CVE-2024-37742

HIGH

Safe Exam Browser <3.5.0 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 6 public exploits for CVE-2024-37742. PoCs published by Aar0nD0m1n1c, tungdn9988.

AI-analyzed exploit summary This repository contains a functional PoC exploit for CVE-2024-37742, which leverages incorrect access control in Safe Exam Browser (SEB) ≤ 3.5.0 on Windows to share clipboard data between the SEB kiosk mode and the underlying system. The exploit uses Python scripts to monitor clipboard content and retrieve answers from a JSON file or Gemini API, bypassing exam controls.

Description

Insecure Access Control in Safe Exam Browser (SEB) = 3.5.0 on Windows. The vulnerability allows an attacker to share clipboard data between the SEB kiosk mode and the underlying system, compromising exam integrity. By exploiting this flaw, an attacker can bypass exam controls and gain an unfair advantage during exams.

Exploits (6)

nomisec WORKING POC 6 stars
by Aar0nD0m1n1c · poc
https://github.com/Aar0nD0m1n1c/CVE-2024-37742

This repository contains a functional PoC exploit for CVE-2024-37742, which leverages incorrect access control in Safe Exam Browser (SEB) ≤ 3.5.0 on Windows to share clipboard data between the SEB kiosk mode and the underlying system. The exploit uses Python scripts to monitor clipboard content and retrieve answers from a JSON file or Gemini API, bypassing exam controls.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Safe Exam Browser (SEB) ≤ 3.5.0 (Windows)
No auth needed
Prerequisites: Python environment with pyperclip and wmi modules · Access to the system running SEB in kiosk mode · JSON file with answers or Gemini API key
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec STUB
by tungdn9988 · poc
https://github.com/tungdn9988/CVE-2024-37742

The repository contains only a README with a title in Vietnamese but no actual exploit code or technical details. It appears to be a placeholder or incomplete submission.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: SEB ≤ 3.5.0 (Windows)
No auth needed
devstral-2 · analyzed May 13, 2026 Full analysis →
inthewild WORKING POC
poc
https://github.com/shadow3ore/cve-2024-37742

This repository contains a functional PoC for CVE-2024-37742, exploiting a clipboard access control vulnerability in Safe Exam Browser (SEB) ≤ 3.5.0 on Windows. The exploit uses pyperclip to manipulate clipboard data and WMI to monitor battery status as a trigger for answer retrieval from a JSON file or Gemini API.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Safe Exam Browser (SEB) ≤ 3.5.0 (Windows)
No auth needed
Prerequisites: Safe Exam Browser (SEB) ≤ 3.5.0 installed on Windows · Python environment with pyperclip and wmi modules · Answer-Key directory with JSON files for answer retrieval or Gemini API key
devstral-2 · analyzed Feb 23, 2026 Full analysis →
inthewild WORKING POC
poc
https://github.com/nyxr0ot/cve-2024-37742

This repository contains a functional PoC for CVE-2024-37742, exploiting a clipboard access control vulnerability in Safe Exam Browser (SEB) ≤ 3.5.0 on Windows. The exploit uses pyperclip to manipulate clipboard data and WMI to monitor battery status as a trigger for answer retrieval from a JSON file or Gemini API.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Safe Exam Browser (SEB) ≤ 3.5.0 (Windows)
No auth needed
Prerequisites: pyperclip · wmi · google.generativeai · JSON file with answers or Gemini API key
devstral-2 · analyzed Feb 23, 2026 Full analysis →
inthewild WORKING POC
poc
https://github.com/eteblue/cve-2024-37742

This repository contains a functional PoC for CVE-2024-37742, exploiting a clipboard access control vulnerability in Safe Exam Browser (SEB) ≤ 3.5.0 on Windows. The exploit uses pyperclip to manipulate clipboard data and WMI to monitor battery status as a trigger for answer retrieval from a JSON file or Gemini API.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Safe Exam Browser (SEB) ≤ 3.5.0 (Windows)
No auth needed
Prerequisites: Safe Exam Browser (SEB) ≤ 3.5.0 installed on Windows · Python environment with pyperclip and wmi modules · Answer-Key directory with JSON files or Gemini API key
devstral-2 · analyzed Feb 23, 2026 Full analysis →
inthewild WORKING POC
poc
https://github.com/cha0sk3rn3l/cve-2024-37742

This repository contains a functional PoC for CVE-2024-37742, exploiting a clipboard access control vulnerability in Safe Exam Browser (SEB) ≤ 3.5.0 on Windows. The exploit uses pyperclip to manipulate clipboard data and WMI to monitor battery status as a trigger for answer retrieval from a JSON file or Gemini API.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Safe Exam Browser (SEB) ≤ 3.5.0 (Windows)
No auth needed
Prerequisites: Safe Exam Browser (SEB) ≤ 3.5.0 installed on Windows · Python environment with pyperclip and wmi modules · Answer-Key directory with JSON files or Gemini API key
devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (2)

Core 2
Core References

Scores

CVSS v3 8.2
EPSS 0.0047
EPSS Percentile 65.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-284
Status published
Published Jun 25, 2024
Tracked Since Feb 18, 2026