{"vulnerability": "cve-2025-3202", "sightings": [{"uuid": "b387d3d4-498c-41ab-a094-3d09b13a76fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3202", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llxnhg4dwx2z", "content": "", "creation_timestamp": "2025-04-04T05:06:59.208339Z"}, {"uuid": "99a93cca-6c71-4898-a772-e67b1d36e210", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32020", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lmcw35rwey2c", "content": "", "creation_timestamp": "2025-04-08T16:40:22.469875Z"}, {"uuid": "dd95d252-d3d0-439f-9008-14f74abc857a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32028", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lmczgetxro2h", "content": "", "creation_timestamp": "2025-04-08T17:40:20.179916Z"}, {"uuid": "728aef20-439c-4822-a2d0-d719cd2416d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32028", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114303598091230128", "content": "", "creation_timestamp": "2025-04-08T17:48:13.910392Z"}, {"uuid": "8f274a9f-6527-4127-aa8a-daf715d07d16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32026", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmd75664z72c", "content": "", "creation_timestamp": "2025-04-08T19:22:38.152467Z"}, {"uuid": "38bcd490-822b-40a4-884f-29093d5c361c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32028", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmd756er5p2b", "content": "", "creation_timestamp": "2025-04-08T19:22:39.378993Z"}, {"uuid": "f6d707a7-f12b-4a26-8a0b-62d164b28dad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32024", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmd756i3bw2v", "content": "", "creation_timestamp": "2025-04-08T19:22:39.953790Z"}, {"uuid": "2d06219a-5736-4f63-a5bb-787d93c08b93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32025", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmd756vs372b", "content": "", "creation_timestamp": "2025-04-08T19:22:43.073141Z"}, {"uuid": "778b8929-3fda-40c3-b772-fdf9b6d55e88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32027", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmhta4sa7s2u", "content": "", "creation_timestamp": "2025-04-10T15:32:52.405219Z"}, {"uuid": "91aaf7c6-bb13-4bfc-827c-294e4bb09e05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32022", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lojis7aepd2p", "content": "", "creation_timestamp": "2025-05-06T18:21:51.977954Z"}, {"uuid": "58d73c2d-024e-4e2f-8a4a-df2271a41ab3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32022", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lojlqt55fjp2", "content": "", "creation_timestamp": "2025-05-06T19:20:03.663166Z"}, {"uuid": "be36ccce-f2c4-4416-85db-4cf0e4873dd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115390812802193403", "content": "", "creation_timestamp": "2025-10-17T18:01:14.057252Z"}, {"uuid": "e821e7b2-1f55-465c-b721-f48d4f58f9c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3me5bzfx7ih2h", "content": "", "creation_timestamp": "2026-02-05T21:02:56.535835Z"}, {"uuid": "920f1ca6-24a3-4aa5-a231-f4c932bda9ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "Telegram/17sx7vfyYyw5cNVTNyrGtWFmcDoHLeuKbaDi91L36vhy8Ec", "content": "", "creation_timestamp": "2025-07-07T21:00:04.000000Z"}, {"uuid": "12a3eff1-80f0-438f-b3a9-8c0d627168ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32029", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10786", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-32029\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: ts-asn1-der is a collection of utility classes to encode ASN.1 data following DER rule. Incorrect number DER encoding can lead to denial on service for absolute values in the range 2**31 -- 2**32 - 1. The arithmetic in the numBitLen didn't take into account that values in this range could result in a negative result upon applying the >> operator, leading to an infinite loop. The issue is patched in version 1.0.4. If upgrading is not an option, the issue can be mitigated by validating inputs to Asn1Integer to ensure that they are not smaller than -2**31 + 1 and no larger than 2**31 - 1.