seadragnol

4 exploits Active since Apr 2022
CVE-2023-52927 NOMISEC HIGH WORKING POC
Linux Kernel 5.18-6.1.130 - Use-After-Free in Netfilter Expectation Handling
In the Linux kernel, the following vulnerability has been resolved: netfilter: allow exp not to be removed in nf_ct_find_expectation Currently nf_conntrack_in() calling nf_ct_find_expectation() will remove the exp from the hash table. However, in some scenario, we expect the exp not to be removed when the created ct will not be confirmed, like in OVS and TC conntrack in the following patches. This patch allows exp not to be removed by setting IPS_CONFIRMED in the status of the tmpl.
9 stars
CVSS 7.8
CVE-2022-32250 NOMISEC HIGH WORKING POC
Linux Kernel 4.1-5.18.1 - Use-After-Free in nf_tables_api.c
net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.
3 stars
CVSS 7.8
CVE-2024-29943 NOMISEC CRITICAL WORKING POC
Firefox < 124.0.1 - Memory Corruption
An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling range-based bounds check elimination. This vulnerability affects Firefox < 124.0.1.
2 stars
CVSS 9.8
CVE-2022-1015 NOMISEC MEDIUM WORKING POC
Linux Kernel < 5.16.18 - Out-of-bounds Write in netfilter nf_tables_api
A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_api.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write issue.
CVSS 6.6