CVE-2024-3094

CRITICAL NUCLEI LAB

xz <5.6.0 - Code Injection

Title source: llm

Description

Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in the liblzma code. This results in a modified liblzma library that can be used by any software linked against this library, intercepting and modifying the data interaction with this library.

Exploits (84)

nomisec WORKING POC 3,540 stars
by amlweems · poc
https://github.com/amlweems/xzbot
nomisec WORKING POC 146 stars
by lockness-Ko · poc
https://github.com/lockness-Ko/xz-vulnerable-honeypot
nomisec SCANNER 72 stars
by FabioBaroni · poc
https://github.com/FabioBaroni/CVE-2024-3094-checker
nomisec SCANNER 54 stars
by byinarie · poc
https://github.com/byinarie/CVE-2024-3094-info
nomisec SCANNER 43 stars
by jfrog · poc
https://github.com/jfrog/cve-2024-3094-tools
nomisec SCANNER 26 stars
by gensecaihq · poc
https://github.com/gensecaihq/CVE-2024-3094-Vulnerability-Checker-Fixer
nomisec WRITEUP 19 stars
by robertdfrench · poc
https://github.com/robertdfrench/ifuncd-up
nomisec WORKING POC 17 stars
by 0xlane · poc
https://github.com/0xlane/xz-cve-2024-3094
nomisec WORKING POC 14 stars
by r0binak · poc
https://github.com/r0binak/xzk8s
nomisec SCANNER 11 stars
by teyhouse · poc
https://github.com/teyhouse/CVE-2024-3094
nomisec WRITEUP 10 stars
by emirkmo · poc
https://github.com/emirkmo/xz-backdoor-github
nomisec SCANNER 8 stars
by HackerHermanos · poc
https://github.com/HackerHermanos/CVE-2024-3094_xz_check
nomisec WORKING POC 5 stars
by badsectorlabs · poc
https://github.com/badsectorlabs/ludus_xz_backdoor
nomisec SCANNER 5 stars
by wgetnz · poc
https://github.com/wgetnz/CVE-2024-3094-check
nomisec WORKING POC 4 stars
by neuralinhibitor · poc
https://github.com/neuralinhibitor/xzwhy
nomisec SCANNER 4 stars
by KaminaDuck · poc
https://github.com/KaminaDuck/ansible-CVE-2024-3094
nomisec SCANNER 4 stars
by Yuma-Tsushima07 · poc
https://github.com/Yuma-Tsushima07/CVE-2024-3094
nomisec SCANNER 4 stars
by lypd0 · poc
https://github.com/lypd0/CVE-2024-3094-Vulnerabity-Checker
nomisec WRITEUP 3 stars
by przemoc · poc
https://github.com/przemoc/xz-backdoor-links
nomisec SCANNER 3 stars
by felipecosta09 · poc
https://github.com/felipecosta09/cve-2024-3094
nomisec SCANNER 3 stars
by gustavorobertux · poc
https://github.com/gustavorobertux/CVE-2024-3094
nomisec SCANNER 3 stars
by pentestfunctions · poc
https://github.com/pentestfunctions/CVE-2024-3094
github SCANNER 2 stars
by adminlove520 · pythonpoc
https://github.com/adminlove520/CVE-Poc_All_in_One/tree/main/2024/CVE-2024-3094
nomisec SCANNER 2 stars
by Security-Phoenix-demo · poc
https://github.com/Security-Phoenix-demo/CVE-2024-3094-fix-exploits
nomisec WRITEUP 2 stars
by mrk336 · poc
https://github.com/mrk336/CVE-2024-3094
nomisec WORKING POC 2 stars
by DANO-AMP · poc
https://github.com/DANO-AMP/CVE-2024-3094
nomisec SCANNER 2 stars
by Bella-Bc · poc
https://github.com/Bella-Bc/xz-backdoor-CVE-2024-3094-Check
nomisec SCANNER 2 stars
by ScrimForever · poc
https://github.com/ScrimForever/CVE-2024-3094
nomisec SCANNER 2 stars
by Horizon-Software-Development · poc
https://github.com/Horizon-Software-Development/CVE-2024-3094
nomisec WRITEUP 1 stars
by M1lo25 · poc
https://github.com/M1lo25/CS50FinalProject
nomisec WRITEUP 1 stars
by Ikram124 · poc
https://github.com/Ikram124/CVE-2024-3094-analysis
nomisec WRITEUP 1 stars
by 24Owais · poc
https://github.com/24Owais/threat-intel-cve-2024-3094
nomisec WORKING POC 1 stars
by valeriot30 · poc
https://github.com/valeriot30/cve-2024-3094
github WRITEUP 1 stars
by AsimCr · pythonpoc
https://github.com/AsimCr/POC_Collecter_Bot/tree/master/CVE_Looter/2025/05/07/CVE-2024-3094
nomisec SCANNER 1 stars
by robertdebock · poc
https://github.com/robertdebock/ansible-playbook-cve-2024-3094
nomisec SCANNER 1 stars
by brinhosa · poc
https://github.com/brinhosa/CVE-2024-3094-One-Liner
nomisec SCANNER 1 stars
by galacticquest · poc
https://github.com/galacticquest/cve-2024-3094-detect
nomisec SCANNER 1 stars
by harekrishnarai · poc
https://github.com/harekrishnarai/xz-utils-vuln-checker
nomisec SCANNER
by 0xBlackash · poc
https://github.com/0xBlackash/CVE-2024-3094
nomisec WORKING POC
