{"vulnerability": "CVE-2022-27666", "sightings": [{"uuid": "98cf3c16-b290-4e11-9acd-21ed6cc70c8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1734", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aExploit for CVE-2022-27666\nURL\uff1ahttps://github.com/plummm/CVE-2022-27666\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-03-28T18:22:51.000000Z"}, {"uuid": "ff32d235-26cd-4a79-9cbc-239b34f81815", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4148", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aTOP All bugbounty pentesting CVE-2023- POC Exp  RCE example payload  Things\nURL\uff1ahttps://github.com/Albocoder/cve-2022-27666-exploits\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-08-12T13:17:53.000000Z"}, {"uuid": "cd8d5719-cef8-41dc-870b-86046fa13bdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/OxC8HR/134", "content": "CVE-2022-27666: Linux LPE (\"this vulnerability affects the latest Ubuntu, Fedora, and Debian\")\n\nhttps://github.com/plummm/CVE-2022-27666", "creation_timestamp": "2022-04-19T17:41:11.000000Z"}, {"uuid": "35cbbecb-6d60-4f26-8085-2d7c04ec66a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "seen", "source": "Telegram/CuIx8tOaBeiR4d57bUdT4vYPuJOb4bWmQ6uhiWT2wAqVekhJ", "content": "", "creation_timestamp": "2022-03-29T12:01:31.000000Z"}, {"uuid": "0e0a1f1e-f160-4952-905d-bd190b42c814", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "seen", "source": "Telegram/TXmZ8EBGvdc4uufvEqu6hfgyjEc7K_gjD1Jpp8Uzvu6-KK0", "content": "", "creation_timestamp": "2023-03-23T09:18:19.000000Z"}, {"uuid": "ee402945-0867-4064-bad8-0cc927608eb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/linkersec/159", "content": "CVE-2022-27666: Exploit esp6 module in Linux kernel\n\nXiaochen Zou aka ETenal published an article on exploiting a page_alloc-out-of-bounds in the esp6 crypto module.\n\nThe researcher:\n\n1\ufe0f\u20e3 performed page-level heap fengshui to gain page_alloc-to-slab overflow,\n\n2\ufe0f\u20e3 constructed arbitrary read/write using the msg_msg kernel object,\n\n3\ufe0f\u20e3 finally achieved root privileges via modprobe_path overwrite.\n\nThe article comes with excellent animated diagrams.", "creation_timestamp": "2022-03-31T10:34:46.000000Z"}, {"uuid": "42b90291-0402-49d4-aa28-0a1e1420eaed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "seen", "source": "https://t.me/arpsyndicate/193", "content": "#ExploitObserverAlert\n\nCVE-2022-27666\n\nDESCRIPTION: Exploit Observer has 21 entries related to CVE-2022-27666. A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.\n\nFIRST-EPSS: 0.000420000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-11-17T03:56:58.000000Z"}, {"uuid": "2db11cd3-63f1-4ddb-879e-fb687f67a699", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/759", "content": "CVE-2022-27666 LPE exploit\n\u041f\u0438\u0441\u0430\u043b\u0438 \u0441\u043f\u043b\u043e\u0438\u0442 \u043f\u043e\u0434 Ubuntu Desktop 21.10 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 pwn2own 2022, \u0430 \u0432 \u0438\u0442\u043e\u0433\u0435 \u0437\u0430\u0434\u0435\u0432\u0430\u0435\u0442 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 Ubuntu, Fedora \u0438 Debian.