Indeni’s response to Dirty Pipe Exploit

Last updated: July 31, 2025

Notice: This blog post was originally published on Indeni before its acquisition by BlueCat.

The content reflects the expertise and perspectives of the Indeni team at the time of writing. While some references may be outdated, the insights remain valuable. For the latest updates and solutions, explore the rest of our blog

Linux has yet another high-severity vulnerability known as Dirty Pipe that was disclosed on March 7, 2022. Dirty Pipe allows an attacker to overwrite arbitrary data in read-only files and can lead to privilege escalation via the injection of code into root processes. Tracked as CVE-2022-0847, the vulnerability affects all Linux machines running Linux Kernel 5.8 and later versions.

Indeni is aware of this issue. The Indeni product is running the ‘enterprise grade’ Ubuntu release 18.04 LTS (Long Term Support), 4.15 kernel which is not vulnerable to CVE-2022-0847.

Security is in our DNA. We take risk and vulnerability in open-source software very seriously. If you have additional questions related to Dirty Pipe, please do not hesitate to contact us.

Key takeaways

The article reports on the high-severity Linux vulnerability called Dirty Pipe (CVE-2022-0847), disclosed March 7, 2022, which lets attackers overwrite data in read-only files and potentially escalate privileges by injecting code into root processes. It explains the technical scope—Linux kernels 5.8 and later are affected—and the operational impact of potential local privilege escalation on impacted systems. The article also states Indeni's exposure assessment: their product runs Ubuntu 18.04 LTS with a 4.15 kernel, which is not vulnerable, and reassures readers that the company treats open-source security risks seriously while inviting further inquiries.

What is the Dirty Pipe vulnerability and how can it be exploited?

Dirty Pipe (CVE-2022-0847) is a high-severity Linux kernel vulnerability disclosed on March 7, 2022, that permits an attacker to overwrite arbitrary data in read-only files. By abusing this flaw, an attacker can inject code into processes running as root, which can enable local privilege escalation. The exploit targets the Linux kernel’s handling of pipes and file data, allowing crafted operations to modify protected file contents despite filesystem protections.

Which Linux systems are affected by CVE-2022-0847?

According to the article, Dirty Pipe affects Linux machines running kernel version 5.8 and later. Systems using kernels prior to 5.8 are not impacted by this specific vulnerability. The disclosure date was March 7, 2022, and the issue is tracked as CVE-2022-0847, so affected environments are those that have not applied kernel updates or patches addressing this CVE and are on the specified kernel series or newer.

Is Indeni's product impacted by the Dirty Pipe vulnerability?

No, Indeni’s product is not impacted. The article states Indeni runs the enterprise-grade Ubuntu 18.04 LTS release with the 4.15 kernel, which predates the vulnerable 5.8 kernel and therefore is not vulnerable to CVE-2022-0847. The company emphasizes its commitment to security, noting that it takes open-source vulnerabilities seriously and invites customers to contact them with additional questions regarding Dirty Pipe.

Unlock $120K+ in network ROI

Indeni’s response to Dirty Pipe Exploit

Related content

How to map your network with user-defined links in Integrity X

Automate your DDI modernization path by migrating with Micetro

Your journey to intelligent NetOps begins at Cisco Live

Replace BIND and ISC with Micetro DNS/DHCP Server (MDDS)