Join Us and become a Member for a Verified Badge to access private areas with the latest PS4 PKGs.
Following his previously disclosed PS4 Kernel Exploit (Use-After-Free In IPV6_2292PKTOPTIONS) report and PS5 BD-J Hack Source Code, today Security Engineer theflow0 disclosed on HackerOne.com a Use-after-free in setsockopt IPV6_2292PKTOPTIONS vulnerability granting PS5 Kernel access to an attacker confirming the PlayStation 5 is also affected by CVE-2020-7457. 🥳

⬆️ According to theflow0 on Twitter, more about the PS5 kernel exploit will be revealed at 17:15 (5:15 PM) on Saturday, October 15th during Hexacon 2022 which runs from October 14-15th.
Here's further details from his Use-after-free in setsockopt IPV6_2292PKTOPTIONS (CVE-2020-7457) H1 report for the PS5 Scene (PlayStation 5 Jailbreak Status), to quote:

The PS5 is vulnerable to hackerone.com/reports/826026 which easily grants kernel access to an attacker. This vulnerability had been reported by me for the PS4 2 years ago when the PS5 did not yet exist, thus this should be considered as a new report and not a duplicate.

I was able to use this vulnerability in conjunction with the bd-j exploit chain to gain kernel access.

See freebsd.org/security/advisories/FreeBSD-SA-20:20.ipv6.asc for more details.

Impact

Gain kernel access on PS5.

Cheers to kizabg and MSZ_MGS via Twitter for the heads-up on this earlier: 🍻
PS5 Kernel Access Granted via Previously Disclosed PS4 Exploit by TheFloW0.jpg
 

Comments

PressG

Member
Contributor
Verified
This was some awesome work behind the scenes to find this vulnerability to truely gain kernel access. This will indeed open the gate! Can’t wait...
 
Top