\n\u0421\u0430\u043c exploit\n\u0410 \u0442\u0443\u0442 \u043a\u0440\u0443\u0442\u043e\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 - \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044e \u043a \u043f\u0440\u043e\u0447\u0442\u0435\u043d\u0438\u044e\n#exploit #LPE #linux", "creation_timestamp": "2022-03-29T11:59:08.000000Z"}, {"uuid": "f385410e-1dcf-4699-a59d-d6a2f23048fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/RalfHackerChannel/1188", "content": "CVE-2022-27666: Linux LPE (\"this vulnerability affects the latest Ubuntu, Fedora, and Debian\")\n\nhttps://github.com/plummm/CVE-2022-27666\n\n#git #exploit #pentest", "creation_timestamp": "2022-05-31T08:01:51.000000Z"}, {"uuid": "34e2f726-0de8-4fa6-afc1-fd17508c8355", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "Telegram/R64yPqZ_QJXUwR2FhKXDMjlZt2ZTLCOHmy_pvjbrLKFYPtI", "content": "", "creation_timestamp": "2022-03-29T21:01:10.000000Z"}, {"uuid": "afe9bd33-0a1a-4a37-bb57-dc3e72b96aac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1848", "content": "#CVE-2022\n\nExploit for CVE-2022-27666\n\nhttps://github.com/plummm/CVE-2022-27666\n\n@BlueRedTeam", "creation_timestamp": "2022-03-28T22:15:12.000000Z"}, {"uuid": "10985d60-65ac-43db-b675-634f0f31002d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "seen", "source": "https://t.me/cibsecurity/39397", "content": "\u203c CVE-2022-27666 \u203c\n\nIn the Linux kernel before 5.16.15, there is a buffer overflow in ESP transformation in net/ipv4/esp4.c and net/ipv6/esp6.c via a large message.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-23T11:28:24.000000Z"}, {"uuid": "4d3323b6-bfe5-4da7-84c5-1b4b8cde44e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5703", "content": "#exploit\nCVE-2022-27666 LPE exploit:\nExploit esp6 modules in Linux kernel\nhttps://etenal.me/archives/1825\n]-> https://github.com/plummm/CVE-2022-27666", "creation_timestamp": "2022-05-08T11:56:26.000000Z"}, {"uuid": "5735e116-11be-41e0-875e-11674ab0e8a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/1427", "content": "kernel-linux-factory\n*\n\u0423\u0434\u043e\u0431\u043d\u043e \u0442\u0435\u043c, \u0447\u0442\u043e \u043d\u0435 \u043d\u0443\u0436\u043d\u043e \u043a\u043e\u043c\u043f\u0438\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0438\u043b\u0438 \u043d\u0430\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u0442\u044c \u0441\u0440\u0435\u0434\u0443, \u0433\u043b\u044f\u043d\u0443\u043b \u043a\u0430\u043a\u043e\u0435 \u044f\u0434\u0440\u043e, \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u043b \u0441\u043f\u043b\u043e\u0435\u0442, \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u043f\u043e \u043c\u043e\u0440\u0434\u0435 #root\n*\n\u0432 \u0441\u043e\u0441\u0442\u0430\u0432\u0435 exploits \u0434\u043b\u044f:\nCVE-2016-9793\n4-20-BPF-integer\nCVE-2017-5123\nCVE-2017-6074\nCVE-2017-7308\nCVE-2017-8890\nCVE-2017-11176\nCVE-2017-16995\nCVE-2017-1000112\nCVE-2018-5333\nCVE-2019-9213 & CVE-2019-8956\nCVE-2019-15666\nCVE-2020-8835\nCVE-2020-27194\nCVE-2021-3156\nCVE-2021-31440\nCVE-2021-3490\nCVE-2021-22555\nCVE-2021-41073\nCVE-2021-4154\nCVE-2021-42008\nCVE-2021-43267\nCVE-2022-0185\nCVE-2022-0847\nCVE-2022-0995\nCVE-2022-1015\nCVE-2022-2588\nCVE-2022-2639\nCVE-2022-25636\nCVE-2022-27666\nCVE-2022-32250\nCVE-2022-34918\n\ndownload\n\n#linux #exploits #kernel", "creation_timestamp": "2023-03-23T06:30:43.000000Z"}, {"uuid": "4fbaaba2-79e6-4138-8e44-67a787d414bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27666", "type": "seen", "source": "Telegram/EWYW-JRR6Ao35LuisrucjGoi7XP5jTbQUklI3Clj4ygTs-s", "content": "", "creation_timestamp": "2022-03-30T02:13:01.000000Z"}]}