Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

CVE-2023-0386

Disclosure Date: March 22, 2023 •

CVE-2023-0386 CVSS v3 Base Score: 7.8

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Metasploit Module

exploit/linux/local/cve_2023_0386_overlayfs_priv_esc

Description

A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalate their privileges on the system.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

7.8 High

Impact Score:

5.9

Exploitability Score:

1.8

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV):

Local

Attack Complexity (AC):

Low

Privileges Required (PR):

Low

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

Vendors

linux

Products

linux kernel,
linux kernel 6.2

Metasploit Modules

exploit/linux/local/cve_2023_0386_overlayfs_priv_esc (https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/cve_2023_0386_overlayfs_priv_esc.rb)

References

Canonical

CVE-2023-0386 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0386)

Advisory

https://security.netapp.com/advisory/ntap-20230420-0004/

DSA-5402 (https://www.debian.org/security/2023/dsa-5402)

[debian-lts-announce] 20230605 [SECURITY] [DLA 3446-1] linux-5.10 security update (https://lists.debian.org/debian-lts-announce/2023/06/msg00008.html)

[debian-lts-announce] 20240627 [SECURITY] [DLA 3840-1] linux security update (https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html)

Exploit

PoCs that have not been added by contributors directly have been sourced from: nomi-sec/PoC-in-GitHub.
A PoC added here by the AKB Worker must have at least 2 GitHub stars.

CVE-2023-0386 (https://github.com/CKevens/CVE-2023-0386) (Added by AKB Worker)

CVE-2023-0386 (https://github.com/xkaneiki/CVE-2023-0386) (Added by AKB Worker)

CVE-2023-0386 (https://github.com/chenaotian/CVE-2023-0386) (Added by AKB Worker)

Miscellaneous

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=4f11ada10d0a

http://packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.html

Rapid7

Unknown

CVE-2023-0386

Unknown

Unknown

None

Low

Local

CVE-2023-0386

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Metasploit Modules

References

Canonical

Advisory

Exploit

Miscellaneous

Additional Info

Technical Analysis

Unknown

CVE-2023-0386

Unknown

Unknown

None

Low

Local

CVE-2023-0386

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Metasploit Modules

References

Canonical

Advisory

Exploit

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification