Category

Vulnerability Research

2 posts in this category.

All posts
Jun 10, 2026 6 min read

From Zero to Root: Automating the Logsign Pre-Auth RCE Chain in Metasploit

Chaining CVE-2024-5716 and CVE-2024-5717 into a Metasploit module for root RCE on Logsign.

#metasploit#rce#exploit-dev#cve-2024-5716#cve-2024-5717#logsign#command-injection
Sep 9, 2024 7 min read

Anatomy of a Supply Chain Kill Chain: The xz Utils Backdoor (CVE-2024-3094)

How build-system manipulation and IFUNC hijacking turned a compression library into an SSH implant.

#supply-chain#backdoor#cve-2024-3094#linux#openssh#build-security