{"uuid": "0ebaa2b7-e08d-4640-a78c-af3d76c4c7c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-52447", "type": "published-proof-of-concept", "source": "https://t.me/god_of_server/4", "content": "#Exploit\n1. CVE-2024-42640:\nUnauthenticated RCE via Angular-Base64-Upload Library\nhttps://github.com/rvizx/CVE-2024-42640\n\n2. CVE-2024-37404:\nIvanti Connect Secure - Authenticated RCE via OpenSSL CRLF Injection\nhttps://blog.amberwolf.com/blog/2024/october/cve-2024-37404-ivanti-connect-secure-authenticated-rce-via-openssl-crlf-injection\n\n3. CVE-2023-52447:\nLinux Kernel BPF memory corruption\nhttps://github.com/google/security-research/tree/master/pocs/linux8 /kernelctf/CVE-2023-52447_cos\n\nHonestly, I've used that number 1 angular method is almost like node.js with rce. \ud83d\ude07", "creation_timestamp": "2024-10-24T06:17:45.000000Z"}