CVE-2020-24370

MEDIUM

Lua 5.4.0 - Integer Underflow via getlocal/setlocal Debug Interface

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2020-24370. PoCs published by RenukaSelvar.

AI-analyzed exploit summary This repository contains the source code for Lua 5.3.5, specifically highlighting the patches applied after CVE-2020-24370. The code includes modifications to core Lua files such as lapi.c, lauxlib.c, and others, but does not contain an exploit PoC or offensive techniques.

Description

ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).

Exploits (2)

nomisec WRITEUP

by RenukaSelvar · poc

https://github.com/RenukaSelvar/lua_CVE-2020-24370_AfterPatch

View Code ZIP pw:eip

This repository contains the source code for Lua 5.3.5, specifically highlighting the patches applied after CVE-2020-24370. The code includes modifications to core Lua files such as lapi.c, lauxlib.c, and others, but does not contain an exploit PoC or offensive techniques.

Classification

Writeup 90%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: Lua 5.3.5

No auth needed

Prerequisites: Access to Lua 5.3.5 source code

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC

by RenukaSelvar · poc

https://github.com/RenukaSelvar/lua_CVE-2020-24370

View Code ZIP pw:eip

This repository contains a proof-of-concept exploit for CVE-2020-24370, a vulnerability in Lua 5.3.5. The exploit targets a stack overflow issue in the Lua interpreter, allowing for potential remote code execution (RCE) or denial of service (DoS).

Classification

Working Poc 90%

Attack Type

Rce | Dos

Complexity

Moderate

Reliability

Reliable

Target: Lua 5.3.5

No auth needed

Prerequisites: Access to a system running Lua 5.3.5 · Ability to execute arbitrary Lua code

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory vendor-advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QXYMCIUNGK26VHAYHGP5LPW56G2KWOHQ/

Third Party Advisory vendor-advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E6KONNG6UEI3FMEOY67NDZC32NBGBI44/

Mailing List, Third Party Advisory mailing-list

https://lists.debian.org/debian-lts-announce/2020/09/msg00019.html

Third Party Advisory mailing-list

https://lists.debian.org/debian-lts-announce/2023/06/msg00031.html

Exploit, Mailing List, Vendor Advisory

http://lua-users.org/lists/lua-l/2020-07/msg00324.html

Patch, Third Party Advisory

https://github.com/lua/lua/commit/a585eae6e7ada1ca9271607a4f48dfb17868ab7b

View Patch ZIP pw:eip

Scores

CVSS v3 5.3

EPSS 0.0386

EPSS Percentile 88.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-191

Status published

Products (14)

debian/debian_linux 9.0

fedoraproject/fedora 31

fedoraproject/fedora 32

lua/lua 5.2.0 (3 CPE variants)

lua/lua 5.2.1

lua/lua 5.2.2

lua/lua 5.2.3

lua/lua 5.3.0 (3 CPE variants)

lua/lua 5.3.1

lua/lua 5.3.2

... and 4 more

Published Aug 17, 2020

Tracked Since Feb 18, 2026