CVE-2024-27460 - Plantronics Desktop Hub LPE

Arbitrary File Delete to SYSTEM. Majority of code is based on the referenced PoC by @filip_dragovic. Thanks @filip_dragovic & @k0zmer :)

Blog Post: https://mantodeasecurity.de/en/2024/05/cve-2024-27460-plantronics-hub-lpe

References

• https://support.hp.com/us-en/document/ish_9869257-9869285-16/hpsbpy03895
• https://github.com/Wh04m1001/CVE-2023-20178
• @filip_dragovic
• @k0zmer