awakened1712 - Security Researcher - Exploit Intelligence Platform

CVE-2019-11932 NOMISEC HIGH WORKING POC

android-gif-drawable <1.2.18 - RCE

A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.

208 stars

CVSS 8.8

View Code

CVE-2020-11932 NOMISEC LOW WORKING POC

Canonical Subiquity < 20.05.2 - Log Information Exposure

It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered.

98 stars

CVSS 2.3

View Code

CVE-2019-11932 NOMISEC HIGH WORKING POC

android-gif-drawable <1.2.18 - RCE

A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.

4 stars

CVSS 8.8

View Code

CVE-2019-11932 GITLAB HIGH WORKING POC

android-gif-drawable <1.2.18 - RCE

A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.

CVSS 8.8

View Code