The U.S. CISA has added a critical Linux kernel security flaw, CVE-2023-0386, to its KEV catalog due to active exploitation. This vulnerability enables privilege escalation through improper ownership management in OverlayFS, affecting Linux systems. #CISA #CVE-2023-0386
Keypoints
- The CVE-2023-0386 vulnerability impacts the Linux kernelβs OverlayFS subsystem.
- It allows local users to escalate privileges by smuggling SUID binaries across directories.
- The flaw was patched earlier in 2023, but active exploitation has been reported.
- Security firms like Datadog and Wiz have highlighted the ease of exploiting this weakness.
- FCEB agencies must install patches by July 8, 2025, to prevent potential threats.
Read More: https://thehackernews.com/2025/06/cisa-warns-of-active-exploitation-of.html