\n\ud83d\udccf Published: 2025-04-07T20:13:48.176Z\n\ud83d\udccf Modified: 2025-04-07T20:13:48.176Z\n\ud83d\udd17 References:\n1. https://github.com/ApelegHQ/ts-asn1-der/security/advisories/GHSA-p4qw-7j9g-5h53\n2. https://github.com/ApelegHQ/ts-asn1-der/commit/b2bc9032cbe19755d234a27d79e47a7e52993af8", "creation_timestamp": "2025-04-07T20:46:15.000000Z"}, {"uuid": "9a1bb0c6-cf43-486d-8f08-bb108db614c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32021", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11903", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-32021\n\ud83d\udd25 CVSS Score: 2.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Weblate is a web based localization tool. Prior to version 5.11, when creating a new component from an existing component that has a source code repository URL specified in settings, this URL is included in the client's URL parameters during the creation process. If, for example, the source code repository URL contains GitHub credentials, the confidential PAT and username are shown in plaintext and get saved into browser history. Moreover, if the request URL is logged, the credentials are written to logs in plaintext. If using Weblate official Docker image, nginx logs the URL and the token in plaintext. This issue is patched in version 5.11.\n\ud83d\udccf Published: 2025-04-15T20:39:09.253Z\n\ud83d\udccf Modified: 2025-04-15T20:39:09.253Z\n\ud83d\udd17 References:\n1. https://github.com/WeblateOrg/weblate/security/advisories/GHSA-m67m-3p5g-cw9j\n2. https://github.com/WeblateOrg/weblate/releases/tag/weblate-5.11", "creation_timestamp": "2025-04-15T20:55:03.000000Z"}, {"uuid": "f8a8108e-89d5-4e2b-8cc5-0b3d76ee6d8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44672", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThis is a reference to https://github.com/leesh3288/CVE-2025-32023, a bit modified.\nURL\uff1ahttps://github.com/shayantrix/POC-CVE-2025-32023\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-20T06:27:15.000000Z"}, {"uuid": "2b2ae5b6-8f83-43c5-ac9b-9437a815a67f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "https://t.me/poxek/5383", "content": "CVE-2025-32023: \u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Redis \u0438 Valkey\n#redis #valkey #\u0431\u0440\u043e\u043a\u0435\u0440\u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 #\u0421\u0423\u0411\u0414\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0445 \u0421\u0423\u0411\u0414 Redis \u0438 Valkey, \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0430\u044f \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430 \u0447\u0435\u0440\u0435\u0437 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 HyperLogLog \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u044f\u0445.\n\n\u27a1\ufe0f\u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0434\u0435\u0442\u0430\u043b\u0438\n\u0422\u0438\u043f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438: Integer Overflow to Buffer Overflow (CWE-680)\nCVSS Score: 7.0 HIGH\n\u0412\u0435\u043a\u0442\u043e\u0440 \u0430\u0442\u0430\u043a\u0438: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\n\n\u27a1\ufe0f\u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438\nRedis: >= 2.8 \u0434\u043e 8.0.3, 7.4.5, 7.2.10, 6.2.19\nValkey: \u0434\u043e 8.1.3, 8.0.4\n\n\u27a1\ufe0f\u041a\u043e\u0440\u0435\u043d\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0430\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u0432 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 HyperLogLog \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440 \u0434\u0430\u043d\u043d\u044b\u0445 \u0432 \u0444\u0430\u0439\u043b\u0435 src/hyperloglog.c. \u041f\u0440\u0438 \u0438\u0442\u0435\u0440\u0430\u0446\u0438\u0438 \u043f\u043e sparse HLL \u043a\u043e\u0434\u0438\u0440\u043e\u0432\u043a\u0435 \u043f\u0440\u043e\u0438\u0441\u0445\u043e\u0434\u0438\u0442 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0446\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u043e\u0439 \u043f\u0435\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 int i, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442 \u043e\u0431\u0449\u0443\u044e \u0434\u043b\u0438\u043d\u0443.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0432 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 hllMerge():\nwhile(p < end) {\n    if (HLL_SPARSE_IS_ZERO(p)) {\n        runlen = HLL_SPARSE_ZERO_LEN(p);\n        i += runlen;  // \u041f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0437\u0434\u0435\u0441\u044c!