Jenson Zhao - Security Researcher - Exploit Intelligence Platform

CVE-2021-43116 GITHUB HIGH python SCANNER

Nacos 2.0.3 - Privilege Escalation

An Access Control vulnerability exists in Nacos 2.0.3 in the access prompt page; enter username and password, click on login to capture packets and then change the returned package, which lets a malicious user login.

CVSS 8.8

View Code

CVE-2024-24747 GITHUB HIGH python WORKING POC

MinIO - Privilege Escalation

MinIO is a High Performance Object Storage. When someone creates an access key, it inherits the permissions of the parent key. Not only for `s3:*` actions, but also `admin:*` actions. Which means unless somewhere above in the access-key hierarchy, the `admin` rights are denied, access keys will be able to simply override their own `s3` permissions to something more permissive. The vulnerability is fixed in RELEASE.2024-01-31T20-20-33Z.

CVSS 8.8

View Code

CVE-2022-35919 GITHUB HIGH python WORKING POC

MinIO - Info Disclosure

MinIO is a High Performance Object Storage released under GNU Affero General Public License v3.0. In affected versions all 'admin' users authorized for `admin:ServerUpdate` can selectively trigger an error that in response, returns the content of the path requested. Any normal OS system would allow access to contents at any arbitrary paths that are readable by MinIO process. Users are advised to upgrade. Users unable to upgrade may disable ServerUpdate API by denying the `admin:ServerUpdate` action for your admin users via IAM policies.

CVSS 7.4

View Code

CVE-2021-43116 EXPLOITDB HIGH python SCANNER

Nacos 2.0.3 - Privilege Escalation

An Access Control vulnerability exists in Nacos 2.0.3 in the access prompt page; enter username and password, click on login to capture packets and then change the returned package, which lets a malicious user login.

CVSS 8.8

View Code

CVE-2024-24747 EXPLOITDB HIGH text WORKING POC

MinIO - Privilege Escalation

MinIO is a High Performance Object Storage. When someone creates an access key, it inherits the permissions of the parent key. Not only for `s3:*` actions, but also `admin:*` actions. Which means unless somewhere above in the access-key hierarchy, the `admin` rights are denied, access keys will be able to simply override their own `s3` permissions to something more permissive. The vulnerability is fixed in RELEASE.2024-01-31T20-20-33Z.

CVSS 8.8

View Code

CVE-2022-35919 EXPLOITDB HIGH python WORKING POC

MinIO - Info Disclosure

MinIO is a High Performance Object Storage released under GNU Affero General Public License v3.0. In affected versions all 'admin' users authorized for `admin:ServerUpdate` can selectively trigger an error that in response, returns the content of the path requested. Any normal OS system would allow access to contents at any arbitrary paths that are readable by MinIO process. Users are advised to upgrade. Users unable to upgrade may disable ServerUpdate API by denying the `admin:ServerUpdate` action for your admin users via IAM policies.

CVSS 7.4

View Code