CVE-2024-32019
HIGHnetdata 1.44.0-60-1.45.0-169 and 1.45.0-1.45.3 - Local Privilege Escalation via PATH Environment Variable Manipulation
Title source: llmExploitation Summary
EIP tracks 17 public exploits for CVE-2024-32019.
PoCs published by AzureADTrent, dollarboysushil, AliElKhatteb, including Metasploit module exploits/linux/local/ndsudo_cve_2024_32019.
AI-analyzed exploit summary This repository contains a functional privilege escalation exploit for CVE-2024-32019, targeting the `ndsudo` utility in Netdata. The exploit leverages PATH injection to execute a malicious `nvme` binary with root privileges.
Description
Netdata is an open source observability tool. In affected versions the `ndsudo` tool shipped with affected versions of the Netdata Agent allows an attacker to run arbitrary programs with root permissions. The `ndsudo` tool is packaged as a `root`-owned executable with the SUID bit set. It only runs a restricted set of external commands, but its search paths are supplied by the `PATH` environment variable. This allows an attacker to control where `ndsudo` looks for these commands, which may be a path the attacker has write access to. This may lead to local privilege escalation. This vulnerability has been addressed in versions 1.45.3 and 1.45.2-169. Users are advised to upgrade. There are no known workarounds for this vulnerability.
Exploits (17)
This repository contains a functional privilege escalation exploit for CVE-2024-32019, targeting the `ndsudo` utility in Netdata. The exploit leverages PATH injection to execute a malicious `nvme` binary with root privileges.
This repository contains a functional exploit for CVE-2024-32019, targeting a PATH-based privilege escalation vulnerability in Netdata's ndsudo. The exploit compiles a malicious binary, transfers it to the target, and manipulates the PATH environment variable to escalate privileges to root.
This PoC exploits CVE-2024-32019, a local privilege escalation vulnerability in Netdata's ndsudo due to an untrusted search path. The exploit manipulates the PATH environment variable to execute a malicious binary named 'nvme' with elevated privileges.
This repository contains a functional privilege escalation PoC for CVE-2024-32019, exploiting an untrusted search path vulnerability in Netdata's ndsudo SUID binary. The exploit manipulates the PATH environment variable to execute a malicious 'nvme' binary as root.
The repository contains a trivial C program that spawns a root shell but lacks any technical details about CVE-2024-32019. The README is vague and does not explain the vulnerability or how the PoC demonstrates it.
This repository contains a functional exploit for CVE-2024-34070, which leverages a stored XSS vulnerability to create an admin account in the target application. The exploit uses a crafted payload to bypass authentication and execute JavaScript that adds a new admin user.
This is a functional exploit for CVE-2024-32019, leveraging a stored XSS vulnerability in Froxlor to create an admin account via CSRF token extraction and a malicious payload. The script automates the attack by sending a crafted request to the target server.
The repository contains a functional Bash script that exploits a PATH hijacking vulnerability in Netdata's `ndsudo` binary (CVE-2024-32019) to achieve local privilege escalation. The exploit creates a malicious `nvme` binary, manipulates the PATH environment variable, and leverages the SUID binary to execute arbitrary commands with elevated privileges.
This repository contains a Bash script that exploits a PATH hijacking vulnerability in the SUID binary `ndsudo` of Netdata (CVE-2024-32019) to achieve local privilege escalation. The script is designed to bypass common restrictions such as `nosuid` and Bash privilege dropping.
The repository contains functional exploit scripts for CVE-2024-32019, which leverages an untrusted search path in the ndsudo tool (part of Netdata Agent) to execute a malicious binary with root privileges. The exploit involves compiling a malicious 'nvme' binary, poisoning the PATH environment variable, and triggering ndsudo to execute it.
This repository contains a functional Python exploit for CVE-2024-32019, a local privilege escalation vulnerability in Netdata's `ndsudo` component. The exploit leverages PATH environment variable manipulation to execute arbitrary commands as root by hijacking allowed binaries.
This repository contains a functional privilege escalation exploit for CVE-2024-32019, leveraging PATH environment variable manipulation in Netdata's 'ndsudo' tool to execute a malicious 'nvme' binary, resulting in a root reverse shell.
This PoC exploits a local privilege escalation vulnerability in Netdata's `ndsudo` utility by injecting a malicious script into the user's PATH, which is then executed as root when `ndsudo` is invoked with an allowed command name.
The repository provides a functional exploit for CVE-2024-32019, a local privilege escalation vulnerability in Netdata's `ndsudo` helper. It includes detailed steps to exploit the PATH resolution flaw, along with diagnostic tools to verify the vulnerability.
This repository contains a functional exploit for CVE-2024-32019, leveraging a vulnerability in Netdata's ndsudo to escalate privileges by setting the SUID bit on /bin/bash. The exploit consists of a Go binary (poc.go) that performs the privilege escalation and a bash script (exploit.sh) to deliver and execute the payload on the target machine.
This repository provides a functional proof-of-concept exploit for CVE-2024-32019, a local privilege escalation vulnerability in Netdata's `ndsudo` plugin. The exploit leverages PATH hijacking to execute a malicious binary with elevated privileges, resulting in a root shell.
This Metasploit module exploits an untrusted search path vulnerability in Netdata's `ndsudo` binary (CVE-2024-32019) to achieve local privilege escalation by uploading a malicious `nvme` binary to a writable directory and manipulating the PATH variable.
References (2)
Scores
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H