE-2025-53770 \u0438 CVE-2025-53771 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u043e\u0446\u0435\u043d\u043a\u0443 9,8 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS \u0438 \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0435 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438. \u041f\u043e\u0434 \u0443\u0433\u0440\u043e\u0437\u043e\u0439 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f: SharePoint Server 2016, SharePoint Server 2019, SharePoint Server Subscription Edition.\n\n\u041a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c\u0441\u044f:\n\n1\u20e3 \u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u0435 \u043f\u0430\u0442\u0447\u0438:\n\u2014 SharePoint Server 2016: KB5002744;\n\u2014 SharePoint Server 2019: KB5002754;\n\u2014 SharePoint Server Subscription Edition: KB5002768.\n\n2\u20e3 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u044c\u0442\u0435 \u0434\u043e\u0441\u0442\u0443\u043f \u043a SharePoint \u0438\u0437 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430 \u0438\u043b\u0438 \u0442\u043e\u0447\u0435\u0447\u043d\u043e \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u044c\u0442\u0435 POST-\u0437\u0430\u043f\u0440\u043e\u0441\u044b \u043a \u043f\u0443\u0442\u0438 /_layouts/15/toolpane.aspx \u0441 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u043e\u043c MSOTlPn_DWP.\n\n3\u20e3 \u0412\u043a\u043b\u044e\u0447\u0438\u0442\u0435 AMSI-\u0437\u0430\u0449\u0438\u0442\u0443 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435.\n\n4\u20e3 \u041f\u043e\u0441\u043c\u043e\u0442\u0440\u0438\u0442\u0435 \u0431\u043b\u043e\u0433 Microsoft \u043f\u043e \u0434\u0430\u043d\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u041f\u043e \u043d\u0430\u0448\u0435\u0439 \u043e\u0446\u0435\u043d\u043a\u0435, \u044d\u0442\u0438\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u043e \u0434\u043e 10% \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 enterprise-\u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0439 \u2014 \u043a\u0430\u0436\u0434\u0430\u044f \u0434\u0435\u0441\u044f\u0442\u0430\u044f \u043d\u0430\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u0432 \u0437\u043e\u043d\u0435 \u0440\u0438\u0441\u043a\u0430.\n\n\u0414\u043b\u044f \u0432\u0441\u0435\u0445 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 BI.ZONE WAF \u0443\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u043f\u0440\u0430\u0432\u0438\u043b\u043e \u0437\u0430\u0449\u0438\u0442\u044b \u043e\u0442 \u044d\u0442\u043e\u0439 \u0430\u0442\u0430\u043a\u0438, \u0430 \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u044f BI.ZONE CPT \u0438 BI.ZONE Threat Intelligence \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e \u0432\u044b\u044f\u0432\u043b\u044f\u0442\u044c \u043d\u043e\u0432\u044b\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u043f\u0440\u0438\u043d\u044f\u0442\u044c \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u044b\u0435 \u043c\u0435\u0440\u044b \u0435\u0449\u0435 \u0434\u043e \u043d\u0430\u0447\u0430\u043b\u0430 \u0430\u0442\u0430\u043a.", "creation_timestamp": "2025-07-22T08:45:05.000000Z"}, {"uuid": "e2e8250e-8e80-48e3-a5d6-bb5c58800839", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/xakep_ru/17841", "content": "Microsoft \u0432\u044b\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0439 \u043f\u0430\u0442\u0447: 0-day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 SharePoint \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432 RCE-\u0430\u0442\u0430\u043a\u0430\u0445\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043e, \u0447\u0442\u043e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f \u0432 Microsoft SharePoint (CVE-2025-53770 \u0438 CVE-2025-53771) \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0441 \u043a\u043e\u043d\u0446\u0430 \u043f\u0440\u043e\u0448\u043b\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0438, \u0438 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443 \u0431\u044b\u043b\u043e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043e \u043d\u0435 \u043c\u0435\u043d\u0435\u0435 85 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432.\n\nhttps://xakep.ru/2025/07/21/sharepoint-0days/", "creation_timestamp": "2025-07-21T08:38:07.000000Z"}, {"uuid": "0d6b2c40-a76d-4613-9a86-0462d9d03543", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "seen", "source": "https://t.me/CyberBulletin/3697", "content": "\u26a1\ufe0fUpdate: Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771.\n\n#CyberBulletin", "creation_timestamp": "2025-07-22T21:25:57.000000Z"}, {"uuid": "6dbe77e7-78b5-4548-8d5e-36b94ef52481", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-53771", "type": "exploited", "source": "https://t.me/true_secator/7259", "content": "\u041a\u0435\u0439\u0441 \u0441 0-day (CVE-2025-53770) \u0430\u0442\u0430\u043a\u0430\u043c\u0438 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 SharePoint, \u043d\u0430\u0437\u0432\u0430\u043d\u043d\u044b\u0435 ShellTool, \u0432\u044b\u0437\u0432\u0430\u043b \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0448\u0438\u0440\u043e\u043a\u0438\u0439 \u043e\u0431\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0439 \u0440\u0435\u0437\u043e\u043d\u0430\u043d\u0441, \u0432 \u0432\u0438\u0434\u0443 \u043a\u043e\u0442\u043e\u0440\u043e\u0433\u043e \u0432\u044b\u0448\u043b\u043e \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u0447\u0438\u0441\u043b\u043e \u043e\u0442\u0447\u0435\u0442\u043e\u0432 \u0441 \u043e\u0442\u0440\u0430\u0436\u0435\u043d\u0438\u0435\u043c \u0431\u043e\u043b\u044c\u0448\u043e\u0433\u043e \u0447\u0438\u0441\u043b\u0430 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0435\u0439.\n\n\u0414\u043b\u044f \u043f\u043e\u043d\u0438\u043c\u0430\u043d\u0438\u044f \u0440\u0430\u0437\u0432\u0438\u0442\u0438\u044f \u0432\u0441\u0435\u0439 \u0441\u0438\u0442\u0443\u0430\u0446\u0438\u0438 \u0440\u0435\u0448\u0438\u043b\u0438 \u0441\u043e\u0441\u0440\u0435\u0434\u043e\u0442\u043e\u0447\u0438\u0442\u044c\u0441\u044f \u043d\u0430 \u0445\u0440\u043e\u043d\u043e\u043b\u043e\u0433\u0438\u0438 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0445 \u0441\u043e\u0431\u044b\u0442\u0438\u0439, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043e\u0442\u0440\u0430\u0437\u0438\u0442\u044c \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0437\u043d\u0430\u0447\u0438\u043c\u044b\u0435 \u043c\u043e\u043c\u0435\u043d\u0442\u044b:\n\n- \u0421\u0430\u043c\u0430 0-day \u0438 \u0430\u0442\u0430\u043a\u0438 \u0431\u044b\u043b\u0438 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b \u0432 \u0441\u0443\u0431\u0431\u043e\u0442\u0443, 19 \u0438\u044e\u043b\u044f, \u0430 \u043d\u0430 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0439 \u0434\u0435\u043d\u044c \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043f\u0430\u0442\u0447\u0438. \u041e\u043d\u0430 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u0432\u0430\u0440\u0438\u0430\u043d\u0442 \u0441\u0442\u0430\u0440\u043e\u0439 RCE, \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e\u0439 \u043a\u0430\u043a CVE-2025-49704, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u0440\u0430\u043d\u0435\u0435 \u0432 \u044d\u0442\u043e\u043c \u043c\u0435\u0441\u044f\u0446\u0435.\n\n- \u041e\u0448\u0438\u0431\u043a\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u0430\u043d\u043d\u044b\u0435 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 MachineKey \u0441\u0435\u0440\u0432\u0435\u0440\u0430 SharePoint, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u0430\u0442\u0435\u043c \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0438 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u0430\u0442\u0430\u043a\u0438 \u0441 \u0446\u0435\u043b\u044c\u044e RCE.\n\n- \u0420\u0430\u043d\u0435\u0435 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043f\u044b\u0442\u0430\u043b\u0438\u0441\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c CVE-2025-49704 \u0438 CVE-2025-49706, \u043f\u0440\u0435\u0436\u0434\u0435 \u0447\u0435\u043c \u043f\u0435\u0440\u0435\u043a\u043b\u044e\u0447\u0438\u0442\u044c\u0441\u044f \u043d\u0430 CVE-2025-53770. \u041e\u0431\u0435 \u043e\u043d\u0438 \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u043d\u0430 Pwn2Own Berlin \u0432 \u043c\u0430\u0435 \u044d\u0442\u043e\u0433\u043e \u0433\u043e\u0434\u0430 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c\u00a0ShellTool.