by vicarius
log in join community
by @secatgourity
06 Jul 2024
#existing_exploit_analysis

Analyze a CVE exploitation

publish

Analyzing OMIGOD exploit for fun and learning (CVE-2021-38647)

by @secatgourity
by @secatgourity
06 Jul 2024
#existing_exploit_analysis

Analyze a CVE exploitation

publish

Analyzing OMIGOD exploit for fun and learning (CVE-2021-38647)

CVEs

CVE-2021-38647
9.8 Critical Severity

Screenshots from the blog posts

images/cly920n97j9jn1gmw23q59jfv.jpgimages/cly920n97j9jn1gmw23q59jfv.jpg

Summary

In this post, we will understand about OMIGOD, a vulnerability in the Open Management Infrastructure (OMI), an open source component used by Azure. We will understand the exploit and see how to use it to pwn a vulnerable target

Script link

GitHub - AlteredSecurity/CVE-2021-38647: CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD

CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD - AlteredSecurity/CVE-2021-38647

image

Description

Tags

#Linux#RCE#Azure#exposed_to_RCE_attack#unauthenticated#omigod#famous-vulnerabilities#open-management-infrastructure#omi

@secatgourity

190 posts

Total vcoins

0

Social media links

Comments (0)