\n        p++;\n    }\n    // ...\n    while(runlen--) {\n        if (regval > max[i]) max[i] = regval;  // Out-of-bounds write\n        i++;\n    }\n}\n\n\u27a1\ufe0f\u041c\u0435\u0445\u0430\u043d\u0438\u0437\u043c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438\n1. \u0421\u043e\u0437\u0434\u0430\u043d\u0438\u0435 malformed HLL: \u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u0441\u043e\u0437\u0434\u0430\u0435\u0442 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0443\u044e HyperLogLog \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443 \u0441 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u044b\u043c\u0438 run lengths\n2. Integer overflow: \u0421\u0443\u043c\u043c\u0430 run lengths \u043f\u0440\u0435\u0432\u044b\u0448\u0430\u0435\u0442 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0435 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435 int, \u0432\u044b\u0437\u044b\u0432\u0430\u044f \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0432 \u043e\u0442\u0440\u0438\u0446\u0430\u0442\u0435\u043b\u044c\u043d\u0443\u044e \u043e\u0431\u043b\u0430\u0441\u0442\u044c\n3. Out-of-bounds write: \u041e\u0442\u0440\u0438\u0446\u0430\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435 i \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u043f\u0438\u0441\u044b\u0432\u0430\u0442\u044c \u0434\u0430\u043d\u043d\u044b\u0435 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u044b \u0432\u044b\u0434\u0435\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0431\u0443\u0444\u0435\u0440\u0430\n4. RCE: \u041f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u044c \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440 \u0434\u0430\u043d\u043d\u044b\u0445 \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430\n\n\u27a1\ufe0f\u0414\u0435\u0442\u0430\u043b\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 (\u043f\u043e \u0434\u0430\u043d\u043d\u044b\u043c PoC)\n\n\u0421\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u0430\u044f \u0441\u0445\u0435\u043c\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 Redis:\n1. \u041a\u043e\u0440\u0440\u0443\u043f\u0446\u0438\u044f sds \u043e\u0431\u044a\u0435\u043a\u0442\u0430 \u0432 jemalloc heap \u0434\u043b\u044f \u0443\u0432\u0435\u043b\u0438\u0447\u0435\u043d\u0438\u044f \u0435\u0433\u043e \u0434\u043b\u0438\u043d\u044b\n2. \u0421\u043f\u0440\u0435\u0439 embstr \u043e\u0431\u044a\u0435\u043a\u0442\u043e\u0432 \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f fake module \u043e\u0431\u044a\u0435\u043a\u0442\u0430\n3. \u0414\u0430\u043c\u043f heap \u0447\u0435\u0440\u0435\u0437 \u043f\u043e\u0432\u0440\u0435\u0436\u0434\u0435\u043d\u043d\u044b\u0439 sds \u043e\u0431\u044a\u0435\u043a\u0442 \u0434\u043b\u044f \u043f\u043e\u0438\u0441\u043a\u0430 \u0446\u0435\u043b\u0435\u0432\u043e\u0433\u043e embstr \u0438 \u0443\u0442\u0435\u0447\u043a\u0438 \u0430\u0434\u0440\u0435\u0441\u043e\u0432\n4. \u0421\u043e\u0437\u0434\u0430\u043d\u0438\u0435 fake module \u043e\u0431\u044a\u0435\u043a\u0442\u0430 \u0432 \u0446\u0435\u043b\u0435\u0432\u043e\u043c embstr \u043e\u0431\u044a\u0435\u043a\u0442\u0435\n5. \u0423\u0434\u0430\u043b\u0435\u043d\u0438\u0435 fake module \u043e\u0431\u044a\u0435\u043a\u0442\u0430, \u0432\u044b\u0437\u044b\u0432\u0430\u044e\u0449\u0435\u0435 \u0434\u0435\u0441\u0442\u0440\u0443\u043a\u0442\u043e\u0440 \u0438 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0435 RCE\n\n\u0424\u0443\u043d\u043a\u0446\u0438\u0438 \u043f\u043e\u0434 \u0443\u0433\u0440\u043e\u0437\u043e\u0439\n\u25aa\ufe0fhllMerge() - stack-allocated HLL \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b\n\u25aa\ufe0fhllSparseToDense() - heap-allocated HLL \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b\n\u25aa\ufe0f\u0412\u0441\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u0441 HyperLogLog \u043a\u043e\u043c\u0430\u043d\u0434\u0430\u043c\u0438 (PFADD, PFCOUNT, PFMERGE)\n\n\u27a1\ufe0f\u0423\u0441\u043b\u043e\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438\n\u25aa\ufe0f\u0410\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a