Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-5290 PoC — wpa_supplicant 安全漏洞

Source
https://github.com/zrax-x/CVE-2024-5290-exp
Associated Vulnerability
Title:wpa_supplicant 安全漏洞 (CVE-2024-5290)
Description:An issue was discovered in Ubuntu wpa_supplicant that resulted in loading of arbitrary shared objects, which allows a local unprivileged attacker to escalate privileges to the user that wpa_supplicant runs as (usually root). Membership in the netdev group or access to the dbus interface of wpa_supplicant allow an unprivileged user to specify an arbitrary path to a module to be loaded by the wpa_supplicant process; other escalation paths might exist.
Description
exp of CVE-2024-35235&CVE-2024-5290
Readme
# CVE-2024-35235-CVE-2024-5290-exp
exp of CVE-2024-35235&CVE-2024-5290

## Affected versions

Ubuntu 24.04 TLS

- CUPS: 2.4.7-1.2ubuntu7
- wpa_supplicant: <= 2.10-21build4

Please check the versions of these two software carefully, as the vulnerability may have been fixed in higher versions.

## Screen

![exploit](exploit.png)
File Snapshot

 [4.0K]  /data/pocs/e74cb11a6c4a7bdbe88f6624419b72617a2cca1e
├── [146K]  exploit.png
├── [7.9K]  exp.sh
└── [ 333]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →