Critical Vulnerability in Ubuntu Linux Kernel

Critical Vulnerability in Ubuntu Linux Kernel

Ubuntu Linux has been exposed to a critical vulnerability that affects systems running the 6.8.0-60-generic kernel version of Ubuntu 24.04.2. Local attackers can exploit this vulnerability to escalate privileges and ultimately gain root access on the affected systems. This vulnerability arises from an imbalance in reference counting within the af_unix subsystem, leading to a use-after-free … Read more

CVE-2025-32463: Local Privilege Escalation Vulnerability in Linux sudo (POC)

CVE-2025-32463: Local Privilege Escalation Vulnerability in Linux sudo (POC)

0x00 Introduction The Linux system is anopen-source Unix-like operating system kernel,which, due to its powerful customizability and stability, has been widely used in various fields such as servers, mobile devices, and IoT devices. Throughout its development, the Linux system has attracted developers from around the world, forming a strong community. It is licensed under the … Read more

Overview of Privilege Escalation in Linux Systems

Privilege escalation in Linux systems refers to the process of elevating from a low-privilege user (such as a regular user or www-data) to a high-privilege user (such as root). This is very common in penetration testing (Pentest) or security research, but please note: it should only be used in legally authorized environments, and misuse may … Read more

API Privilege Escalation Detection Tool Written in Python

API Privilege Escalation Detection Tool #!/usr/bin/env python3 """API Privilege Escalation Detection Tool 功能:检测Web接口的水平越权和垂直越权漏洞 作者:pp 版本:1.0""" import json import requests import time import hashlib import hmac import base64 from typing import Dict, List, Any, Optional from urllib.parse import urlparse, parse_qs import argparse import sys class APIPrivilegeEscalationScanner: """ API Privilege Escalation Detector """ def __init__(self, config: Dict[str, … Read more

Ansible: From Beginner to Abandonment (Part 29)

Privilege Escalation Setting Up Privilege Escalation Ansible performs privilege escalation through <span>become</span>. The <span>become</span> parameter has the following options: • <span>become</span>: Set to <span>true</span> to enable privilege escalation • <span>become_user</span>: Specify which user to escalate privileges to • <span>become_method</span>: Set the method of privilege escalation, default is <span>sudo</span> • <span>become_flags</span>: Additional configuration parameters to use … Read more

Linux Kernel Netfilter Vulnerability Allows Privilege Escalation for Attackers

Linux Kernel Netfilter Vulnerability Allows Privilege Escalation for Attackers

Source: freebuf Part01 Vulnerability Overview A critical vulnerability has been discovered in the ipset subsystem of the Linux kernel netfilter, allowing local attackers to escalate their privileges to root level. This vulnerability exists in the bitmap:ip implementation of the ipset framework, stemming from insufficient range validation when processing CIDR format IP address ranges. Due to … Read more

CVE-2025-32463: Local Privilege Escalation via Linux sudo chroot

CVE-2025-32463: Local Privilege Escalation via Linux sudo chroot

🚶🚶Every step counts. 0x01 Introduction <span>sudo chroot</span> is a powerful command combination in Linux systems that allows switching to a specified directory with superuser privileges and running commands or starting sessions with that directory as the new root directory. <span>sudo</span> is used to obtain administrative privileges, while <span>chroot</span> (change root) sets the specified directory as … Read more

Local Privilege Escalation Vulnerabilities in Linux UDisks and MediaTek Chipsets

Local Privilege Escalation Vulnerabilities in Linux UDisks and MediaTek Chipsets

1. Local Privilege Escalation Vulnerability in Linux UDisks Daemon CVE-2025-8067, PoC Released The UDisks daemon in Linux has a serious vulnerability (CVE-2025-8067, CVSS 8.5) that allows non-privileged users to exploit a negative index when creating loop devices via D-Bus, potentially leading to denial of service or local privilege escalation. It is recommended to update to … Read more

Introduction to the linux setpriv Command

Introduction to the linux setpriv Command

One-day Tour in Changsha 1. What is setpriv https://man.he.net/man1/setpriv setpriv – Run a program with different Linux permissions Set or query various Linux permission settings that can be inherited across execve(2) system calls. Unlike su(1) and runuser(1), setpriv(1) does not use PAM (Pluggable Authentication Modules) and does not prompt for a password. It is a … Read more

High-Risk Vulnerability Alert: Linux Kernel XFRM Double Free Vulnerability CVE-2025-38500

High-Risk Vulnerability Alert: Linux Kernel XFRM Double Free Vulnerability CVE-2025-38500

Vulnerability Description: In the XFRM interface, the collect_md attribute can only be set during device creation. Therefore, if change_link() is called on an interface of type collect_md, it should directly return a failure. However, the check that was originally intended to enforce this restriction is only performed when locate() returns xi, but locate() itself does … Read more