Redis/Valkey\n\u25aa\ufe0f\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f HyperLogLog \u043a\u043e\u043c\u0430\u043d\u0434\n\u25aa\ufe0f\u041e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 ACL \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0439 \u043d\u0430 HLL \u043a\u043e\u043c\u0430\u043d\u0434\u044b\n\n\u27a1\ufe0f\u0417\u0430\u0449\u0438\u0442\u043d\u044b\u0435 \u043c\u0435\u0440\u044b\n\n1. \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u0432\u0435\u0440\u0441\u0438\u0439:\nRedis 8.0.3+, 7.4.5+, 7.2.10+, 6.2.19+\nValkey 8.1.3+, 8.0.4+\n2. \u0412\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u0447\u0435\u0440\u0435\u0437 ACL:\n# \u0417\u0430\u043f\u0440\u0435\u0442\u0438\u0442\u044c HyperLogLog \u043a\u043e\u043c\u0430\u043d\u0434\u044b\nACL SETUSER username -pfadd -pfcount -pfmerge\n3. \u041c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433 \u043f\u043e\u0434\u043e\u0437\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438:\n\u25aa\ufe0f\u0410\u043d\u043e\u043c\u0430\u043b\u044c\u043d\u044b\u0435 HyperLogLog \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438\n\u25aa\ufe0f\u041d\u0435\u043e\u0436\u0438\u0434\u0430\u043d\u043d\u044b\u0435 \u043f\u0430\u0434\u0435\u043d\u0438\u044f Redis \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0432\n\u25aa\ufe0f\u041f\u043e\u043f\u044b\u0442\u043a\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f HLL \u043a\u043e\u043c\u0430\u043d\u0434 \u0441 \u0431\u043e\u043b\u044c\u0448\u0438\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u043c\u0438\n4. \u0421\u0435\u0442\u0435\u0432\u044b\u0435 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f:\n\u25aa\ufe0f\u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a Redis \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u043c \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0430\u043c\n\u25aa\ufe0f\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 Redis AUTH \u0438 ACL \u0441\u0438\u0441\u0442\u0435\u043c\n\u25aa\ufe0f\u041c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433 \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430 \u043a Redis \u043f\u043e\u0440\u0442\u0430\u043c\n\n\u27a1\ufe0f\u041f\u0435\u0440\u0432\u043e\u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438:\n\ud83d\udd17GitHub Security Advisory\n\ud83d\udd17PoC\n\ud83d\udd17NVD\n\n\ud83c\udf1a @poxek | \ud83c\udf1a \u0411\u043b\u043e\u0433 | \ud83d\udcfa YT | \ud83d\udcfa RT | \ud83d\udcfa VK", "creation_timestamp": "2025-07-24T10:52:38.000000Z"}, {"uuid": "7c73f491-8843-4b75-9e3c-59b8383ba617", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "Telegram/8XPNOvSHsDvbVYTtlJZFqe_9cNshptvDL0UvmEjP1Mqls7A", "content": "", "creation_timestamp": "2025-07-07T03:00:05.000000Z"}, {"uuid": "242a8105-eda9-45f2-8824-dbe2cd63f819", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3202", "type": "seen", "source": "https://t.me/cvedetector/22063", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-3202 - Ageerle Ruoyi-ai Remote Improper Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-3202 \nPublished : April 4, 2025, 3:15 a.m. | 28\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in ageerle ruoyi-ai up to 2.0.0. Affected is an unknown function of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysNoticeController.java. The manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 2.0.1 is able to address this issue. The name of the patch is 6382e177bf90cc56ff70521842409e35c50df32d. It is recommended to upgrade the affected component. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-04T06:18:04.000000Z"}, {"uuid": "ddc24f46-6b1a-46f2-9d7c-81fde4502548", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lvh4asv4oc2p", "content": "", "creation_timestamp": "2025-08-02T21:28:21.491423Z"}, {"uuid": "076d6719-d411-4993-bb80-a56a541c02f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/43535", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aExploit for