logo
Vulnerability feed
Contributors
About
Blog
CONTRIBUTE

Vulnerability

warn

CVE-2023-4911

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2023-4911

Description:
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.
Last updated date:
01/27/2025

Reports

alt

ACTIVELY EXPLOITED

Type:
exploitation
Confidence:
HIGH
Date of publishing:
11/03/2023
Reference url to background

https://blog.aquasec.com/loony-tunables-vulnerability-exploited-by-kinsing

Type:
exploitation
Confidence:
HIGH
Date of publishing:
11/21/2023
Reference url to background

https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/04/2023
Reference url to background

https://github.com/Green-Avocado/CVE-2023-4911

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/04/2023
Reference url to background

https://github.com/leesh3288/CVE-2023-4911

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/04/2023
Reference url to background

https://github.com/RickdeJager/CVE-2023-4911

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/05/2023
Reference url to background

http://www.openwall.com/lists/oss-security/2023/10/03/2

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/05/2023
Reference url to background

https://lists.fedoraproject.org/archives/list/[email protected]/message/DFG4P76UHHZEWQ26FWBXG76N2QLKKPZA/

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/05/2023
Reference url to background

https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege-escalation-glibc-ld-so.txt

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/10/2023
Reference url to background

https://github.com/hadrian3689/looney-tunables-CVE-2023-4911

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/11/2023
Reference url to background

https://github.com/ruycr4ft/CVE-2023-4911

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/17/2023
Reference url to background

https://github.com/chaudharyarjun/LooneyPwner

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/25/2023
Reference url to background

https://github.com/KernelKrise/CVE-2023-4911

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/28/2023
Reference url to background

https://github.com/Diego-AltF4/CVE-2023-4911

Type:
exploit
Confidence:
HIGH
Date of publishing:
12/20/2023
Reference url to background

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/glibc_tunables_priv_esc.rb

Type:
exploit
Confidence:
HIGH
Date of publishing:
02/22/2024
Reference url to background

http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalation.html

Type:
exploit
Confidence:
HIGH
Date of publishing:
02/22/2024
Reference url to background

http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation.html

Type:
exploit
Confidence:
HIGH
Date of publishing:
02/22/2024
Reference url to background

http://seclists.org/fulldisclosure/2023/Oct/11

Type:
exploit
Confidence:
HIGH
Date of publishing:
03/16/2024
Reference url to background

https://github.com/xem6/CVE-2023-4911

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2025

Privacy Policy