payload appears to have been hidden in test data then decrypted and injected during the build process.

  • underisk [none/use name]
    hexagon
    ·
    9 months ago

    Preliminary stuff I read yesterday suggests that it’s RCE triggered by a signal sent to SSHD. Safest bet is to nuke your system if you had the exploitable library running with an exposed sshd.