CVE-2022-46770

HIGH

Mirage Firewall 0.8.0-0.8.3 - Denial of Service via Crafted Multicast UDP Packet

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2022-46770. PoCs published by Krzysztof Burghardt, including Metasploit module auxiliary/dos/mirageos/qubes_mirage_firewall_dos.

AI-analyzed exploit summary This exploit sends a UDP packet with a payload of 607 'a' characters to trigger a denial-of-service condition in qubes-mirage-firewall versions >= 0.8.0 & < 0.8.4. The vulnerability is exploited by sending malformed data to the multicast address 239.255.255.250 on port 5353.

Description

qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users to cause a denial of service (CPU consumption and loss of forwarding) via a crafted multicast UDP packet (IP address range of 224.0.0.0 through 239.255.255.255).

Exploits (2)

exploitdb WORKING POC

by Krzysztof Burghardt · pythondoshardware

https://www.exploit-db.com/exploits/51157

View Code ZIP pw:eip

This exploit sends a UDP packet with a payload of 607 'a' characters to trigger a denial-of-service condition in qubes-mirage-firewall versions >= 0.8.0 & < 0.8.4. The vulnerability is exploited by sending malformed data to the multicast address 239.255.255.250 on port 5353.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: qubes-mirage-firewall >= 0.8.0 & < 0.8.4

No auth needed

Prerequisites: Network access to the target system · UDP port 5353 accessible

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/mirageos/qubes_mirage_firewall_dos.rb

View Code ZIP pw:eip

This Metasploit module exploits a DoS vulnerability in Mirage firewall for QubesOS versions 0.8.0-0.8.3 by sending a randomly sized UDP packet to a target address and port, causing a service crash.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Mirage firewall for QubesOS 0.8.0-0.8.3

No auth needed

Prerequisites: Network access to the target system

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Patch, Third Party Advisory

https://github.com/mirage/qubes-mirage-firewall/issues/166

Exploit, Third Party Advisory

http://packetstormsecurity.com/files/171610/Qubes-Mirage-Firewall-0.8.3-Denial-Of-Service.html

Scores

CVSS v3 7.5

EPSS 0.2148

EPSS Percentile 97.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-835

Status published

Products (1)

linuxfoundation/mirage_firewall 0.8.0 - 0.8.4

Published Dec 07, 2022

Tracked Since Feb 18, 2026