https://vulnerability.circl.lu/sightings/feed 2026-06-03T22:53:35.479532+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/856d8e27-dbc9-4ac7-a2f6-a40828ca0ed8/export 2026-06-03T22:53:35.778297+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "856d8e27-dbc9-4ac7-a2f6-a40828ca0ed8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32409", "type": "exploited", "source": "https://t.me/itsec_news/2936", "content": "\u200b\u26a1\ufe0fApple \u043f\u0440\u043e\u0442\u0438\u0432 \u043a\u0438\u0431\u0435\u0440\u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430: \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b iPhone \u0438 Mac \u043e\u0442 \u043f\u043e\u043b\u043d\u043e\u0433\u043e \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f.\n\n\ud83d\udcac Apple \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 iPhone, Mac \u0438 iPad.\n\n\u0412 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Apple \u043e\u043f\u0438\u0441\u0430\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f WebKit, \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u043c\u0443\u044e \u043a\u0430\u043a CVE-2023-37450 , \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u0432 \u043d\u043e\u0432\u043e\u043c \u0440\u0430\u0443\u043d\u0434\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 Rapid Security Response (RSR) \u0440\u0430\u043d\u0435\u0435 \u0432 \u0438\u044e\u043b\u0435. \u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434, \u0437\u0430\u0441\u0442\u0430\u0432\u043b\u044f\u044f \u0436\u0435\u0440\u0442\u0432 \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b.\n\n\u0415\u0449\u0435 \u043e\u0434\u043d\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u0430\u044f \u0441\u0435\u0433\u043e\u0434\u043d\u044f 0day-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u2014 \u044d\u0442\u043e \u043d\u043e\u0432\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u044f\u0434\u0440\u0430 CVE-2023-38606 , \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0430\u0442\u0430\u043a\u0430\u0445, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0441 \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438 iOS, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0445 \u0434\u043e iOS 15.7.1. \u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0438\u0437\u043c\u0435\u043d\u044f\u0442\u044c \u0432\u0430\u0436\u043d\u044b\u0435 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0439 \u044f\u0434\u0440\u0430. Apple \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0443\u043b\u0443\u0447\u0448\u0438\u0432 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435\u043c.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Kaspersky GReAT, \u043e\u0448\u0438\u0431\u043a\u0430 CVE-2023-38606 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0447\u0430\u0441\u0442\u044c\u044e \u0446\u0435\u043f\u043e\u0447\u043a\u0438 Zero-Click \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442\u043e\u0432, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0439 \u0432 \u0448\u043f\u0438\u043e\u043d\u0441\u043a\u043e\u0439 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 Triangulation \u043d\u0430 iPhone .\n\n\u0421 \u043d\u0430\u0447\u0430\u043b\u0430 2023 \u0433\u043e\u0434\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0443\u0436\u0435 \u0434\u0435\u0441\u044f\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 iPhone, Mac \u0438\u043b\u0438 iPad:\n\n\u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-32434 , CVE-2023-32435 \u0438 CVE-2023-32439 ) \u0432 \u0438\u044e\u043d\u0435;\n\u0435\u0449\u0451 \u0442\u0440\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-32409 , CVE-2023-28204 \u0438 CVE-2023-32373 ) \u0432 \u043c\u0430\u0435;\n\u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-28206 \u0438 CVE-2023-28205 ) \u0432 \u0430\u043f\u0440\u0435\u043b\u0435;\n\u0438 \u0435\u0449\u0451 \u043e\u0434\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c WebKit \u0441 \u043d\u0443\u043b\u0435\u0432\u044b\u043c \u0434\u043d\u0451\u043c ( CVE-2023-23529 ) \u0432 \u0444\u0435\u0432\u0440\u0430\u043b\u0435.\n\u0421\u043f\u0438\u0441\u043e\u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0434\u0432\u0443\u043c\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0435\u0433\u043e\u0434\u043d\u044f \u043d\u0443\u043b\u0435\u0432\u044b\u043c\u0438 \u0434\u043d\u044f\u043c\u0438, \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u043e\u0431\u0448\u0438\u0440\u0435\u043d \u0438 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u0448\u0438\u0440\u043e\u043a\u0438\u0439 \u0441\u043f\u0435\u043a\u0442\u0440 \u043c\u043e\u0434\u0435\u043b\u0435\u0439 iPhone \u0438 iPad, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u044b Mac \u043f\u043e\u0434 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c macOS Big Sur, Monterey \u0438 Ventura.