Kernel
Kernel exploits should be used as the last resort, as they will most probably severely impact the machine state, or even crash the machine if they fail.
You can find the complete list of CVEs for the Linux Kernel here.
- Dirty Pipe on Linux Kernel >5.8 and <5.17
- Dirty COW on Linux kernel <4.8.3
- CVE-2021-3493/OverlayFS mostly on Ubuntu kernels prior to Ubuntu 20.10. See ssd-disclosure PoC.
There are scripts to find vulnerable kernels, but they may generate false positives or false negatives.
- linux-exploit-suggester (3.9k β): still updated with new exploits
- Linux_Exploit_Suggester (1.6k β): up to 4.x excluded
- Linux Kernel Exploit Suggester 2 (1.4k β): up to 5.x excluded
π» To-do π»
Stuff that I found, but never read/used yet.
- Netfilter kernel module