The U.S. CISA warns of active exploitation of CVE-2023-0386, a critical Linux kernel privilege escalation vulnerability. Attackers can leverage this flaw to escalate privileges, potentially executing arbitrary code and compromising affected systems. #LinuxKernel #OverlayFS
Keypoints
- The vulnerability is located in the Linux OverlayFS subsystem and is present in versions before 6.2-rc6.
- It arises from improper ownership management when copying files with elevated capabilities from nosuid mounts.
- Patch development was led by Miklos Szeredi and was implemented on January 27, 2023.
- Multiple products from NetApp are affected, including various HCI baseboard management controllers.
- System admins are advised to update to Linux kernel 6.2-rc6 or later and monitor for suspicious privilege escalation activities.
Read More: https://thecyberexpress.com/cisa-warns-cve-2023-0386-linux-vulnerability/