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2023-07-27T04:50:00.000000Z"} 2023-07-27T04:50:00+00:00 https://vulnerability.circl.lu/sighting/dcbf5924-db81-42a8-9cf6-f51312cbf70a/export 2026-06-03T22:53:35.778229+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "dcbf5924-db81-42a8-9cf6-f51312cbf70a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32409", "type": "seen", "source": "https://googleprojectzero.blogspot.com/2023/10/an-analysis-of-an-in-the-wild-ios-safari-sandbox-escape.html", "content": "", "creation_timestamp": "2023-10-13T10:47:00.000000Z"} 2023-10-13T10:47:00+00:00 https://vulnerability.circl.lu/sighting/d6083fd9-d28f-4b89-9a9b-8f7d57207be3/export 2026-06-03T22:53:35.778154+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "d6083fd9-d28f-4b89-9a9b-8f7d57207be3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32407", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9402", "content": "#exploit\n1. CVE-2023-32407:\nmacOS TCC bypass in Metal\nhttps://github.com/gergelykalman/CVE-2023-32407-a-macOS-TCC-bypass-in-Metal\n\n2. CVE-2023-36427:\nArbitrary physical memory corruption from the root partition on Windows\nhttps://github.com/tandasat/CVE-2023-36427\n\n3. CVE-2023-31320:\nDoS vulnerability in AMD driver that corrupts the display\nhttps://github.com/whypet/CVE-2023-31320", "creation_timestamp": "2023-11-16T11:01:01.000000Z"} 2023-11-16T11:01:01+00:00 https://vulnerability.circl.lu/sighting/076277bb-7432-4f59-afdf-30d46878c439/export 2026-06-03T22:53:35.778079+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "076277bb-7432-4f59-afdf-30d46878c439", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32409", "type": "exploited", "source": "https://t.me/arpsyndicate/1022", "content": "#ExploitObserverAlert\n\nCVE-2023-32409\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-32409. The issue was addressed with improved bounds checks. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.8 and iPadOS 15.7.8, Safari 16.5, iOS 16.5 and iPadOS 16.5. A remote attacker may be able to break out of Web Content sandbox. Apple is aware of a report that this issue may have been actively exploited.\n\nFIRST-EPSS: 0.008510000\nNVD-IS: 4.0\nNVD-ES: 3.9", "creation_timestamp": "2023-12-03T20:32:41.000000Z"} 2023-12-03T20:32:41+00:00 https://vulnerability.circl.lu/sighting/92b86458-8573-4b70-b46e-85ce2f68f9bc/export 2026-06-03T22:53:35.778008+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "92b86458-8573-4b70-b46e-85ce2f68f9bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32401", "type": "seen", "source": "https://t.me/ctinow/166208", "content": "https://ift.tt/uYQi1pa\nCVE-2023-32401", "creation_timestamp": "2024-01-10T23:26:35.000000Z"} 2024-01-10T23:26:35+00:00 https://vulnerability.circl.lu/sighting/ccaf67f7-2dd0-42b8-8ec7-216c4d8ea0f3/export 2026-06-03T22:53:35.777918+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "ccaf67f7-2dd0-42b8-8ec7-216c4d8ea0f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32401", "type": "seen", "source": "https://t.me/ctinow/169754", "content": "https://ift.tt/j9pZeQP\nCVE-2023-32401 | Apple macOS Quick Look Privilege Escalation", "creation_timestamp": "2024-01-18T14:46:53.000000Z"} 2024-01-18T14:46:53+00:00 https://vulnerability.circl.lu/sighting/a29297e9-e6bf-451d-86e6-dfa5ee518b94/export 2026-06-03T22:53:35.777819+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "a29297e9-e6bf-451d-86e6-dfa5ee518b94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32407", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/1735", "content": "#exploit\n1. CVE-2023-32407:\nmacOS TCC bypass in Metal\nhttps://github.com/gergelykalman/CVE-2023-32407-a-macOS-TCC-bypass-in-Metal\n\n2. CVE-2023-36427:\nArbitrary physical memory corruption from the root partition on Windows\nhttps://github.com/tandasat/CVE-2023-36427\n\n3. CVE-2023-31320:\nDoS vulnerability in AMD driver that corrupts the display\nhttps://github.com/whypet/CVE-2023-31320", "creation_timestamp": "2024-08-16T08:45:56.000000Z"} 2024-08-16T08:45:56+00:00 https://vulnerability.circl.lu/sighting/bc3aecfc-30cd-4356-b869-2b33d5e915f0/export 2026-06-03T22:53:35.777731+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "bc3aecfc-30cd-4356-b869-2b33d5e915f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32409", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971823", "content": "", "creation_timestamp": "2024-12-24T20:34:30.336919Z"} 2024-12-24T20:34:30.336919+00:00 https://vulnerability.circl.lu/sighting/f1cdf0d8-1f2b-413b-bed0-7ddadca4b141/export 2026-06-03T22:53:35.775697+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "f1cdf0d8-1f2b-413b-bed0-7ddadca4b141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32409", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:42.000000Z"} 2025-02-23T02:10:42+00:00 https://vulnerability.circl.lu/sighting/98031d52-5e30-40bb-9db2-27cc6865285c/export 2026-06-03T22:53:35.772029+00:00 Cédric Bonhomme https://cvepremium.circl.lu/user/cedric {"uuid": "98031d52-5e30-40bb-9db2-27cc6865285c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2023-32409", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/67bad172-a655-4972-a924-4062d1e36514", "content": "", "creation_timestamp": "2026-02-02T12:26:58.345779Z"} 2026-02-02T12:26:58.345779+00:00