并没有绕过hv
原文说了
This exploit achieves read/write, but not code execution. This is because we cannot currently dump kernel code for gadgets, as kernel .text pages are marked as eXecute Only Memory (XOM). Attempting to read kernel .text pointers will panic!
As per the above + the hypervisor (HV) enforcing kernel write protection, this exploit also cannot install any patches or hooks into kernel space.
Clang-based fine-grained Control Flow Integrity (CFI) is present and enforced.
Supervisor Mode Access Prevention/Execution (SMAP/SMEP) cannot be disabled, due to the HV.
狗仔卡
发表于 2024-9-22 13:41:42
显身卡