CVE-2025-32023\nURL\uff1ahttps://github.com/atomicjjbod/CVE-2025-32023\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-10T06:51:08.000000Z"}, {"uuid": "c9ee001f-c988-4e7a-9b74-fb44459babc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "Telegram/j9hhUGrn1UjsT61HvOuwLNUknuYr4whXlqdhwz-FvQYkdb4", "content": "", "creation_timestamp": "2025-07-10T07:00:11.000000Z"}, {"uuid": "eac5d307-e115-41c6-9708-e5b66a58ae9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lvjlbw54bs24", "content": "", "creation_timestamp": "2025-08-03T21:02:48.191851Z"}, {"uuid": "a77f099d-beb1-411f-949d-d9150c1ac782", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "Telegram/Zjan9qVo1c0btP6QHy96UV9CnT88HU6_6dv_yFU_EnfqOm0", "content": "", "creation_timestamp": "2025-07-20T09:00:04.000000Z"}, {"uuid": "e38c8a1f-975f-4f6b-9234-930564f51c3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3202", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10387", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3202\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability classified as critical has been found in ageerle ruoyi-ai up to 2.0.0. Affected is an unknown function of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysNoticeController.java. The manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 2.0.1 is able to address this issue. The name of the patch is 6382e177bf90cc56ff70521842409e35c50df32d. It is recommended to upgrade the affected component.\n\ud83d\udccf Published: 2025-04-04T02:31:06.023Z\n\ud83d\udccf Modified: 2025-04-04T02:31:06.023Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.303156\n2. https://vuldb.com/?ctiid.303156\n3. https://vuldb.com/?submit.545866\n4. https://github.com/Tr0e/CVE_Hunter/blob/main/ruoyi-ai/ruoyi-ai_UnauthorizedAccess_02.md\n5. https://github.com/ageerle/ruoyi-ai/issues/44#issue-2957771318\n6. https://github.com/ageerle/ruoyi-ai/commit/6382e177bf90cc56ff70521842409e35c50df32d\n7. https://github.com/ageerle/ruoyi-ai/releases/tag/v2.0.1", "creation_timestamp": "2025-04-04T03:35:58.000000Z"}, {"uuid": "6792670c-906f-413d-88fd-3125d4ee1bc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32025", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10928", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-32025\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: bep/imagemeta is a Go library for reading EXIF, IPTC and XMP image meta data from JPEG, TIFF, PNG, and WebP files. The buffer created for parsing metadata for PNG and WebP images was only bounded by their input data type, which could lead to potentially large memory allocation, and unreasonably high for image metadata. Before v0.11.0, If you didn't trust the input images, this could be abused to construct denial-of-service attacks. v0.11.0 added a 10 MB upper limit.\n\ud83d\udccf Published: 2025-04-08T15:13:24.770Z\n\ud83d\udccf Modified: 2025-04-08T15:37:58.737Z\n\ud83d\udd17 References:\n1. https://github.com/bep/imagemeta/security/advisories/GHSA-fmhh-rw3h-785m\n2. https://github.com/bep/imagemeta/commit/ee0de9b029f4e82106729f69559f27c9a404229d", "creation_timestamp": "2025-04-08T15:47:02.000000Z"}, {"uuid": "0d7f4886-318c-4ec9-8fe0-85489779c646", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32028", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10954", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-32028\n\ud83d\udd25 CVSS Score: 10 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: HAX CMS PHP allows you to manage your microsite universe with PHP backend. Multiple file upload functions within the HAX CMS PHP application call a \u2019save\u2019 function in \u2019HAXCMSFile.php\u2019. This save function uses a denylist to block specific file types from being uploaded to the server. This list is non-exhaustive and only blocks \u2019.php\u2019, \u2019.sh\u2019, \u2019.js\u2019, and \u2019.css\u2019 files. The existing logic causes the system to \"fail open\" rather than \"fail closed.\" This vulnerability is fixed in 10.0.3.\n\ud83d\udccf Published: 2025-04-08T16:06:33.976Z\n\ud83d\udccf Modified: 2025-04-08T16:06:33.976Z\n\ud83d\udd17 References:\n1. https://github.com/haxtheweb/issues/security/advisories/GHSA-vj5q-3jv2-cg5p", "creation_timestamp": "2025-04-08T16:46:45.000000Z"}, {"uuid": "5b500495-ff67-481d-807c-c75c01c12ae7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32022", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15183", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-32022\n\ud83d\udd25 CVSS Score: 4.