CVE-2022-21882

This is a working proof-of-concept exploit for CVE-2022-21882, targeting a Windows kernel vulnerability. The code demonstrates a local privilege escalation (LPE) by manipulating window class extra bytes and leveraging kernel callbacks to achieve arbitrary memory read/write.

This is a working proof-of-concept exploit for CVE-2022-21882, a Windows kernel vulnerability. It leverages user-mode callbacks and heap manipulation to achieve local privilege escalation (LPE) by exploiting a flaw in the win32k driver.

This is a local privilege escalation (LPE) proof-of-concept for CVE-2022-21882, exploiting a vulnerability in Windows win32k. The PoC manipulates window class extra bytes and kernel callbacks to achieve arbitrary read/write in kernel memory, leading to privilege escalation.

This is a working proof-of-concept exploit for CVE-2022-21882, a Windows kernel privilege escalation vulnerability. It leverages a use-after-free in the win32k driver to achieve arbitrary kernel memory read/write and ultimately escalate privileges.

This is a functional proof-of-concept exploit for CVE-2022-21882, a Win32k elevation of privilege vulnerability. It leverages callback table manipulation and window object manipulation to achieve local privilege escalation.

This Metasploit module exploits CVE-2022-21882, a Win32k privilege escalation vulnerability affecting Windows 10 (1803-21H2) and Windows 11 (21H2). It leverages a bypass for CVE-2021-1732's patch to achieve an out-of-bounds write via WndExtra field manipulation, leading to SYSTEM privileges.

This repository contains a functional exploit PoC for CVE-2022-21882, demonstrating a Use-After-Free (UAF) vulnerability in the Windows win32k driver, specifically in the `xxxMnOpenHierarchy` function. The exploit manipulates window and menu objects to achieve arbitrary code execution in kernel mode.