CVE-2022-2588

This repository contains a working exploit PoC for CVE-2022-2588, a Linux kernel vulnerability in the route4_filter linked list handling, leading to a double-free and privilege escalation via credential manipulation. The exploit leverages DirtyCred techniques to modify file credentials, allowing arbitrary file writes.

This is a working proof-of-concept exploit for CVE-2022-2588, a use-after-free vulnerability in the Linux kernel's netfilter subsystem. The exploit leverages a race condition to achieve local privilege escalation by manipulating file descriptors and netlink messages.

This repository contains a working exploit for CVE-2022-2588, a Linux kernel vulnerability involving a double-free in the traffic control (tc) subsystem. The exploit leverages heap manipulation and file descriptor overlap to achieve privilege escalation by overwriting /etc/passwd.

This repository contains a writeup for CVE-2022-2588, a Linux kernel cls_route UAF vulnerability that can lead to local privilege escalation. The bug exists due to improper handling of filters with a handle value of 0, requiring CAP_NET_ADMIN for exploitation.

This repository contains proof-of-concept exploit code for CVE-2022-2585, CVE-2022-2586, and CVE-2022-2588, targeting Linux kernel vulnerabilities related to POSIX CPU timer UAF, nf_tables cross-table reference UAF, and cls_route UAF, respectively. The PoCs demonstrate local privilege escalation (LPE) techniques.

This repository contains proof-of-concept exploits for CVE-2022-2585, CVE-2022-2586, and CVE-2022-2588, targeting use-after-free (UAF) vulnerabilities in the Linux kernel. The exploits demonstrate local privilege escalation (LPE) by manipulating kernel objects and timers.

This repository contains proof-of-concept exploits for CVE-2022-2585, CVE-2022-2586, and CVE-2022-2588, targeting Linux kernel vulnerabilities for local privilege escalation (LPE) via use-after-free (UAF) and DirtyCred techniques. The exploits demonstrate kernel object manipulation and netfilter table operations to achieve privilege escalation.

This repository contains a working exploit PoC for CVE-2022-2588, a Linux kernel vulnerability in the route4_filter linked list handling, leading to a double-free and privilege escalation via credential manipulation.

This repository contains a working exploit for CVE-2022-2588, a Linux kernel vulnerability in the route4_filter linked list handling, leading to a double-free condition. The exploit leverages DirtyCred techniques to manipulate task and file credentials, achieving local privilege escalation.