CVE-2024-23743 PoC — Notion 安全漏洞

Source

https://github.com/V3x0r/CVE-2024-23743

Associated Vulnerability

Title:Notion 安全漏洞 (CVE-2024-23743)
Description:Notion是Notion公司的一款集成了笔记、知识库、数据表格、看板、日历等多种能力于一体的应用程序。 Notion 3.1.0 版本之前存在安全漏洞，该漏洞源于通过 RunAsNode 和 enableNodeClilnspectArguments 组件可以执行任意代码。

Readme

# CVE-2024-23743

CVE-2024-23743

An issue in Notion for MacOS v.3.1.0 allows a remote, attacker to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments components

There is a tool designed to automate the process of searching for vulnerabilities in electron: https://github.com/r3ggi/electroniz3r

<img width="1321" alt="image" src="https://github.com/V3x0r/CVE-2024-XXXX/assets/83291215/163a92de-852f-4220-ba26-964862429a13">


With this tool, we can check if the App is Vulnerable: 

<img width="913" alt="image" src="https://github.com/V3x0r/CVE-2024-XXXX/assets/83291215/1df75e93-39d8-44c2-acfe-644cbaa909fc">

After validation, we can inject our code, and get a shell

<img width="915" alt="image" src="https://github.com/V3x0r/CVE-2024-XXXX/assets/83291215/384ac802-10d4-437d-93ec-424764994698">

And Now, Enjoy your Shell: 

<img width="915" alt="image" src="https://github.com/V3x0r/CVE-2024-XXXX/assets/83291215/6b22b5de-708d-4b10-8cd5-b2ab511fd1c1">

File Snapshot


 [4.0K]  /data/pocs/eef7695940b551df7f0c1cefac4f744f44642d0f
└── [ 986]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!