NOMISEC-puckiestyle/CVE-2022-0847

NOMISEC WORKING POC

Exploit for CVE-2022-0847 - Dirty Pipe Local Privilege Escalation via CVE-2022-0847

AI Analysis

This repository contains a working proof-of-concept exploit for CVE-2022-0847 (Dirty Pipe), which allows overwriting any file contents in the page cache, even on read-only files or mounts. The exploit includes both a shell script and a C program to demonstrate privilege escalation by modifying the /etc/passwd file or hijacking a SUID binary.

Attack Type

LPE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.001 - Setuid and Setgid

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 3

https://github.com/puckiestyle/CVE-2022-0847

Stars 2

Forks 1

Last Push Mar 10, 2022

Authors

blasty puckiestyle Max Kellermann

Vulnerability

CVE-2022-0847

Dirty Pipe Local Privilege Escalation via CVE-2022-0847

HIGH KEV

CVSS 7.8