Dirty Pipe CVE-2022-0847

This exploit enables an attacker to modify an arbitrary read-only file. The technique modifies /etc/passwd to elevate privilege and spawn a root shell. The vulnerability is present in the Linux kernel since 5.8.

Execute this chain

Download Operator (1.7.0)
Learn about Operator

TTPs

Spawn elevated Pneuma via CVE-2022-0847

Tags

destructive