VDB
WID-SEC-W-2022-0432
WID-SEC-W-2022-0432
PUBLISHED
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xerox FreeFlow Print Server 9 | ||
| Xerox FreeFlow Print Server v9 |
Exploit Intelligence
- PoC for PwnKit-CVE-2021-4034 - Pkexec Local Privilege Escalation (github-poc-repo)
- PoC for PwnKit-CVE-2021-4034 - Pkexec Local Privilege Escalation (github-poc)
- El exploit para obtener root usado la vulnerabilidad del CVE-2021-4034 o tambien llamado PwnKit el cual permite teniendo un shell hacer una escalada de privilegios siempre y cuando la version de pkexec sea = o < que la v0.105 (github-poc-repo)
- El exploit para obtener root usado la vulnerabilidad del CVE-2021-4034 o tambien llamado PwnKit el cual permite teniendo un shell hacer una escalada de privilegios siempre y cuando la version de pkexec sea = o < que la v0.105 (github-poc)
- usmansec/-CVE-2021-4034 (github-poc-repo)
- usmansec/-CVE-2021-4034 (github-poc)
- PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec in Python (github-poc)
- Advanced Linux Privilege Escalation research on CVE-2021-4034 (PwnKit). Features an optimized exploit with 7 polymorphic payload modes (Interactive Shell, Backdoor, User Creation, Reverse Shell, etc). Portfolio piece focused on memory corruption logic, environment variable manipulation, and anti-forensic techniques. (github-poc-repo)
- Advanced Linux Privilege Escalation research on CVE-2021-4034 (PwnKit). Features an optimized exploit with 7 polymorphic payload modes (Interactive Shell, Backdoor, User Creation, Reverse Shell, etc). Portfolio piece focused on memory corruption logic, environment variable manipulation, and anti-forensic techniques. (github-poc)
- Leemyunglyul/cve-2021-4034-mock (github-poc-repo)
…and 246 more exploits
Timeline
- Jun 21, 2022 CVE Published
- Apr 3, 2023 CVE Updated
- Dec 8, 2023 PoC Published
- Mar 1, 2024 PoC Published
- Jul 14, 2024 PoC Published
- Jul 17, 2024 PoC Published
- Oct 31, 2024 PoC Published
- Dec 27, 2024 PoC Published
- Feb 12, 2025 PoC Published
- Feb 13, 2025 PoC Published
- May 12, 2025 PoC Published
- Sep 19, 2025 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0432.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0432 advisory
- https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf url
- https://security.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-014-FreeFlow-Print-Server-v9.pdf url