{"uuid": "937032f0-41ec-4214-a521-922398d8dd7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37404", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11280", "content": "#exploit\n1. CVE-2024-42640:\nUnauthenticated RCE via Angular-Base64-Upload Library\nhttps://github.com/rvizx/CVE-2024-42640\n\n2. CVE-2024-37404:\nIvanti Connect Secure - Authenticated RCE via OpenSSL CRLF Injection\nhttps://blog.amberwolf.com/blog/2024/october/cve-2024-37404-ivanti-connect-secure-authenticated-rce-via-openssl-crlf-injection\n\n3. CVE-2023-52447:\nLinux Kernel BPF memory corruption\nhttps://github.com/google/security-research/tree/master/pocs/linux/kernelctf/CVE-2023-52447_cos", "creation_timestamp": "2024-10-14T17:10:12.000000Z"}