mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-04 13:58:07 +02:00
marc
815 B
815 B
CVE-2020-15824
Description
In JetBrains Kotlin from 1.4-M1 to 1.4-RC (as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0) there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default.
POC
Reference
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://www.oracle.com/security-alerts/cpuoct2021.html
Github
No PoCs found on GitHub currently.