Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-28432 PoC — Minio Information Disclosure in Cluster Deployment

Source
https://github.com/0xRulez/CVE-2023-28432
Associated Vulnerability
Title:Minio Information Disclosure in Cluster Deployment (CVE-2023-28432)
Description:Minio is a Multi-Cloud Object Storage framework. In a cluster deployment starting with RELEASE.2019-12-17T23-16-33Z and prior to RELEASE.2023-03-20T20-16-18Z, MinIO returns all environment variables, including `MINIO_SECRET_KEY` and `MINIO_ROOT_PASSWORD`, resulting in information disclosure. All users of distributed deployment are impacted. All users are advised to upgrade to RELEASE.2023-03-20T20-16-18Z.
Description
MinIO vulnerability exploit - CVE-2023-28432
Readme


# CVE-2023-28432 - PoC

## Description
This python3 script is designed to exploit CVE-2023-28432, which potentially affects certain MinIO server configurations. The script makes a POST request to a specified hostname, attempting to retrieve sensitive environment variables such as `MINIO_ROOT_PASSWORD` and `MINIO_UPDATE_MINISIGN_PUBKEY`.

## Requirements
- Python 3
- `requests` library

## Installation
Before running the script, ensure you have Python 3 installed on your system. You can install the required Python packages using pip:

```bash
pip3 install requests
```

## Usage
The script accepts the hostname as a required argument and has options for using HTTPS and printing raw data.

```bash
python3 exploit.py [hostname] [--use-https] [--raw]
```

### Arguments
- `hostname`: Specifies the target hostname, e.g., 'domain.htb'.
- `--use-https`: Enable this option to use HTTPS for the requests. The default is HTTP.
- `--raw`: Print the raw JSON data retrieved from the server.

## Example
To run the script against `example.htb` using HTTPS and print formatted environment variables:

```bash
python3 exploit.py example.htb --use-https
```

To print the raw JSON response:

```bash
python3 exploit.py example.htb --use-https --raw
```

## Note
This tool is for educational and ethical testing purposes only. Unauthorized testing of servers without explicit permission is illegal and unethical.
File Snapshot

 [4.0K]  /data/pocs/3b4fd3518f808c660437d0d5eaf7b3435d9fecaf
├── [1.6K]  poc.py
└── [1.4K]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →