漏洞描述
Linux内核的一部分ksmbd中存在信息泄漏漏洞,该漏洞是由于在处理复合请求时未能验证用户提供的数据造成的。
Linux Kernel ksmbd Compounded Session Setup信息泄露漏洞
PoC代码
暂无相关漏洞推荐
- POC churchcrm-installer: ChurchCRM - Setup Exposure
- Adobe Commerce/Magento SessionReaper /customer/address_file/upload 文件上传漏洞(CVE-2025-54236)
- sangfor-vpn-supersession-rce: Sangfor VPN SuperSession TO RCE
- POC CVE-2023-2640: GameOver(lay) - Local Privilege Escalation in Ubuntu Kernel
- POC CVE-2023-4911: Looney Tunables Linux - Local Privilege Escalation
- POC CVE-2020-7209: LinuxKI Toolset <= 6.01 - Remote Command Execution
- POC CVE-2021-41192: Redash Setup Configuration - Default Secrets Disclosure
- POC CVE-2022-23134: Zabbix Setup Configuration Authentication Bypass
- POC CVE-2023-22620: SecurePoint UTM 12.x Session ID Leak
- POC CVE-2023-4966: Citrix Bleed - Leaking Session Tokens
- POC CVE-2024-53704: SSL VPN Session Hijacking
- POC CVE-2025-2129: Mage AI - Insecure Default Authentication Setup
- POC CNVD-2022-60632: 畅捷通T+ SetupAccount 任意文件上传