6 matches found
Metasploit Weekly Wrap-Up 08/22/2025
An Early Festivus Airing of Grievances Want to tell us how much you like us? We hope! Want to tell us how much you hate us? We hope not! We are somewhat familiar with the reclusive security expert lifestyle, as it is our own, but we are asking our users and non-users to steel themselves and take ...
Exploit for CVE-2024-32019
⚠️ CVE-2024-32019 - PoC 📌 Affected Versions - = v1.45.0...
CVE-2024-32019
creationtimestamp| type| source ---|---|--- 2025-08-03 09:00:06+00:00| published-proof-of-concept| Telegram/k9l6whAFym9ZbJh5WMNbuyJuC8dcnnMOMGxizovh2wCYo8 2025-08-03 11:37:46+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/46409 2025-08-03 15:00:05+00:00| published-proof-of-concept|...
CVE-2024-32019
Netdata is an open source observability tool. In affected versions the ndsudo tool shipped with affected versions of the Netdata Agent allows an attacker to run arbitrary programs with root permissions. The ndsudo tool is packaged as a root-owned executable with the SUID bit set. It only runs a...
CVE-2024-32019 ndsudo: local privilege escalation via untrusted search path
Netdata is an open source observability tool. In affected versions the ndsudo tool shipped with affected versions of the Netdata Agent allows an attacker to run arbitrary programs with root permissions. The ndsudo tool is packaged as a root-owned executable with the SUID bit set. It only runs a...
CVE-2024-32019
Netdata CVE-2024-32019 is a local privilege escalation in the ndsudo binary (setuid root) due to an untrusted PATH resolution. Vulnerable in Netdata Agent versions prior to 1.45.3 (e.g., 1.45.0 and earlier); patched in 1.45.3 and 1.45.0-169. Exploitation relies on hijacking allowed commands via P...