CVE-2025-27591 PoC — below 安全漏洞

Source

https://github.com/alialucas7/CVE-2025-27591_PoC

Associated Vulnerability

Title:below 安全漏洞 (CVE-2025-27591)
Description:below是Meta Incubator开源的一个现代 Linux 系统的资源监视器。 below v0.9.0之前版本存在安全漏洞，该漏洞源于创建了全局可写目录，可能导致通过符号链接攻击提升到root权限。

Readme


## Proof-Of-Concept
### Usage
1. build
```bash
go build -o poc exploit.go 
```
2. move the binary to the target machine


https://github.com/user-attachments/assets/d5e3f8e7-ba05-42f8-a533-21179cd77177


## References
https://nvd.nist.gov/vuln/detail/CVE-2025-27591
https://access.redhat.com/security/cve/cve-2025-27591
https://github.com/facebookincubator/below/commit/da9382e6e3e332fd2c3195e22f34977f83f0f1f3
https://github.com/BridgerAlderson/CVE-2025-27591-PoC/tree/main

File Snapshot


 [4.0K]  /data/pocs/2c4b0e985cb3a533b90e19dedb906475b8d7facd
├── [3.5K]  exploit.go
└── [ 476]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!