NOMISEC-xndpxs/CVE-2022-0847

NOMISEC WORKING POC

Exploit for CVE-2022-0847 - Dirty Pipe Local Privilege Escalation via CVE-2022-0847

AI Analysis

This is a functional proof-of-concept exploit for CVE-2022-0847 (Dirty Pipe), which allows overwriting data in arbitrary read-only files by leveraging an uninitialized pipe_buffer.flags variable in the Linux kernel. The exploit demonstrates privilege escalation by injecting code into root processes.

Attack Type

LPE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 2

https://github.com/xndpxs/CVE-2022-0847

Stars 9

Forks 7

Last Push Mar 07, 2022

Authors

xndpxs Max Kellermann

Vulnerability

CVE-2022-0847

Dirty Pipe Local Privilege Escalation via CVE-2022-0847

HIGH KEV

CVSS 7.8