Published: 13/05/2020 Updated: 03/08/2020

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 2.3 | Impact Score: 1.4 | Exploitability Score: 0.8

VMScore: 188

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

It exists that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered.

Vulnerable Product	Search on Vulmon	Subscribe to Product
canonical subiquity

Check CVE-2020-11932 (ubuntu server) and test host relating to this vulnerability

CVE-2020-11932 🐛🔍 Check CVE-2020-11932 and test for host relating to this vulnerability Usage Download git clone githubcom/Staubgeborener/CVE-2020-11932 cd CVE-2020-11932 chmod +x cve-2020-11932sh /cve-2020-11932sh With curl (so no download) bash <(curl -s rawgithubusercontentcom/Staubgeborener/CVE-2020-1

Double-Free BUG in WhatsApp exploit poc.

CVE-2020-11932 Double-Free bug in WhatsApp exploit poc #Note: Make sure to set the listner ip in exploitc inorder to get shell nc -lvp 1337 or whatever port and then compile make or gcc -o exploit egif_libc exploitc then run /exploit and save the content to gif and send to victim Source awakened1712githubio/hacking/hacking-whatsapp-gif-rce/ P

CWE-532 https://github.com/CanonicalLtd/subiquity/commit/7db70650feaf513d7fb6f1ca07f2d670a0890613 https://aliceandbob.company/the-human-factor-in-an-economy-of-scale/https://nvd.nist.gov https://github.com/Staubgeborener/CVE-2020-11932

CVE-2020-11932

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect