07 Sep 2023

#cve_analysis

Write a blog analysis for a CVE

publish

The De Vinci of DirtyPipe Local Privilege Escalation - CVE-2022-0847

by @mhzcyber

07 Sep 2023

#cve_analysis

Write a blog analysis for a CVE

publish

The De Vinci of DirtyPipe Local Privilege Escalation - CVE-2022-0847

CVEs

CVE-2022-0847

7.8 High Severity

FedoraFedoraproject

41.0.1.0.*

40.0.0.0.*

*.*

3334.*

37.*

30.*

40.*

38.*

28.*

31.*

Linux KernelLinux

6.12.14.*

5.4.290.*

5.10.234.*

6.1.128.*

5.15.178.*

5.15.177.*

6.1.126.*

6.1.122.*

6.1.123.*

5.15.175.*

H410S FirmwareNetapp

-.*

H700S FirmwareNetapp

-.*

H500S FirmwareNetapp

-.*

H300S FirmwareNetapp

-.*

H410C FirmwareNetapp

-.*

ELS

Enterprise Linux Server TUSRedhat

8.8.*

8.4.*

8.6.*

7.7.*

7.4.*

6.6.*

8.2.*

9.2.*

7.3.*

7.6.*

ELE

Enterprise Linux EUSRedhat

5.9.Z.*

5.6.Z.*

8.8.*

8.4.*

8.6.*

7.7.*

7.4.*

5.9.*

ELS

Enterprise Linux Server AUSRedhat

8.8.*

8.4.*

8.6.*

7.7.*

7.4.*

5.9.*

6.6.*

8.2.*

5.6.*

6.4.*

SLF

Scalance LPE9403 FirmwareSiemens

*.*

2.0.*

-.*

ELF

Enterprise Linux for IBM Z Systems EUSRedhat

6.4 S390X.*

5.9 S390X.*

7.3 S390X.*

7.2 S390X.*

6.7 S390X.*

7.6 S390X.*

7.5 S390X.*

7.4 S390X.*

8.4 S390X.*

8.2 S390X.*

ELF

Enterprise Linux for IBM Z SystemsRedhat

6.5 S390X.*

6.4 S390X.*

5.9 S390X.*

7.3 S390X.*

7.6 S390X.*

7.5 S390X.*

7.4 S390X.*

7.7 S390X.*

6.0 S390X.*

9.4 S390X.*

ELF

Enterprise Linux for Power Little Endian EUSRedhat

7.3 Ppc64le.*

7.2 Ppc64le.*

7.6 Ppc64le.*

7.5 Ppc64le.*

7.4 Ppc64le.*

8.2 Ppc64le.*

8.1 Ppc64le.*

7.7 Ppc64le.*

9.4 Ppc64le.*

8.4 Ppc64le.*

ELF

Enterprise Linux for Power Little EndianRedhat

7.0 Ppc64le.*

9.0 Ppc64le.*

9.2 Ppc64le.*

8.0 Ppc64le.*

8.6.*

7.0.*

8.0.*

9.0.*

-.*

ELS

Enterprise Linux Server for Power Little Endian Update Services for Sap SolutionsRedhat

7.6 Ppc64le.*

7.4 Ppc64le.*

8.2 Ppc64le.*

7.7 Ppc64le.*

9.4 Ppc64le.*

8.4 Ppc64le.*

9.0 Ppc64le.*

8.8 Ppc64le.*

9.2 Ppc64le.*

8.6 Ppc64le.*

ELF

Enterprise Linux for Real TimeRedhat

8.6.*

9.2.*

7.*

7.0.*

8.*

8.0.*

9.0.*

ELF

Enterprise Linux for Real Time for NFVRedhat

9.2.*

7.*

8.*

8.0.*

9.0.*

ELS

Enterprise Linux Server Update Services for Sap SolutionsRedhat

8.4.*

8.6.*

7.7.*

7.4.*

8.2.*

9.2.*

7.3.*

8.1.*

7.6.*

7.2.*

SMA1000 FirmwareSonicwall

12.4.2-02044.*

12.1.0-06411.*

12.4.2.*

-.*

Apps

CLB

Codeready Linux BuilderRedhat

8.4.*

8.2.*

8.0.*

9.0.*

-.*

Virtualization HostRedhat

4.0.*

Ovirt-EngineOvirt

4.4.10.2.*

4.4.3.11.*

4.4.3.10.*

4.4.3.7.*

4.4.3.6.*

4.4.3.5.*

4.4.3.12.*

4.4.3.9.*

4.4.3.8.*

4.4.3.4.*

PoC video

Summary

We will dive deep into DirtyPipe vulnerability, see some pipes inside the kernel, understand more about ring buffer, read and write and how all the magic works!🧙‍♂️

