Exploitation Summary
EIP tracks 4 public exploits for CVE-2025-1716. PoCs published by adminlove520, danigil, 0xDaeras.
AI-analyzed exploit summary The repository contains functional exploit code for multiple CVEs, including authentication bypass vulnerabilities in TOTOLINK devices and a scanner for Fortinet SSL VPN (CVE-2024-21762). The PoCs demonstrate the vulnerabilities with clear technical details and functional code.
Description
picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package (hosted, for example, on pypi.org or GitHub) via `pip.main()`. Because pip is not a restricted global, the model, when scanned with picklescan, would pass security checks and appear to be safe, when it could instead prove to be problematic.
Exploits (4)
The repository contains functional exploit code for multiple CVEs, including authentication bypass vulnerabilities in TOTOLINK devices and a scanner for Fortinet SSL VPN (CVE-2024-21762). The PoCs demonstrate the vulnerabilities with clear technical details and functional code.
The repository contains a malicious setup.py that executes an arbitrary command (touch /tmp/cve-2025-1716.txt) during installation, which is unrelated to the stated CVE. No legitimate exploit code or technical details are provided.
This PoC exploits CVE-2025-1716 by leveraging a malicious `setup.py` file to execute arbitrary commands during package installation. The `os.system` call reads `/app/flag.txt`, demonstrating command injection via package installation.
The repository claims to be a PoC for CVE-2025-1716 but contains a malicious `setup.py` that silently executes a curl command to fetch a remote payload. No actual exploit code or details about the vulnerability are present.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H