tonyharris.io

PoC Week 2024-04-21

Posted on Apr 21, 2024

The most featured CVEs in this week’s security newsletters, with public Proof-of-Concepts, ordered by mention count.

For the most up-to-date and accurate info, visit the NIST links. Always audit PoCs thoroughly before running them.

CVE-2024-3400

  • Severity: 10 CRITICAL
  • Impacted Products: Palo Alto Networks PAN-OS, specifically versions 10.2.0, 11.0.0, and 11.1.0
  • Description: The vulnerability is a command injection flaw in the GlobalProtect feature of PAN-OS, allowing an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Notably, Cloud NGFW, Panorama appliances, and Prisma Access are not affected.
  • Remediation: Users are advised to apply mitigations as per vendor instructions when available. For vulnerable versions, enable Threat Prevention IDs or disable device telemetry until patches are issued.
  • More Info: CVE-2024-3400 on NVD
  • PoC: https://labs.watchtowr.com/palo-alto-putting-the-protecc-in-globalprotect-cve-2024-3400/

CVE-2024-24576

  • Severity: Currently Under Analysis
  • Impacted Products: Rust standard library versions prior to 1.77.2
  • Description: The Rust standard library before version 1.77.2 improperly escapes arguments when invoking batch files using the .bat and .cmd file formats.
  • Remediation: Update to Rust standard library version 1.77.2 or later.
  • More Info: CVE-2024-24576
  • PoC: https://github.com/frostb1ten/CVE-2024-24576-PoC

CVE-2024-21508

  • Severity: Currently Under Analysis
  • Impacted Products: Versions of the package mysql2 before 3.9.4
  • Description: This CVE is related to a vulnerability that allows for Remote Code Execution (RCE) via the readCodeFor function due to improper validation of supportBigNumbers and bigNumberStrings values.
  • Remediation: Update to mysql2 version 3.9.4 or later.
  • More Info: CVE-2024-21508 Details
  • PoC: https://security.snyk.io/vuln/SNYK-JS-MYSQL2-6591085

CVE-2023-6319

  • Severity: Currently Under Analysis
  • Impacted Products: Certain versions of LG WebOS
  • Description: A command injection vulnerability exists in the getAudioMetadata method from the com.webos.service.attachedstoragemanager service on webOS version 4 through 7. A series of specially crafted requests can lead to command execution as the root user.
  • Remediation: Follow vendor advisories for updates.
  • More Info: CVE-2023-6319
  • PoC: https://github.com/illixion/root-my-webos-tv/tree/main

References

This list was scraped from the quite amazing and highly recommended newsletters below:

Thanks for reading! For corrections, omissions (e.g. newsletter recs) feel free to get in touch.