Markakd

5 exploits Active since Feb 2022
CVE-2022-2588 NOMISEC MEDIUM WORKING POC
Linux Kernel < 4.9.326 - Use-After-Free in cls_route Filter Implementation
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
485 stars
CVSS 5.3
CVE-2022-20409 NOMISEC MEDIUM WORKING POC
Android - Use-After-Free in io_uring io_identity_cow
In io_identity_cow of io_uring.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-238177383References: Upstream kernel
201 stars
CVSS 6.7
CVE-2021-4154 NOMISEC HIGH WORKING POC
Linux Kernel >=5.1 <5.4.134 - Use-After-Free in cgroup v1 Parser
A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service on the system.
67 stars
CVSS 8.8
CVE-2022-2588 NOMISEC MEDIUM WORKING POC
Linux Kernel < 4.9.326 - Use-After-Free in cls_route Filter Implementation
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
12 stars
CVSS 5.3
CVE-2022-2588 NOMISEC MEDIUM WORKING POC
Linux Kernel < 4.9.326 - Use-After-Free in cls_route Filter Implementation
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
7 stars
CVSS 5.3