automatic module_metadata_base.json update

jenkins-metasploit · jenkins-metasploit · commit ab45ae60f347 · 2025-08-20T18:26:50.000Z
diff --git a/db/modules_metadata_base.json b/db/modules_metadata_base.json
@@ -90870,6 +90870,55 @@
     "needs_cleanup": null,
     "actions": []
   },
+  "exploit_linux/local/ndsudo_cve_2024_32019": {
+    "name": "Netdata ndsudo privilege escalation",
+    "fullname": "exploit/linux/local/ndsudo_cve_2024_32019",
+    "aliases": [],
+    "rank": 300,
+    "disclosure_date": "2024-04-12",
+    "type": "exploit",
+    "author": [
+      "msutovsky-r7",
+      "mia-0"
+    ],
+    "description": "The `ndsudo` is a tool shipped with Netdata Agent. The version v1.45.0 and below contain vulnerability, which allows an attacker to gain privilege escalation using `ndsudo` binary. The vulnerability is untrusted search path, when searching for additional binary files, such as `nvme`. An attacker can create malicious binary with same name and add the directory of this binary into `$PATH` variable. The `ndsudo` will trust the first occurence of this binary and execute it.",
+    "references": [
+      "URL-https://github.com/netdata/netdata/security/advisories/GHSA-pmhq-4cxq-wj93",
+      "CVE-2024-32019"
+    ],
+    "platform": "Linux",
+    "arch": "x86, x64",
+    "rport": null,
+    "autofilter_ports": [],
+    "autofilter_services": [],
+    "targets": [
+      "Auto"
+    ],
+    "mod_time": "2025-08-20 12:49:38 +0000",
+    "path": "/modules/exploits/linux/local/ndsudo_cve_2024_32019.rb",
+    "is_install_path": true,
+    "ref_name": "linux/local/ndsudo_cve_2024_32019",
+    "check": true,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "Reliability": [
+        "repeatable-session"
+      ],
+      "SideEffects": [
+        "ioc-in-logs"
+      ]
+    },
+    "session_types": [
+      "shell",
+      "meterpreter"
+    ],
+    "needs_cleanup": true,
+    "actions": []
+  },
   "exploit_linux/local/nested_namespace_idmap_limit_priv_esc": {
     "name": "Linux Nested User Namespace idmap Limit Local Privilege Escalation",
     "fullname": "exploit/linux/local/nested_namespace_idmap_limit_priv_esc",