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:H/A:L)\n\ud83d\udd39 Description: Finit provides fast init for Linux systems. Finit's urandom plugin has a heap buffer overwrite vulnerability at boot which leads to it overwriting other parts of the heap, possibly causing random instabilities and undefined behavior. The urandom plugin is enabled by default, so this bug affects everyone using Finit 4.2 or later that do not explicitly disable the plugin at build time. This bug is fixed in Finit 4.12. Those who cannot upgrade or backport the fix to urandom.c are strongly recommended to disable the plugin in the call to the `configure` script.\n\ud83d\udccf Published: 2025-05-06T16:57:30.855Z\n\ud83d\udccf Modified: 2025-05-06T17:22:16.925Z\n\ud83d\udd17 References:\n1. https://github.com/troglobit/finit/security/advisories/GHSA-fv6v-vw8h-9x79\n2. https://github.com/troglobit/finit/commit/3feff37ba51fa0a6a0a06f59682a0918aa5b04de", "creation_timestamp": "2025-05-06T18:21:39.000000Z"}, {"uuid": "86a96d84-29a9-43c5-b953-3da620312649", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/43484", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-32023\nURL\uff1ahttps://github.com/B1ack4sh/Blackash-CVE-2025-32023\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-09T21:36:24.000000Z"}, {"uuid": "4bdb2921-813e-44e2-bf8b-f6473cdf837c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32023", "type": "published-proof-of-concept", "source": "Telegram/VL2zkodKXJ4s7-qnqkcGB4g3iOsCKYXSgneWGoW9UEmWyHE", "content": "", "creation_timestamp": "2025-07-10T03:00:13.000000Z"}, {"uuid": "af6ade86-6d4f-4cf2-9b0b-30326b2acb7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32029", "type": "seen", "source": "https://t.me/cvedetector/22365", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-32029 - Apache TS ASN1 DER Denial of Service Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-32029 \nPublished : April 7, 2025, 9:15 p.m. | 1\u00a0hour, 42\u00a0minutes ago \nDescription : ts-asn1-der is a collection of utility classes to encode ASN.1 data following DER rule. Incorrect number DER encoding can lead to denial on service for absolute values in the range 2**31 -- 2**32 - 1. The arithmetic in the numBitLen didn't take into account that values in this range could result in a negative result upon applying the >> operator, leading to an infinite loop. The issue is patched in version 1.0.4. If upgrading is not an option, the issue can be mitigated by validating inputs to Asn1Integer to ensure that they are not smaller than -2**31 + 1 and no larger than 2**31 - 1. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-08T01:26:37.000000Z"}, {"uuid": "08025353-a186-4b4e-a5a9-cf52b0a3ff22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32027", "type": "seen", "source": "https://t.me/cvedetector/22673", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-32027 - Yii Reflected Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-32027 \nPublished : April 10, 2025, 3:16 p.m. | 2\u00a0hours, 6\u00a0minutes ago \nDescription : Yii is an open source PHP web framework. Prior to 1.1.31, yiisoft/yii is vulnerable to Reflected XSS in specific scenarios where the fallback error renderer is used. Upgrade yiisoft/yii to version 1.1.31 or higher. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-10T19:32:37.000000Z"}, {"uuid": "7bde0964-a5fd-4e6c-9b87-ef54d9e9e4f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32022", "type": "seen", "source": "https://t.me/cvedetector/24620", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-32022 - Finit Urandom Heap Buffer Overwrite Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-32022 \nPublished : May 6, 2025, 5:16 p.m. | 50\u00a0minutes ago \nDescription : Finit provides fast init for Linux systems. Finit's urandom plugin has a heap buffer overwrite vulnerability at boot which leads to it overwriting other parts of the heap, possibly causing random instabilities and undefined behavior. The urandom plugin is enabled by default, so this bug affects everyone using Finit 4.2 or later that do not explicitly disable the plugin at build time. This bug is fixed in Finit 4.12. Those who cannot upgrade or backport the fix to urandom.c are strongly recommended to disable the plugin in the call to the `configure` script. \nSeverity: 4.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-06T20:20:10.000000Z"}]}