\n\n- Microsoft \u0442\u0430\u043a\u0436\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0447\u0435\u0442\u0432\u0435\u0440\u0442\u0443\u044e \u043e\u0448\u0438\u0431\u043a\u0443, CVE-2025-53771, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u043e\u0448\u0438\u0431\u043a\u0443 \u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0443\u0442\u0438, \u044f\u0432\u043b\u044f\u044e\u0449\u0443\u044e\u0441\u044f \u0440\u0430\u0437\u043d\u043e\u0432\u0438\u0434\u043d\u043e\u0441\u0442\u044c\u044e CVE-2025-49706 \u0438, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0442\u0430\u043a\u0436\u0435 \u043d\u0430\u0445\u043e\u0434\u044f\u0449\u0443\u044e\u0441\u044f \u043f\u043e\u0434 \u0443\u0433\u0440\u043e\u0437\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438.\n\n- 0-day \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b SharePoint \u0432\u0435\u0440\u0441\u0438\u0439 2016 \u0438 2019. \u0421\u0435\u0440\u0432\u0435\u0440\u044b SharePoint 2010 \u0438 2013 \u0442\u0430\u043a\u0436\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u044b, \u043d\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u043d\u0438\u0445 \u043d\u0435 \u0431\u0443\u0434\u0435\u0442 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043e. \u041e\u0431\u043b\u0430\u0447\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b Microsoft SharePoint \u043d\u0435 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b.\n\n- \u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 0-day \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u043e\u0432 \u043d\u0430 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445. Microsoft \u0441\u0432\u044f\u0437\u0430\u043b\u0430 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u0441 \u0442\u0440\u0435\u043c\u044f \u043a\u0438\u0442\u0430\u0439\u0441\u043a\u0438\u043c\u0438 APT: Linen Typhoon, Violet Typhoon \u0438 Storm-2603.\n\n- \u041f\u0435\u0440\u0432\u044b\u0435 \u0434\u0432\u0435 \u0433\u0440\u0443\u043f\u043f\u044b \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0442 \u0441 2012 \u0438 2015 \u0433\u043e\u0434\u043e\u0432 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u044b \u0441\u043e \u0448\u043f\u0438\u043e\u043d\u0441\u043a\u0438\u043c\u0438 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u044f\u043c\u0438. \u0422\u0440\u0435\u0442\u044c\u044f \u0431\u043e\u043b\u0435\u0435 \u043d\u043e\u0432\u0430\u044f: \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u0437\u0430\u043a\u0430\u043d\u0447\u0438\u0432\u0430\u043b\u0438\u0441\u044c \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0435\u043c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c-\u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 Warlock \u0438 Lockbit.\n\n- SentinelOne \u0442\u0430\u043a\u0436\u0435 \u0441\u0432\u044f\u0437\u0430\u043b\u0430 \u0430\u0442\u0430\u043a\u0438 \u0441 \u0442\u0440\u0435\u043c\u044f \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430\u043c\u0438, \u043d\u043e \u043d\u0435 \u043d\u0430\u0437\u0432\u0430\u043b\u0430 \u043d\u0438 \u0438\u043c\u0435\u043d, \u043d\u0438 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0430 \u0430\u0442\u0430\u043a.\n\n- Microsoft \u0438 SentinelOne \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442, \u0447\u0442\u043e \u0442\u0435\u043f\u0435\u0440\u044c \u043e\u043d\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432, \u0442\u0430\u043a\u0436\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0449\u0438\u0445 0-day, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0440\u0443\u0433\u0438\u0435 APT.\n\n- \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Tenable, \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0439 PoC \u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0442\u0435\u043f\u0435\u0440\u044c \u0448\u0438\u0440\u043e\u043a\u043e\u00a0\u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d.\n\n- \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Censys, \u043a \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0443 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u043e \u0431\u043e\u043b\u0435\u0435 9700 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 SharePoint 2016 \u0438 2019 \u0438, \u043a\u0430\u043a \u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442 NextGov, \u0431\u043e\u043b\u0435\u0435 1100 \u0438\u0437 \u043d\u0438\u0445 \u0441\u0432\u044f\u0437\u0430\u043d\u044b \u0441 \u0433\u043e\u0441\u0441\u0435\u043a\u0442\u043e\u0440\u043e\u043c.