CVE-2022-0847CISA KEV: Actively Exploited

Linux Kernel Privilege Escalation Vulnerability

Published Apr 25, 2022·Updated Apr 25, 2022

Description

Linux kernel contains an improper initialization vulnerability where an unprivileged local user could escalate their privileges on the system. This vulnerability has the moniker of "Dirty Pipe."

Public Exploits & PoCs92 found

PoC: CVE-2022-0847-DirtyPipe-Exploit

A root exploit for CVE-2022-0847 (Dirty Pipe)

943

PoC: CVE-2022-0847-DirtyPipe-Exploits

A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.

271

PoC: dirtypipe-container-breakout-poc

Container Excape PoC for CVE-2022-0847 "DirtyPipe"

71

PoC: CVE-2022-0847

Linux Kernel Local Privilege Escalation Vulnerability CVE-2022-0847.

54

PoC: CVE-2022-0847

CVE-2022-0847

48

PoC: CVE-2022-0847

The Dirty Pipe Vulnerability

44

PoC: CVE-2022-0847-dirty-pipe-checker

Bash script to check for CVE-2022-0847 "Dirty Pipe"

37

PoC: dirtypipez-exploit

CVE-2022-0847 DirtyPipe Exploit.

35

PoC: CVE-2022-0847

CVE-2022-0847

21

PoC: CVE_2022_0847

CVE-2022-0847: Linux Kernel Privilege Escalation Vulnerability

20

PoC: CVE-2022-0847

Vulnerability in the Linux kernel since 5.8

8

PoC: CVE-2022-0847

CVE-2022-0847 POC and Docker and Analysis write up

7

PoC: Dirty-Pipe

CVE-2022-0847 exploit one liner

7

PoC: dirty-pipe

Exploit for Dirty-Pipe (CVE-2022-0847)

6

PoC: dirtypipe-ebpf_detection

An eBPF detection program for CVE-2022-0847

5

PoC: dirty-pipe-poc

CVE-2022-0847 POC

5

PoC: linux-privilege-escalation

Scripted Linux Privilege Escalation for the CVE-2022-0847 "Dirty Pipe" vulnerability

4

PoC: pwncat_dirtypipe

pwncat module that automatically exploits CVE-2022-0847 (dirtypipe)

4

PoC: CVE-2022-0847

my personal exploit of CVE-2022-0847(dirty pipe)

4

PoC: CVE-2022-0847-dirty-pipe-kernel-checker

Python script to check if your kernel is vulnerable to Dirty pipe CVE-2022-0847

3

PoC: dirty-pipe

Implementation of Max Kellermann's exploit for CVE-2022-0847

3

PoC: CVE-2022-0847

This is the story of CVE-2022-0847, a vulnerability in the Linux kernel since 5.8 which allows overwriting data in arbitrary read-only files. This leads to privilege escalation because unprivileged processes can inject code into root processes.

3

PoC: dirtypipe

Dirty Pipe Vulnerability Detection Script - RHSB-2022-002 Dirty Pipe - kernel arbitrary file manipulation - (CVE-2022-0847)

2

PoC: dirtypipe

DirtyPipe: Exploit for a new Linux vulnerability known as 'Dirty Pipe(CVE-2022-0847)' allows local users to gain root privileges. The vulnerability is tracked as CVE-2022-0847 and allows a non-privileged user to inject and overwrite data in read-only files, including SUID processes that run as root.

2

PoC: cve_2022_0847_shellcode

Implementation of CVE-2022-0847 as a shellcode

2

PoC: CVE-2022-0847-POC

dirtypipe

2

PoC: DirtyPipePython

A Python-based DirtyPipe (CVE-2022-0847) POC to pop a root shell

2

PoC: CVE-2022-0847

Dirty Pipe POC

2

PoC: CVE-2022-0847_DirtyPipeExploit

A “Dirty Pipe” vulnerability with CVE-2022-0847 and a CVSS score of 7.8 has been identified, affecting Linux Kernel 5.8 and higher. The vulnerability allows attackers to overwrite data in read-only files. Threat actors can exploit this vulnerability to privilege themselves with code injection.

2

PoC: CVE-2022-0847

CVE-2022-0847(Linux 内核本地提权漏洞)

1

PoC: DirtyPipe_exploit

CVE-2022-0847

1

PoC: CVE-2022-0847-DirtyPipe-Exploits

COMPILED

1

PoC: CVE-2022-0847-DirtyPipe-Exploits

A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.

1

PoC: DirtyPipe-CVE-2022-0847

This repository is developed to analysis and understand DirtyPipe exploit CVE-2022-0847

1

PoC: CVE-2022-0847

Linux “Dirty Pipe” vulnerability gives unprivileged users root access

1

PoC: CVE-2022-0847_dirty-pipe

Hacked up Dirty Pipe (CVE-2022-0847) PoC that hijacks a SUID binary to spawn a root shell. (and attempts to restore the damaged binary as well)

1

PoC: CVE-2022-0847_DirtyPipe_Exploits

A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.

1

PoC: dirtypipetester

Dirty Pipe (CVE-2022-0847) zafiyeti kontrolü

1

PoC: Dirty-Pipe-CVE-2022-0847

CVE-2022-0847 (Dirty Pipe) is an arbitrary file overwrite vulnerability that allows escalation of privileges by modifying or overwriting arbitrary read-only files e.g. /etc/passwd, /etc/shadow.

1

PoC: CVE-2022-0847

CVE-2022-0847

1

PoC: CVE-2022-0847-dirty-pipe-exploit

An exploit for CVE-2022-0847 dirty-pipe vulnerability

1

PoC: CVE-2022-0847-Dirty-Pipe-

this is a repo who is facing a escalation issue in their linux system and a news regarding problem of "Dirty pipeline"

PoC: Penetration-Test

Full penetration test report against `IP` (Ubuntu VM). Attack chain: directory enumeration → backup file discovery → password cracking → CMS file upload → reverse shell → kernel privilege escalation (Dirty Pipe, CVE-2022-0847).

PoC: megaquagga-pentest-report

Black box penetration test — WordPress exploitation, privilege escalation via CVE-2022-0847

PoC: Chrono-Drip-Temporal-Viscosity-Exploitation-Framework-CVE-2022-0847

This tool demonstrates the application of fundamental physics discoveries to cybersecurity.

PoC: Linux-Kernel-Dirty-Pipe-Exploitation-Logic-Bug-

Exploiting CVE-2022-0847 - written by : Antonius (w1sdom)

PoC: reproducer-poc-CVE-2022-0847

Very rough PoC for detecting/reproducing CVE-2022-0847 (dirty pipe) through random generation of syscalls and differential fuzzing against a model.

PoC: CVE-2022-0847

exploit of CVE-2022-0847 which directly remove password of the root account

PoC: dirtypipe

DirtyPipe (CVE-2022-0847) exploit written in Rust

PoC: Dirty-Pipe

Simple Exploit for Dirty Pipe Vulnerability (CVE-2022-0847) This repository contains a simple proof of concept (PoC) for the Dirty Pipe vulnerability (CVE-2022-0847), which affects Linux kernel versions 5.8 to 5.16. This exploit demonstrates local privilege escalation by leveraging improper handling of pipe buffers in the kernel.

PoC: DirtyPipe-BSI

A root exploit for CVE-2022-0847 (Dirty Pipe)

PoC: Dirty-Pipe-Exploit

The **Dirty Pipe exploit (CVE-2022-0847)** is a Linux kernel vulnerability (v5.8+) allowing unprivileged attackers to overwrite arbitrary files via a flaw in the pipe mechanism. This leads to privilege escalation, granting root access. Similar to Dirty Cow but easier to exploit. Fix: Update to a patched kernel version.

PoC: DirtyPipe

Working Dirty Pipe (CVE-2022-0847) exploit tool with root access and file overwrites.

PoC: DirtyPipe-Exploit

Proof of concept for CVE-2022-0847

PoC: CVE-2022-0847-dirty-pipe-checker

Bash script to check if kernel is vulnerable

PoC: DirtyPipe

Working Dirty Pipe (CVE-2022-0847) exploit tool with root access and file overwrites.

PoC: DirtyPipe

CVE: CVE-2022-0847

PoC: CVE-2022-0847-Exploit-Implementation

Using CVE-2022-0847, "Dirty Pipe Exploit", to pop a reverse bash shell on a foreign machine.

PoC: CVE-2022-0847-eBPF

An eBPF program to detect attacks on CVE-2022-0847

PoC: dirty-pipe-poc

POC Exploit to add user to Sudo for CVE-2022-0847 Dirty Pipe Vulnerability

PoC: cve-2022-0847

check cve-2022-0847

PoC: CVE-2022-0847-container-escape

A simple exploit that uses dirtypipe to inject shellcode into runC entrypoint to implement container escapes.

PoC: CVE-2022-0847

This is a repo to showcase the dirty pipe Linux Kernel Vulnerability.

PoC: Dirty-Pipe-CVE-2022-0847

Dirty Pipe Kernel Vulnerability Exploit

PoC: CVE-2022-0847

CVE-2022-0847

PoC: linux-

修改版CVE-2022-0847

PoC: ps-lab-cve-2022-0847

Resources required for building Pluralsight CVE-2022-0847 lab

PoC: CVE-2022-0847-DirtyPipe-Exploits

A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.

PoC: Dirty-Pipe-Oneshot

Compled version of CVE-2022-0847 aka Dirty Pipe. Just one shot to root them all :D

PoC: Dirty-Pipe-Exploits

CVE-2022-0847(Dirty Pipe) vulnerability exploits.

PoC: dpipe

Proof-of-concept exploit for the Dirty Pipe vulnerability (CVE-2022-0847)

PoC: CVE-2022-0847-Container-Escape

CVE-2022-0847 used to achieve container escape 利用CVE-2022-0847 (Dirty Pipe) 实现容器逃逸

PoC: CVE-2022-0847

Modified dirtypipe script into auto root without have to search a file manually to hijack suid binary.

PoC: CVE-2022-0847-DirtyPipe-Exploits

COMPILED

PoC: Dirty-Pipe

exp of CVE-2022-0847

PoC: CVE-2022-0847-DirtyPipe-Exploits

A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.

PoC: CVE-2022-0847

CVE-2022-0847 used to achieve container escape

PoC: debian11-dirty_pipe-patcher

A Simple bash script that patches the CVE-2022-0847 (dirty pipe) kernel vulnerability on Debian 11

PoC: COMP3320-VAPT

Files required to demonstrate CVE-2022-0847 vulnerability in Linux Kernel v5.8

PoC: CVE-2022-0847

This is the story of CVE-2022-0847, a vulnerability in the Linux kernel since 5.8 which allows overwriting data in arbitrary read-only files. This leads to privilege escalation because unprivileged processes can inject code into root processes.

PoC: Debugging_Dirty_Pipe_CVE-2022-0847

Presentation slides and supplementary material

PoC: dirty-pipe

Exploit for Dirty-Pipe (CVE-2022-0847)

PoC: CVE-2022-0847

Poc

PoC: CVE-2022-0847-DirtyPipe-Container-Breakout

PoC Container Breakout for DirtyPipe Vulnerability CVE-2022-0847

PoC: dpipe

CVE-2022-0847 SUID Shell Backdoor

PoC: dirtyPipe-automaticRoot

CVE-2022-0847 Python exploit to get root or write a no write permission, immutable or read-only mounted file.

PoC: CVE-2022-0847-DirtyPipe-Exploit

CVE-2022-0847-DirtyPipe-Exploit

PoC: CVE-2022-0847

A root exploit for CVE-2022-0847 (Dirty Pipe)

PoC: Dirtypipe-exploit

Dirty Pipe (CVE-2022-0847) PoC that hijacks a SUID binary to spawn. a root shell. (and attempts to restore the damaged binary as well)

PoC: CVE-2022-0847-Docker

Docker exploit

PoC: CVE-2022-0847

CVE-2022-0487

PoC: CVE-2022-0847

66666

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free