NCAE Mapping Hub Authoritative cross-reference for DCWF, NCAE Knowledge Units, O*NET, and the EWU Cyber Operations program

Security+ · 2.0 Threats

Kernel exploit

An exploit that abuses a bug in the kernel to escalate from userspace to root. Examples: Dirty Pipe (CVE-2022-0847), Dirty COW (CVE-2016-5195), CVE-2021-4034 (PwnKit).

How this shows up at NCAE

If you don't patch, red team will use a public kernel exploit. `apt-get upgrade` and reboot is the simplest defense. NCAE video 26 covers safe upgrading during competition.