\n\n- \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u043c\u043d\u043e\u0433\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432, \u043d\u0430 \u0441\u043e\u0442\u043d\u044f\u0445 \u0438\u0437 \u043d\u0438\u0445 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u044b \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u044b, \u0445\u043e\u0442\u044f \u043d\u0435\u044f\u0441\u043d\u043e, \u0441\u0432\u044f\u0437\u0430\u043d\u043e \u043b\u0438 \u044d\u0442\u043e \u0441 ShellTool. \n\n- \u0422\u0435\u043b\u0435\u043c\u0435\u0442\u0440\u0438\u044f Eye Security \u0438 SentinelOne \u043f\u043e\u043a\u0430\u0437\u0430\u043b\u0430, \u0447\u0442\u043e \u043f\u0435\u0440\u0432\u0430\u044f \u0432\u043e\u043b\u043d\u0430 \u0430\u0442\u0430\u043a \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c 17 \u0438\u044e\u043b\u044f. \u041f\u043e\u0441\u043b\u0435 \u044d\u0442\u043e\u0433\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043b\u0438 \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438.\n\n- \u041f\u043e\u00a0\u0434\u0430\u043d\u043d\u044b\u043c WaPo, \u0440\u044f\u0434 \u0433\u043e\u0441\u0443\u0447\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0439 \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u043b\u0438\u0441\u044c \u0432\u0437\u043b\u043e\u043c\u0443.\n\n- \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 SentinelOne \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442, \u0447\u0442\u043e \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u044b\u0435 \u0446\u0435\u043b\u0438 \u0441\u0432\u0438\u0434\u0435\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0443\u044e\u0442 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0438\u0437\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e \u0434\u0435\u044f\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u0442\u0449\u0430\u0442\u0435\u043b\u044c\u043d\u043e \u0442\u0430\u0440\u0433\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439. \u041f\u043e\u0441\u043b\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0430\u0442\u0430\u043a\u0438 \u0441\u0442\u0430\u043b\u0438 \u043d\u043e\u0441\u0438\u0442\u044c \u0441\u0438\u0442\u0443\u0430\u0442\u0438\u0432\u043d\u044b\u0439 \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440.\n\n- \u0412 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043e\u0442\u0447\u0435\u0442\u0430\u0445 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u0435\u0442\u0441\u044f, \u0447\u0442\u043e \u0442\u0430\u043a\u0436\u0435 \u0431\u044b\u043b\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0430 CVE-2025-53771, \u043d\u043e Microsoft \u044d\u0442\u043e\u0433\u043e \u043f\u043e\u043a\u0430 \u043d\u0435 \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u0435\u0442.\n\n- \u041f\u043e\u043c\u0438\u043c\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043e\u0448\u0438\u0431\u043e\u043a, \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u043c \u0441\u043b\u0435\u0434\u0443\u0435\u0442 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u0440\u043e\u0442\u0430\u0446\u0438\u044e \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043c\u0430\u0442\u0435\u0440\u0438\u0430\u043b\u043e\u0432 MachineKey \u0438 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u043e\u0432. \u0423\u043a\u0440\u0430\u0434\u0435\u043d\u043d\u044b\u0435 MachineKeys \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0442 \u0432 \u0431\u0443\u0434\u0443\u0449\u0435\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u0447\u0435\u0440\u0435\u0437 \u0431\u044d\u043a\u0434\u043e\u0440, \u0434\u0430\u0436\u0435 \u043f\u043e\u0441\u043b\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0438\u0441\u0442\u0435\u043c.\n\n- \u0422\u0435\u043f\u0435\u0440\u044c \u0442\u0430\u043a\u0436\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d\u00a0\u0441\u043a\u0430\u043d\u0435\u0440, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e IOC \u0432 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0445 \u043e\u0442\u0447\u0435\u0442\u0430\u0445: Broadcom Symantec, CISA, Cisco Talos, Censys, Check Point, CrowdStrike, Eye Security, Logpoint, Microsoft, Orange, Palo Alto Networks, Qualys, SentinelOne, Tenable, Trend Micro \u0438 Varonis.", "creation_timestamp": "2025-07-23T12:26:25.000000Z"}]}