cve/2024/CVE-2024-11003.md

CVE-2024-11003

Description

Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library (Modules::ScanDeps) which expects safe input. This could allow a local attacker to execute arbitrary shell commands. Please see the related CVE-2024-10224 in Modules::ScanDeps.

POC

Reference

No PoCs from references.

Github

• https://github.com/nomi-sec/PoC-in-GitHub
• https://github.com/pawan-shivarkar/List-of-CVE-s-
• https://github.com/pawan-shivarkar/pawan-shivarkar
• https://github.com/unknown-user-from/CVE-2024-11003-PoC