justinsteven

4 exploits Active since Jul 2017
CVE-2020-10759 NOMISEC MEDIUM WORKING POC
Red Hat Enterprise Linux - PGP Signature Verification Bypass in fwupd
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service (LVFS) is either not implemented or enabled in versions of fwupd shipped with Red Hat Enterprise Linux 7 and 8. The highest threat from this vulnerability is to confidentiality and integrity.
CVSS 6.0
CVE-2015-8239 NOMISEC HIGH WORKING POC
sudo - Race Condition in SHA-2 Digest Handling
The SHA-2 digest support in the sudoers plugin in sudo after 1.8.7 allows local users with write permissions to parts of the called command to replace them before it is executed.
CVSS 7.0
CVE-2020-10759 WRITEUP MEDIUM WRITEUP
Red Hat Enterprise Linux - PGP Signature Verification Bypass in fwupd
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service (LVFS) is either not implemented or enabled in versions of fwupd shipped with Red Hat Enterprise Linux 7 and 8. The highest threat from this vulnerability is to confidentiality and integrity.
CVSS 6.0
CVE-2017-1000037 WRITEUP CRITICAL WRITEUP
rvm < 1.28.0 - Remote Code Execution via Environment Variable Injection
RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically installs gems as specified by files in $PWD resulting in code execution RVM automatically does "bundle install" on a Gemfile specified by .versions.conf in $PWD resulting in code execution
CVSS 9.8