by vicarius
log in join community
by @mhzcyber
07 Sep 2023
#cve_analysis

Write a blog analysis for a CVE

publish

The De Vinci of DirtyPipe Local Privilege Escalation - CVE-2022-0847

by @mhzcyber
by @mhzcyber
07 Sep 2023
#cve_analysis

Write a blog analysis for a CVE

publish

The De Vinci of DirtyPipe Local Privilege Escalation - CVE-2022-0847

CVEs

CVE-2022-0847
7.8 High Severity

OS

Fedora
FedoraFedoraproject
*.*
3334.*
37.*
30.*
40.*
38.*
28.*
31.*
34.*
36.*
LK
Linux KernelLinux
5.15.150.*
5.15.148.*
5.15.145.*
5.15.0-58.*
6.1.79.*
6.1.74.*
6.1.75.*
5.10.209.*
4.19.304.*
4.19.286.*
HF
H410S FirmwareNetapp
-.*
HF
H700S FirmwareNetapp
-.*
HF
H500S FirmwareNetapp
-.*
HF
H300S FirmwareNetapp
-.*
HF
H410C FirmwareNetapp
-.*
ELS
Enterprise Linux Server TUSRedhat
8.8.*
8.4.*
8.6.*
7.7.*
7.4.*
6.6.*
8.2.*
9.2.*
7.3.*
7.6.*
ELE
Enterprise Linux EUSRedhat
5.9.Z.*
5.6.Z.*
8.8.*
8.4.*
8.4.*
8.6.*
8.6.*
7.7.*
7.4.*
5.9.*
ELS
Enterprise Linux Server AUSRedhat
8.8.*
8.4.*
8.6.*
7.7.*
7.4.*
5.9.*
6.6.*
8.2.*
5.6.*
6.4.*
SLF
Scalance LPE9403 FirmwareSiemens
*.*
2.0.*
-.*
ELF
Enterprise Linux for IBM Z Systems EUSRedhat
8.6 S390X.*
9.2 S390X.*
9.0 S390X.*
8.8 S390X.*
7.1 S390X.*
8.8.*
8.4.*
8.6.*
7.4.*
8.2.*
ELF
Enterprise Linux for IBM Z SystemsRedhat
9.4 S390X.*
7.0 S390X.*
9.2 S390X.*
9.0 S390X.*
8.0 S390X.*
4.0 S390X.*
4.0 S390.*
5.0 S390X.*
8.6.*
9.2.*
ELF
Enterprise Linux for Power Little Endian EUSRedhat
9.4 Ppc64le.*
8.4 Ppc64le.*
9.0 Ppc64le.*
8.8 Ppc64le.*
9.2 Ppc64le.*
8.0 Ppc64le.*
8.6 Ppc64le.*
7.1 Ppc64le.*
8.8.*
8.4.*
ELF
Enterprise Linux for Power Little EndianRedhat
7.0 Ppc64le.*
9.0 Ppc64le.*
9.2 Ppc64le.*
8.0 Ppc64le.*
8.6.*
7.0.*
8.0.*
9.0.*
-.*
ELS
Enterprise Linux Server for Power Little Endian Update Services for Sap SolutionsRedhat
9.2 Ppc64le.*
8.6 Ppc64le.*
8.8.*
8.4.*
8.6.*
7.7.*
7.4.*
8.2.*
9.2.*
7.3.*
ELF
Enterprise Linux for Real TimeRedhat
8.6.*
9.2.*
7.*
7.0.*
8.*
8.0.*
9.0.*
ELF
Enterprise Linux for Real Time for NFVRedhat
9.2.*
7.*
8.*
8.0.*
9.0.*
ELS
Enterprise Linux Server Update Services for Sap SolutionsRedhat
8.4.*
8.6.*
7.7.*
7.4.*
8.2.*
9.2.*
7.3.*
8.1.*
7.6.*
7.2.*
SF
SMA1000 FirmwareSonicwall
12.4.2-02044.*
12.1.0-06411.*
12.4.2.*
-.*

Apps

CLB
Codeready Linux BuilderRedhat
8.4.*
8.2.*
8.0.*
9.0.*
-.*
VH
Virtualization HostRedhat
4.0.*
O
Ovirt-EngineOvirt
4.4.10.2.*
4.4.3.11.*
4.4.3.10.*
4.4.3.7.*
4.4.3.6.*
4.4.3.5.*
4.4.3.12.*
4.4.3.9.*
4.4.3.8.*
4.4.3.4.*

Screenshots from the blog posts

images/clm8zjx03g2x21gn92ix94ato.pngimages/clm8zjx03g2x21gn92ix94ato.png

PoC video

Summary

We will dive deep into DirtyPipe vulnerability, see some pipes inside the kernel, understand more about ring buffer, read and write and how all the magic works!🧙‍♂️

Description

users/photos/clr6vsmml0vl21hn13643hl0n.jpg

@mhzcyber

68 posts

Security Researcher | Cyber Security Labs Developer | Upwork Top Rated CyberSecurity

Total vcoins

132.8K

Badges

badges/images/clemwgql90gww0jnxh6rbcqsr.png

Memelord

badges/images/clktw0fnh0pci1inadxpbcwpn.png

Shawarma King

Social media links

Comments (5)