CVE-2024-0582

This repository contains a functional local privilege escalation (LPE) exploit for CVE-2024-0582, leveraging an io_uring vulnerability in the Linux kernel. The exploit manipulates socket structures to achieve arbitrary kernel memory read/write, bypassing KASLR and ultimately escalating privileges.

This repository contains a functional exploit PoC for CVE-2024-0582, leveraging io_uring buffer manipulation to achieve privilege escalation via memory corruption and KASLR bypass. The code includes detailed setup for io_uring, socket manipulation, and memory dumping to locate and exploit kernel structures.

This repository contains a functional Proof-of-Concept (PoC) exploit for CVE-2024-0582, leveraging the Dirty Cred and Dirty Pagetable attack methods to achieve local privilege escalation (LPE) by exploiting a use-after-free vulnerability in the io_uring subsystem. The exploit includes both C and Rust implementations, with detailed instructions for adjusting kernel-specific offsets.

This repository contains a functional data-only exploit for CVE-2024-0582, leveraging a use-after-free vulnerability in io_uring to modify file permissions and append a backdoor user to /etc/passwd. The exploit sprays file structures and manipulates memory to achieve local privilege escalation.

This repository contains a functional exploit for CVE-2024-0582, leveraging io_uring buffer registration to achieve local privilege escalation (LPE) by manipulating page table entries (PTE) and overwriting kernel memory. The exploit is designed to run in a QEMU environment with specific kernel configurations.

This repository contains a functional proof-of-concept exploit for CVE-2024-0582, a page-level use-after-free vulnerability in the Linux kernel's `io_uring` subsystem. The exploit includes kernel configuration, build scripts for a QEMU environment, and a C-based exploit that demonstrates privilege escalation.

This repository contains a functional proof-of-concept exploit for CVE-2024-0582, leveraging io_uring buffer ring manipulation to leak kernel memory addresses. The exploit demonstrates a memory corruption vulnerability in the Linux kernel's io_uring subsystem.