CVE-2024-37742

HIGH

Safe Exam Browser <3.5.0 - Info Disclosure

Title source: llm

Description

Insecure Access Control in Safe Exam Browser (SEB) = 3.5.0 on Windows. The vulnerability allows an attacker to share clipboard data between the SEB kiosk mode and the underlying system, compromising exam integrity. By exploiting this flaw, an attacker can bypass exam controls and gain an unfair advantage during exams.

Exploits (5)

nomisec WORKING POC 6 stars

by Aar0nD0m1n1c · poc

https://github.com/Aar0nD0m1n1c/CVE-2024-37742

View Code ZIP pw:eip

inthewild WORKING POC

poc

https://github.com/shadow3ore/cve-2024-37742

View Code ZIP pw:eip

inthewild WORKING POC

poc

https://github.com/nyxr0ot/cve-2024-37742

View Code ZIP pw:eip

inthewild WORKING POC

poc

https://github.com/eteblue/cve-2024-37742

View Code ZIP pw:eip

inthewild WORKING POC

poc

https://github.com/cha0sk3rn3l/cve-2024-37742

View Code ZIP pw:eip

References (2)

[Various Sources] https://github.com/Eteblue/CVE-2024-37742

[Various Sources] https://youtu.be/SOm0Hgny_3U

Scores

CVSS v3 8.2

EPSS 0.0047

EPSS Percentile 64.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Details

CWE

CWE-284

Status published

Published Jun 25, 2024

Tracked Since Feb 18, 2026