CISA warns U.S. federal agencies about a high-severity Linux kernel vulnerability (CVE-2023-0386) that allows privilege escalation and has been actively exploited. Multiple proof-of-concept exploits increase the risk for Linux systems, especially those running kernels below version 6.2. #CVE-2023-0386 #LinuxKernel #PrivilegeEscalation
Keypoints
- The Linux kernelβs OverlayFS subsystem contains a vulnerability that allows root privilege escalation.
- This security flaw impacts many Linux distributions, including Debian, Red Hat, and Ubuntu.
- The vulnerability was patched in January 2023 but has been actively exploited since May 2023.
- Federal agencies are required to patch their systems by July 8 to mitigate ongoing attack risks.
- Threat actors are also targeting patched vulnerabilities like CVE-2025-6019 for privilege escalation on Linux systems.