CVE-2025-6019

This repository contains a functional PoC for CVE-2025-6019, a local privilege escalation (LPE) vulnerability in `libblockdev` and `udisks`. The exploit creates an XFS filesystem image with an SUID `bash` binary and leverages the vulnerability to mount it without the `nosuid` option, granting a root shell.

This repository contains a functional exploit for CVE-2025-6019, a TOCTOU race condition in udisks2 that allows local privilege escalation via XFS filesystem resizing. The exploit includes scripts to bypass Polkit restrictions, create a weaponized XFS image with a SUID binary, and trigger the race condition via D-Bus requests.

This repository contains a functional exploit PoC that chains CVE-2025-6018 (PAM/Polkit Active Session Bypass) and CVE-2025-6019 (libblockdev SUID Mount Flaw) to achieve local privilege escalation to root on vulnerable Linux systems. The exploit involves creating a malicious XFS image with a SUID root shell, bypassing authentication via a misconfigured PAM/Polkit session, and triggering a race condition to execute the SUID payload.

This repository contains a functional privilege escalation exploit for CVE-2025-6018 and CVE-2025-6019, leveraging PAM environment manipulation and XFS filesystem operations to achieve root access. The exploit involves creating a malicious XFS image, uploading it to the target, and executing a script that triggers a race condition to escalate privileges.

This PoC automates SSH exploitation of CVE-2025-6018 by poisoning PAM environment variables to achieve privilege escalation. It checks for vulnerable PAM configurations, manipulates environment variables, and validates the exploit by checking for elevated session permissions.

This repository contains a functional privilege escalation exploit for CVE-2025-6019, targeting a race condition in UDisks2's filesystem resize functionality. The exploit creates a malicious XFS image with a SUID-root shell and triggers the vulnerability via DBus to gain root access.

This repository contains a functional exploit chain combining CVE-2025-6018 (PAM environment injection) and CVE-2025-6019 (UDisks2 privilege escalation) to achieve local privilege escalation to root on openSUSE Leap 15.x systems. The exploit involves creating an XFS image with a SUID bash binary, injecting malicious environment variables via PAM, and leveraging UDisks2 to execute arbitrary commands with elevated privileges.

This exploit leverages CVE-2025-6019 to achieve local privilege escalation (LPE) by manipulating UDisks2's filesystem resize functionality on a crafted XFS image containing a SUID shell. The PoC demonstrates successful elevation to root via a malicious loop device mount.

This repository contains a functional PoC for CVE-2025-6019, exploiting a TOCTOU race condition in udisks2 to achieve local privilege escalation via XFS filesystem resizing. The exploit involves bypassing Polkit restrictions, creating a weaponized XFS image with a SUID binary, and triggering the race condition via D-Bus requests.

This repository contains a functional exploit chain for CVE-2025-6018 and CVE-2025-6019, leveraging PAM environment variable manipulation to impersonate a local user and then abusing XFS resize operations in libblockdev to achieve root access.

This repository contains a functional exploit for CVE-2025-6018 and CVE-2025-6019, which chain together to achieve local privilege escalation (LPE) on openSUSE and SUSE Linux Enterprise 15 systems. The exploit leverages PAM environment variable injection to bypass polkit restrictions and a race condition in udisks2/libblockdev during XFS filesystem resizing to gain root access.

This PoC exploits CVE-2025-6019, a local privilege escalation vulnerability in libblockdev/udisks, by creating a malicious XFS image with a SUID bash binary and triggering a mount via filesystem resize operations.

This repository contains a functional exploit chain targeting CVE-2025-6018 (PAM environment injection) and CVE-2025-6019 (privilege escalation via UDisks2) on openSUSE Leap 15.x/SUSE systems. The exploit automates the creation of a malicious XFS image, PAM environment poisoning, and remote execution to achieve root access.

The repository provides vague instructions for exploiting CVE-2025-6018 and CVE-2025-6019 but lacks actual exploit code, instead pointing to external GitHub repositories. It reads like a sales pitch with no technical depth or analysis.

This repository contains a functional exploit chain for CVE-2025-6018 and CVE-2025-6019, targeting openSUSE Leap 15.6 to achieve local privilege escalation from an unprivileged user to root. The exploit leverages PAM misconfiguration and UDisks2/libblockdev vulnerabilities, requiring a pre-created XFS image with a SUID bash binary.

This PoC exploits a UDisks2 XFS resize vulnerability (CVE-2025-6019) to achieve local privilege escalation by implanting a SUID rootbash binary in a crafted XFS image. The exploit triggers a resize operation to activate the payload, granting root access.

This script exploits CVE-2025-6018 and CVE-2025-6019 to achieve local privilege escalation (LPE) on SUSE 15 systems. It leverages PAM environment variable manipulation and a vulnerability in libblockdev via udisks to escalate from unprivileged user to root.

This PoC exploits CVE-2025-6019 in UDisks2 to achieve local privilege escalation (LPE) by leveraging a logic flaw in filesystem resize operations. It requires prior exploitation of CVE-2025-6018 to gain necessary D-Bus permissions and relies on a pre-existing XFS image to trigger the vulnerability.

This exploit leverages CVE-2025-6019 to achieve local privilege escalation (LPE) via a vulnerability in the UDisks2 filesystem management system. It manipulates XFS images and uses improperly sanitized environment variables to escalate privileges to root.

This repository contains a working proof-of-concept exploit for CVE-2025-6019, a local privilege escalation vulnerability in UDisks2. The exploit leverages a malicious XFS filesystem image with a SUID-root binary to escalate privileges when mounted and executed.

CVE-2025-6019 is a local privilege escalation (LPE) vulnerability in libblockdev, where an attacker with allow_active Polkit permissions can exploit udisks2 to mount a malicious XFS image without nosuid/nodev flags, leading to root access via a SUID-root shell.

This PoC exploits CVE-2025-6019, a local privilege escalation vulnerability in libblockdev/udisks. It creates a malicious XFS image with a SUID bash binary, transfers it to the target, and triggers the vulnerability via filesystem resize operations to gain root access.

This repository contains a functional privilege escalation exploit for CVE-2025-6018 and CVE-2025-6019, leveraging PAM environment manipulation and XFS filesystem operations to achieve root access. The exploit involves creating a malicious XFS image, uploading it to the target, and executing a script to trigger a race condition.