Description

@mhzcyber

68 posts

Security Researcher | Cyber Security Labs Developer | Upwork Top Rated CyberSecurity

Total vcoins

132.8K

Badges

Memelord

Shawarma King

Social media links

mhz_cyber

Mhzcyber

remediate more CVEs with vRx

explore more

Comments (5)

@mhzcyber

68 posts

Security Researcher | Cyber Security Labs Developer | Upwork Top Rated CyberSecurity

Total vcoins

132.8K

Badges

Memelord

Shawarma King

Social media links

mhz_cyber

Mhzcyber

CVEs

CVE-2022-0847

7.8 High Severity

FedoraFedoraproject

41.0.1.0.*

40.0.0.0.*

*.*

3334.*

37.*

30.*

40.*

38.*

28.*

31.*

Linux KernelLinux

6.12.14.*

5.4.290.*

5.10.234.*

6.1.128.*

5.15.178.*

5.15.177.*

6.1.126.*

6.1.122.*

6.1.123.*

5.15.175.*

H410S FirmwareNetapp

-.*

H700S FirmwareNetapp

-.*

H500S FirmwareNetapp

-.*

H300S FirmwareNetapp

-.*

H410C FirmwareNetapp

-.*

ELS

Enterprise Linux Server TUSRedhat

8.8.*

8.4.*

8.6.*

7.7.*

7.4.*

6.6.*

8.2.*

9.2.*

7.3.*

7.6.*

ELE

Enterprise Linux EUSRedhat

5.9.Z.*

5.6.Z.*

8.8.*

8.4.*

8.6.*

7.7.*

7.4.*

5.9.*

ELS

Enterprise Linux Server AUSRedhat

8.8.*

8.4.*

8.6.*

7.7.*

7.4.*

5.9.*

6.6.*

8.2.*

5.6.*

6.4.*

SLF

Scalance LPE9403 FirmwareSiemens

*.*

2.0.*

-.*

ELF

Enterprise Linux for IBM Z Systems EUSRedhat

6.4 S390X.*

5.9 S390X.*

7.3 S390X.*

7.2 S390X.*

6.7 S390X.*

7.6 S390X.*

7.5 S390X.*

7.4 S390X.*

8.4 S390X.*

8.2 S390X.*

ELF

Enterprise Linux for IBM Z SystemsRedhat

6.5 S390X.*

6.4 S390X.*

5.9 S390X.*

7.3 S390X.*

7.6 S390X.*

7.5 S390X.*

7.4 S390X.*

7.7 S390X.*

6.0 S390X.*

9.4 S390X.*

ELF

Enterprise Linux for Power Little Endian EUSRedhat

7.3 Ppc64le.*

7.2 Ppc64le.*

7.6 Ppc64le.*

7.5 Ppc64le.*

7.4 Ppc64le.*

8.2 Ppc64le.*

8.1 Ppc64le.*

7.7 Ppc64le.*

9.4 Ppc64le.*

8.4 Ppc64le.*

ELF

Enterprise Linux for Power Little EndianRedhat

7.0 Ppc64le.*

9.0 Ppc64le.*

9.2 Ppc64le.*

8.0 Ppc64le.*

8.6.*

7.0.*

8.0.*

9.0.*

-.*

ELS

Enterprise Linux Server for Power Little Endian Update Services for Sap SolutionsRedhat

7.6 Ppc64le.*

7.4 Ppc64le.*

8.2 Ppc64le.*

7.7 Ppc64le.*

9.4 Ppc64le.*

8.4 Ppc64le.*

9.0 Ppc64le.*

8.8 Ppc64le.*

9.2 Ppc64le.*

8.6 Ppc64le.*

ELF

Enterprise Linux for Real TimeRedhat

8.6.*

9.2.*

7.*

7.0.*

8.*

8.0.*

9.0.*

ELF

Enterprise Linux for Real Time for NFVRedhat

9.2.*

7.*

8.*

8.0.*

9.0.*

ELS

Enterprise Linux Server Update Services for Sap SolutionsRedhat

8.4.*

8.6.*

7.7.*

7.4.*

8.2.*

9.2.*

7.3.*

8.1.*

7.6.*

7.2.*

SMA1000 FirmwareSonicwall

12.4.2-02044.*

12.1.0-06411.*

12.4.2.*

-.*

Apps

CLB

Codeready Linux BuilderRedhat

8.4.*

8.2.*

8.0.*

9.0.*

-.*

Virtualization HostRedhat

4.0.*

Ovirt-EngineOvirt

4.4.10.2.*

4.4.3.11.*

4.4.3.10.*

4.4.3.7.*

4.4.3.6.*

4.4.3.5.*

4.4.3.12.*

4.4.3.9.*

4.4.3.8.*

4.4.3.4.*

Democratizing infosec research for a more secure society. Be a part of the movement.