Mastodon Feed: Post

Mastodon FeedJul 20, 2023, 1:55 AM

Reblogged by slightlyoff@toot.cafe ("Alex Russell"):

jpasski@infosec.exchange ("Jonni Passki 🏳️‍⚧️") wrote:

The ssh-agent RCE write-up somewhat reminds me of exploiting various Java deserialzation gadgets for RCE. So good! #CVE202338408

https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt