Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-23722 PoC — Fluent Bit 安全漏洞

Source
https://github.com/alexcote1/CVE-2024-23722-poc
Associated Vulnerability
Title:Fluent Bit 安全漏洞 (CVE-2024-23722)
Description:Fluent Bit是一款使用C语言编写的开源日志处理和分析系统。 Fluent Bit 2.1.8至2.2.1版本存在安全漏洞,该漏洞源于允许攻击者通过构造内容类型为x-www-form-urlencoded的无效HTTP来导致空指针解引用漏洞。
Readme
# CVE-2024-23722-poc

Usage 
``` 
python3 exploit.py http://127.0.0.1:8888
port is currently not open
port is currently not open
port is currently not open
port is currently not open
Server might have crashed
port is currently not open
port is currently not open
port is currently not open
Server might have crashed
port is currently not open
```

write up on the issue 
https://medium.com/@adurands82/fluent-bit-dos-vulnerability-cve-2024-23722-4e3e74af9d00

Effects fluentbit versions 2.1.8 through 2.2.1
File Snapshot

 [4.0K]  /data/pocs/90b1c0143aa0324ec5b0e9a6810efa8155ed44a5
├── [1.0K]  exploit.py
└── [ 507]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.