Qualys: Needrestart Zero-Day Vulnerability Allows Root Access with PYTHONPATH Manipulation

CVE-2024-48990

Currently unrated 🤨

Key Information

Vendor: Qualys
Vendor: CVE Published:; 19 November 2024

Badges

👾 Exploit Exists🔴 Public PoC

Summary

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlled PYTHONPATH environment variable.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-48990-PoC
Created by makuga01

Timeline

👾
Exploit exists.
Nov 21, 2024
Vulnerability published.
Nov 19, 2024

Collectors

NVD Database1 Proof of Concept(s)