ALAS2KERNEL-5.10-2022-011 — Vulnetix

ALAS2KERNEL-5.10-2022-011 PUBLISHED

Affected Products

Vendor	Product	Versions
Amazon	kernel

Exploit Intelligence

Working Dirty Pipe (CVE-2022-0847) exploit tool with root access and file overwrites. (github-poc-repo)
Working Dirty Pipe (CVE-2022-0847) exploit tool with root access and file overwrites. (github-poc)
t1ckprivate/CVE-2022-0847-Dirty-Pipe (github-poc)
CVE-2022-0847 used to achieve container escape 利用CVE-2022-0847 (Dirty Pipe) 实现容器逃逸 (github-poc)
t1ckprivate/CVE-2022-0847-Dirty-Pipe (github-poc-repo)
CVE-2022-0847 used to achieve container escape 利用CVE-2022-0847 (Dirty Pipe) 实现容器逃逸 (github-poc-repo)
CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞，可覆盖重写任意可读文件中的数据，从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞（Dirty Cow），但它更容易被利用。漏洞作者将此漏洞命名为“Dirty Pipe” (github-poc-repo)
orsuprasad/CVE-2022-0847-DirtyPipe-Exploits (github-poc-repo)
wlswotmd/CVE-2022-0435 (github-poc-repo)
A simple exploit that uses dirtypipe to inject shellcode into runC entrypoint to implement container escapes. (github-poc-repo)

…and 169 more exploits

Timeline

Mar 8, 2022 CVE Published

References

ALAS2KERNEL-5.10-2022-011: kernel (important) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›