CVE-2022-4510

Binwalk v2.3.2 - Remote Command Execution

Binwalk v2.3.2 - Remote Code Execution - Python

Vulnerability --> Binwalk from 2.1.2b through 2.3.3 included

By crafting a malicious PFS, an attacker can get binwalk's PFS extractor to extract files at arbitrary locations when binwalk is run in extraction mode (-e option). Remote code execution can be achieved extracting binwalk module into the folder .config/binwalk/plugins. This vulnerability is associated with program files src/binwalk/plugins/unpfs.py.

Score: CVSS v2.0: N/A // CVSS v3.x: 7.8

Shows on:

• HTB-Pilgrimage

POC:

GitHub - adhikara13/CVE-2022-4510-WalkingPath: A Python script for generating exploits targeting CVE-2022-4510 RCE Binwalk. It supports SSH, command execution, and reverse shell options. Exploits are saved in PNG format. Ideal for testing and demonstrations.GitHub

Resources:

Binwalk v2.3.2 - Remote Command Execution (RCE)Exploit Database

NVD - CVE-2022-4510