CVE-2025-6018

This exploit leverages CVE-2025-6018 to escalate privileges on Linux systems by manipulating the PAM environment via ~/.pam_environment, allowing unauthorized SystemD session control. It includes vulnerability checks, payload delivery, and an interactive shell for post-exploitation.

This repository contains a functional Proof of Concept (PoC) for chaining CVE-2025-6018 (PAM/Polkit Active Session Bypass) and CVE-2025-6019 (libblockdev SUID Mount Flaw) to achieve local privilege escalation (LPE) to root on vulnerable Linux systems.

This repository contains a privilege escalation exploit for CVE-2025-6018 and CVE-2025-6019, leveraging PAM environment manipulation and XFS filesystem operations to achieve root access. The exploit involves creating a loop device with a crafted XFS image and triggering a race condition to escalate privileges.

This is a functional privilege escalation exploit for CVE-2025-6018, targeting PAM's pam_env.so module via environment variable injection. It automates vulnerability checks, payload delivery, and privilege escalation testing through SSH.

This PoC exploits CVE-2025-6018 by poisoning PAM environment variables via SSH to achieve privilege escalation. It automates the process of checking vulnerability conditions, injecting malicious environment variables, and validating the exploit's success.

This is a multi-stage exploit chain combining CVE-2025-6018 (PAM environment injection) and CVE-2025-6019 (UDisks2 privilege escalation) to achieve local privilege escalation to root on openSUSE Leap 15.x systems. The exploit creates an XFS image with a SUID bash binary, leverages PAM misconfiguration, and escalates privileges via UDisks2.

This PoC exploits CVE-2025-6018 (PAM environment poisoning) and CVE-2025-6019 (XFS resize privilege escalation) to achieve local privilege escalation (LPE) to root. It involves creating a malicious environment file and a crafted XFS image with a SUID bash binary.

This repository contains a functional proof-of-concept exploit for CVE-2025-6018 and CVE-2025-6019, targeting openSUSE and SUSE Linux Enterprise 15. The exploit chain involves PAM environment variable injection to bypass polkit restrictions, followed by a race condition in udisks2/libblockdev during XFS filesystem resizing to achieve local privilege escalation to root.

This repository contains a functional exploit chain targeting CVE-2025-6018 (PAM environment injection) and CVE-2025-6019 (privilege escalation via UDisks2) on openSUSE Leap 15.x/SUSE systems. The exploit automates the creation of a malicious XFS image, PAM environment poisoning, and remote execution to achieve root access.

This README provides a high-level guide for exploiting CVE-2025-6018 and CVE-2025-6019 to achieve privilege escalation to root. It references external tools and scripts but does not contain direct exploit code.

This exploit leverages CVE-2025-6018 to achieve local privilege escalation (LPE) by spoofing a Polkit session and mounting a malicious XFS image containing a SUID-root shell. The attacker serves the image via an HTTP server, and the victim script downloads, mounts, and executes it.

This repository contains a functional privilege escalation exploit for CVE-2025-6018 and CVE-2025-6019, leveraging a race condition in XFS filesystem handling and PAM environment manipulation to achieve root access.

This repository contains a functional privilege escalation exploit for CVE-2025-6018 and CVE-2025-6019, leveraging a race condition in XFS filesystem handling and PAM environment manipulation to gain root access. The exploit involves creating a malicious XFS image, uploading it to the target, and executing a script to trigger the vulnerability.

This is a functional exploit chain for CVE-2025-6018 and CVE-2025-6019, targeting openSUSE Leap 15.6 to escalate privileges from an unprivileged user to root via PAM misconfiguration and UDisks2/libblockdev vulnerabilities.

This PoC exploits two vulnerabilities (CVE-2025-6018 and CVE-2025-6019) to achieve local privilege escalation on SUSE 15 systems. It involves manipulating PAM environment variables and abusing udisks via a crafted XFS image to gain root access.

This repository provides instructions for setting up a vulnerable environment (openSUSE-Leap-15.6) to demonstrate CVE-2025-6018 and CVE-2025-6019. It includes dependencies and setup steps but lacks actual exploit code.