CVE-2022-3699

This repository contains functional exploit code for CVE-2022-3699, demonstrating arbitrary read/write operations in physical and virtual memory via a vulnerable Lenovo driver. The code includes methods for memory manipulation and pattern searching, indicative of a local privilege escalation exploit.

This repository contains a functional exploit for CVE-2022-3699, demonstrating arbitrary kernel code execution. The code includes PDB parsing and memory management utilities to facilitate the exploit.

This repository contains a functional exploit for CVE-2022-3699, leveraging physical memory read/write operations via a vulnerable driver to achieve local privilege escalation (LPE) on Windows systems. The exploit dynamically resolves kernel structures and manipulates page tables to overwrite the token of the current process with that of the SYSTEM process.

This repository contains a Go-based exploit PoC for CVE-2022-3699, targeting a Windows kernel driver vulnerability. It includes a fuzzer and an exploit skeleton that attempts to read/write kernel memory via IOCTL calls, though it notes difficulty in reproducing certain techniques from the referenced exploit.

This Metasploit module exploits CVE-2022-3699, a vulnerability in the Lenovo Diagnostics Driver that allows arbitrary physical/virtual memory read/write via IOCTL due to incorrect access control. It achieves local privilege escalation by injecting a reflective DLL payload.