Home[1] Files[2] News[3] &[SERVICES_TAB] Contact[4] Add New[5]
- ZenML Remote Privilege Escalation[6]
- Authored by David Botelho Mariano[7] | Site github.com[8]
-
ZenML allows for remote privilege escalation because the /api/v1/users/{user_name_or_id}/activate REST API endpoint allows access on the basis of a valid username along with a new password in the request body. This is the proof of concept exploit. All ZenML versions below 0.46.7 are vulnerable, with the exception being patched versions 0.44.4, 0.43.1, and 0.42.2.
- advisories | CVE-2024-25723[9]
- SHA-256 |
3c2c8e3882d5e4c0257dbb5b27f3d5dfe82d1a0ce0a5f485af9c54a883d48594
- Download[10] | Favorite[11] | View[12]
File Tags
- ActiveX[18] (933)
- Advisory[19] (84,721)
- Arbitrary[20] (16,642)
- BBS[21] (2,859)
- Bypass[22] (1,826)
- CGI[23] (1,032)
- Code Execution[24] (7,630)
- Conference[25] (689)
- Cracker[26] (844)
- CSRF[27] (3,373)
- DoS[28] (24,523)
- Encryption[29] (2,383)
- Exploit[30] (52,783)
- File Inclusion[31] (4,251)
- File Upload[32] (984)
- Firewall[33] (822)
- Info Disclosure[34] (2,845)
- Intrusion Detection[35] (906)
- Java[36] (3,118)
- JavaScript[37] (889)
- Kernel[38] (6,999)
- Local[39] (14,706)
- Magazine[40] (586)
- Overflow[41] (13,033)
- Perl[42] (1,430)
- PHP[43] (5,196)
- Proof of Concept[44] (2,368)
- Protocol[45] (3,695)
- Python[46] (1,599)
- Remote[47] (31,392)
- Root[48] (3,617)
- Rootkit[49] (522)
- Ruby[50] (619)
- Scanner[51] (1,650)
- Security Tool[52] (7,975)
- Shell[53] (3,247)
- Shellcode[54] (1,217)
- Sniffer[55] (900)
- Spoof[56] (2,258)
- SQL Injection[57] (16,527)
- TCP[58] (2,423)
- Trojan[59] (689)
- UDP[60] (897)
- Virus[61] (668)
- Vulnerability[62] (32,564)
- Web[63] (9,864)
- Whitepaper[64] (3,773)
- x86[65] (967)
- XSS[66] (18,167)
- Other[67]
File Archives
- April 2024[68]
- March 2024[69]
- February 2024[70]
- January 2024[71]
- December 2023[72]
- November 2023[73]
- October 2023[74]
- September 2023[75]
- August 2023[76]
- July 2023[77]
- June 2023[78]
- May 2023[79]
- Older[80]
Systems
- AIX[81] (429)
- Apple[82] (2,078)
- BSD[83] (376)
- CentOS[84] (58)
- Cisco[85] (1,927)
- Debian[86] (7,003)
- Fedora[87] (1,693)
- FreeBSD[88] (1,246)
- Gentoo[89] (4,467)
- HPUX[90] (880)
- iOS[91] (373)
- iPhone[92] (108)
- IRIX[93] (220)
- Juniper[94] (69)
- Linux[95] (49,121)
- Mac OS X[96] (691)
- Mandriva[97] (3,105)
- NetBSD[98] (256)
- OpenBSD[99] (488)
- RedHat[100] (15,434)
- Slackware[101] (941)
- Solaris[102] (1,611)
- SUSE[103] (1,444)
- Ubuntu[104] (9,413)
- UNIX[105] (9,385)
- UnixWare[106] (187)
- Windows[107] (6,646)
- Other[108]
- Services
- Security Services[119]
- Hosting By
- Rokasec[120]