by @mhzcyber
26 Apr 2023

CVE-2021-45456: Apache Kylin RCE PoC

by @mhzcyber
26 Apr 2023

CVE-2021-45456: Apache Kylin RCE PoC

CVEs

9.8 Critical Severity

Apps

K
KylinApache
*.*
1.5.4.1.*
1.5.2.1.*
2.6.6.*
3.1.2.*
1.5.4.*
4.0.3.*
2.6.5.*
4.0.4.*
4.0.0.-

Screenshots from the blog posts

blog-posts/images/clgxxn5jw5cnd0jqg0hlcedgn.pngblog-posts/images/clgxxn5jw5cnd0jqg0hlcedgn.png

Summary

Command injection in Apache Kylin has been found and registered as CVE-2021-45456, in vsociety we managed to leverage it to RCE and create PoC.

Description

users/photos/clr6vsmml0vl21hn13643hl0n.jpg

@mhzcyber

68 posts

Security Researcher | Cyber Security Labs Developer | Upwork Top Rated CyberSecurity

Total vcoins

132.8K

Badges

badges/images/clemwgql90gww0jnxh6rbcqsr.png

Memelord

badges/images/clktw0fnh0pci1inadxpbcwpn.png

Shawarma King

Social media links

Comments (0)