CVE-2022-24702

CRITICAL

WinAPRS 2.9.0 - Remote Code Execution via Malicious AX.25 Packets

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-24702. PoCs published by Coalfire-Research.

AI-analyzed exploit summary This repository contains a working exploit for CVE-2022-24702, targeting WinAPRS on Windows 10 and Windows XP SP3. The exploit uses heap spraying and shellcode execution to achieve remote code execution (RCE) via crafted KISS packets sent to a COM port.

Description

An issue was discovered in WinAPRS 2.9.0. A buffer overflow in the VHF KISS TNC component allows a remote attacker to achieve remote code execution via malicious AX.25 packets over the air. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Exploits (1)

nomisec WORKING POC 9 stars

by Coalfire-Research · poc

https://github.com/Coalfire-Research/WinAPRS-Exploits

View Code ZIP pw:eip

This repository contains a working exploit for CVE-2022-24702, targeting WinAPRS on Windows 10 and Windows XP SP3. The exploit uses heap spraying and shellcode execution to achieve remote code execution (RCE) via crafted KISS packets sent to a COM port.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Racy

Target: WinAPRS (version not specified)

No auth needed

Prerequisites: Access to the target's COM port · WinAPRS running on the target system

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Vendor Advisory x_refsource_misc

https://winaprs.com/

Exploit, Third Party Advisory x_refsource_misc

https://www.coalfire.com/the-coalfire-blog/hacking-ham-radio-winaprs-part1

Issue Tracking, Third Party Advisory x_refsource_misc

https://news.ycombinator.com/item?id=31571476

Exploit, Third Party Advisory x_refsource_misc

https://github.com/Coalfire-Research/WinAPRS-Exploits

Scores

CVSS v3 9.8

EPSS 0.0556

EPSS Percentile 91.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-120

Status published

Products (1)

winaprs/winaprs 2.9.0

Published Jun 02, 2022

Tracked Since Feb 18, 2026