by Ava-Vispilio · poc
https://github.com/Ava-Vispilio/CVE-2024-3094
nomisec WRITEUP
by h3raklez · poc
https://github.com/h3raklez/CVE-2024-3094
nomisec WORKING POC
by vnchk1 · poc
https://github.com/vnchk1/sec_review_cve-2024-3094
nomisec STUB
by ElinaNotElina · poc
https://github.com/ElinaNotElina/cve-2024-3094-analysis
nomisec WORKING POC
by extracoding-dozen · poc
https://github.com/extracoding-dozen/CVE-2024-3094
nomisec STUB
by michalAshurov · poc
https://github.com/michalAshurov/writeup-CVE-2024-3094
nomisec WRITEUP
by zaryouhashraf · poc
https://github.com/zaryouhashraf/CVE-2024-3094
gitlab SCANNER
by ThemeHackers · poc
https://gitlab.com/ThemeHackers/CVE-2024-3094-info
nomisec WRITEUP
by hackura · poc
https://github.com/hackura/xz-cve-2024-3094
nomisec NO CODE
by BOSE122 · poc
https://github.com/BOSE122/CVE-2024-3094
nomisec STUB
by encikayelwhitehat-glitch · poc
https://github.com/encikayelwhitehat-glitch/CVE-2024-3094
nomisec WORKING POC
by ThomRgn · poc
https://github.com/ThomRgn/xzutils_backdoor_obfuscation
nomisec SCANNER
by Titus-soc · poc
https://github.com/Titus-soc/-CVE-2024-3094-Vulnerability-Checker-Fixer-Public
nomisec SUSPICIOUS
by laxmikumari615 · poc
https://github.com/laxmikumari615/Linux---Security---Detect-and-Mitigate-CVE-2024-3094
nomisec WRITEUP
by been22426 · poc
https://github.com/been22426/CVE-2024-3094
nomisec WORKING POC
by shefirot · poc
https://github.com/shefirot/CVE-2024-3094
nomisec WRITEUP
by AndreaCicca · poc
https://github.com/AndreaCicca/Sicurezza-Informatica-Presentazione
nomisec WRITEUP
by zpxlz · poc
https://github.com/zpxlz/CVE-2024-3094
nomisec SCANNER
by fevar54 · poc
https://github.com/fevar54/Detectar-Backdoor-en-liblzma-de-XZ-utils-CVE-2024-3094-
nomisec SCANNER
by Juul · poc
https://github.com/Juul/xz-backdoor-scan
nomisec SCANNER
by iheb2b · poc
https://github.com/iheb2b/CVE-2024-3094-Checker
nomisec SCANNER
by weltregie · poc
https://github.com/weltregie/liblzma-scan
nomisec SCANNER
by TheTorjanCaptain · poc
https://github.com/TheTorjanCaptain/CVE-2024-3094-Checker
nomisec WORKING POC
by MagpieRYL · poc
https://github.com/MagpieRYL/CVE-2024-3094-backdoor-env-container
nomisec SCANNER
by devjanger · poc
https://github.com/devjanger/CVE-2024-3094-XZ-Backdoor-Detector
nomisec SCANNER
by hackingetico21 · poc
https://github.com/hackingetico21/revisaxzutils
nomisec SCANNER
by ackemed · poc
https://github.com/ackemed/detectar_cve-2024-3094
nomisec STUB
by dah4k · poc
https://github.com/dah4k/CVE-2024-3094
nomisec SCANNER
by mesutgungor · poc
https://github.com/mesutgungor/xz-backdoor-vulnerability
nomisec SCANNER
by mightysai1997 · poc
https://github.com/mightysai1997/CVE-2024-3094
nomisec SCANNER
by mightysai1997 · poc
https://github.com/mightysai1997/CVE-2024-3094-info
nomisec SCANNER
by Mustafa1986 · poc
https://github.com/Mustafa1986/CVE-2024-3094
nomisec SCANNER
by MrBUGLF · poc
https://github.com/MrBUGLF/XZ-Utils_CVE-2024-3094
nomisec NO CODE
by spidygal · poc
https://github.com/spidygal/CVE-2024-3094-Nmap-NSE-script
nomisec SCANNER
by Simplifi-ED · poc
https://github.com/Simplifi-ED/CVE-2024-3094-patcher
nomisec SUSPICIOUS
by isuruwa · poc
https://github.com/isuruwa/CVE-2024-3094
nomisec SCANNER
by hazemkya · poc
https://github.com/hazemkya/CVE-2024-3094-checker
nomisec SCANNER
by ashwani95 · poc
https://github.com/ashwani95/CVE-2024-3094
nomisec SCANNER
by Fractal-Tess · poc
https://github.com/Fractal-Tess/CVE-2024-3094
nomisec SCANNER
by bioless · poc
https://github.com/bioless/xz_cve-2024-3094_detection
nomisec SCANNER
by OpensourceICTSolutions · poc
https://github.com/OpensourceICTSolutions/xz_utils-CVE-2024-3094

Nuclei Templates (1)

XZ - Embedded Malicious Code
CRITICALVERIFIEDby pdteam

References (55)

... and 35 more

Scores

CVSS v3 10.0
EPSS 0.8459
EPSS Percentile 99.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Lab Environment

COMMUNITY
Community Lab
docker pull ghcr.io/lockness-ko/xz-backdoor:latest
docker pull ghcr.io/lockness-ko/xz-vulnerable-honeypot:latest
+75 more repos

Details

CWE
CWE-506
Status published
Products (2)
tukaani/xz 5.6.0
tukaani/xz 5.6.1
Published Mar 29, 2024
Tracked Since Feb 18, 2026