POC详情: 16f7fe923eb1cb156472c5732e18dc1c45425be3

来源
https://github.com/projectdiscovery/nuclei-templates/blob/main/code/cves/2024/CVE-2024-12356.yaml
关联漏洞
标题: BeyondTrust Remote Support和BeyondTrust Privileged Remote Access 安全漏洞 (CVE-2024-12356)
描述:BeyondTrust Remote Support和BeyondTrust Privileged Remote Access(BeyondTrust PRA)都是美国BeyondTrust公司的产品。BeyondTrust Remote Support是一个适用于 Windows、Mac、Linux、Ios(iPad、iPhone)等的远程桌面访问、服务台和协作软件。BeyondTrust Privileged Remote Access是一款特权远程访问软件。 BeyondTrust Remote S
描述
A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) products which can allow an unauthenticated attacker to inject commands that are run as a site user.
文件快照

 id: CVE-2024-12356

info:
  name: Privileged Remote Access & Remote Support - Command Injection
  au

...
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。