cve/2017/CVE-2017-15918.md

### [CVE-2017-15918](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15918)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Sera 1.2 stores the user's login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks.

### POC

#### Reference
- https://www.exploit-db.com/exploits/43221/

#### Github
No PoCs found on GitHub currently.
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2017-15918](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15918)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`Sera 1.2 stores the user's login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks.`

			`### POC`

			`#### Reference`
			`- https://www.exploit-db.com/exploits/43221/`

			`#### Github`
			`No PoCs found on GitHub currently.`